<p dir="ltr">Hello pals,</p>
<p dir="ltr">Curious if any of you know how the old Unix ACL interacts with posix ACL. I mean, if you have a directory that is using both ACL, which one does the system use to enforce the permission? I am suspecting both are checked but one supersede the other, kind of the way Unix ACL are checked before SElinux. I have googled this morning but don't seem to be having any luck.</p>
<p dir="ltr">Case in point, I have a jboss folder that I need to manage through a group. The problem is, if they delete the tmp directory, on restarting jboss, the directory end up owned by root. Shouldn't it be owned by jboss, being the default user?</p>
<p dir="ltr">I should say jboss is currently running as root, something which I plan to fix by forwarding default port to 443, so don't shot me for that mistake</p>
<p dir="ltr">[root@dev2-yyz-int ~]# getfacl /opt/application/jboss/server/default/<br>
getfacl: Removing leading '/' from absolute path names<br>
# file: opt/application/jboss/server/default/<br>
# owner: jboss<br>
# group: developers<br>
# flags: -s-<br>
user::rwx<br>
group::rwx<br>
group:developers:rwx<br>
mask::rwx<br>
other::r-x<br>
default:user::rwx<br>
default:user:jboss:rwx<br>
default:group::rwx<br>
default:group:developers:rwx<br>
default:mask::rwx<br>
default:other::r-x<br></p>
<p dir="ltr">[root@dev3-yyz-int default]# ls -al<br>
total 80<br>
drwxrwsr-x+ 10 jboss developers 4096 Jan 30 12:00 .<br>
drwxrwsr-x+ 5 jboss developers 4096 Feb 16 2012 ..<br>
drwxrwsr-x+ 4 jboss developers 4096 Jan 8 12:47 conf<br>
drwxrwsr-x+ 5 root developers 4096 Feb 16 2012 data<br>
drwxrwsr-x+ 10 jboss developers 4096 Jan 29 16:35 deploy<br>
drwxrwsr-x+ 5 jboss developers 4096 Apr 11 2012 lib<br>
drwxrwsr-x+ 2 jboss developers 4096 Jan 30 00:00 log<br>
drwxrwsr-x+ 2 jboss developers 4096 Jan 14 16:16 sslcerts<br>
drwxrwsr-x+ 4 root developers 4096 Jan 30 14:11 tmp<br>
drwxrwsr-x+ 3 root developers 4096 Jan 30 12:00 work<br></p>
<p dir="ltr">Shouldn't user be jboss on creating a new tmp directory? Anything you can think that I can do to get those three directory adopt the parent directory permission?</p>
<p dir="ltr">Regards</p>
<p dir="ltr">William</p>