scarey
Cadet
- Joined
- Feb 26, 2023
- Messages
- 5
I'm new to filesystem ACLs, so maybe I'm missing some understanding here.
I created a directory ("parent") for my Rsync task to write to. I setfacl on that directory so that groups like "builtin_users" would have access to the things within. Here is the ACL:
Then, I set up my Rsync Task and told it to run as the built-in user "backup" (its primary and only group is "backup").
When I ran it, it created a subfolder ("child"), but the mask on it is "--x" meaning that "builtin_users" and "builtin_administrators" only get effective "--x" permissions, whereas I need that to be "rwx". I can't even "ls" the child directory due to this. Here's the ACL on the child directory created by Rsync:
Why is the mask "--x"? Is there some way I can get this to do what I want (create backup files that are usable by other groups)?
I created a directory ("parent") for my Rsync task to write to. I setfacl on that directory so that groups like "builtin_users" would have access to the things within. Here is the ACL:
Code:
% getfacl parent # file: parent # owner: scarey # group: builtin_administrators user::rwx group::r-x group:backup:rwx mask::rwx other::--- default:user::rwx default:group::rwx default:group:backup:rwx default:group:builtin_administrators:rwx default:group:builtin_users:rwx default:mask::rwx default:other::--x
Then, I set up my Rsync Task and told it to run as the built-in user "backup" (its primary and only group is "backup").
When I ran it, it created a subfolder ("child"), but the mask on it is "--x" meaning that "builtin_users" and "builtin_administrators" only get effective "--x" permissions, whereas I need that to be "rwx". I can't even "ls" the child directory due to this. Here's the ACL on the child directory created by Rsync:
Code:
% getfacl parent/child # file: parent/child # owner: backup # group: backup user::rwx group::rwx #effective:--x group:backup:rwx #effective:--x group:builtin_administrators:rwx #effective:--x group:builtin_users:rwx #effective:--x mask::--x other::--- default:user::rwx default:group::rwx default:group:backup:rwx default:group:builtin_administrators:rwx default:group:builtin_users:rwx default:mask::rwx default:other::--x
Why is the mask "--x"? Is there some way I can get this to do what I want (create backup files that are usable by other groups)?