Wednesday, February 25, 2009

NFS with ACL ignore Umask

NFS share at client side user umask is 0022 and i want to change file and folder creation permission on share folder but without touching umask variable.

Solution:

After lots of digging i found umask is not working for NFS and NFS share so i found there is support of ACL on NFS share so i have used ACL for NFS file and folder permissions here i am not going to explain in detail but i show you my example and further you can read ACL manual for advance knowledge. I have set few permission on NFS share folder so anybody on client side create file permission will be according to ACL it will ignore UMASK Variable of Linux thats sound like great. here we go

/share <-NFS share folder where i am going to put ACL rules.

setfacl --set u::rwx,g::rwx,o::rwx /share

setfacl -d --set u::rwx,g::rwx,g:mygroup:rw,o::x- /share

Second option "-d" will set permission default for all folders and files which will newly create.

after putting permission you can verify it by "getfacl" command and "ls -l" command will mark files and directories with "+" sign.

I need your comment on this please give your input.

Good Luck!!!

10 comments:

  1. Great Tip !!!

    Just run these commands on the server and works perfectly !

    Thanks !

    ReplyDelete
  2. Excellent. Thanks.

    ReplyDelete
  3. You are best. Just best of the best.
    You are first.
    Thanks! You have won NFS
    All work nice now.

    p.s. and i need to learn setfacl rules.
    thanks again

    ReplyDelete
  4. Thanks for your post and welcome to check: here
    .

    ReplyDelete
  5. Are you using NFS3? Should this work with NFS4?

    ReplyDelete
  6. This won't work as expected, because files "created" (copied) with cp or Nautilus will have the user umask applied anyway :(

    You can force default permissions, but if the software creating the file wants to change them, it will, and cp does exactly that.

    ReplyDelete
  7. Then you must understand the physics of how these characters all blends. You can improve your animation skills by understanding the codes of Java and know about capabilities within these software companies that help you design your mobile phone game. Agen Bola

    ReplyDelete
  8. When this happens, if you have five seconds or so (some games have cheat codes that allow you to disable the fatality timer if you want extra time to pull it off) to finish off your opponent by entering a certain button combination in the right sequence and in the right distance within the time frame (the exact move does vary by fighter by the way. Domino QQ

    ReplyDelete