From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 10084 invoked by alias); 4 Jun 2019 21:26:57 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 10076 invoked by uid 89); 4 Jun 2019 21:26:57 -0000 Authentication-Results: sourceware.org; auth=none X-Spam-SWARE-Status: No, score=-5.5 required=5.0 tests=AWL,BAYES_00,GIT_PATCH_2,RCVD_IN_DNSWL_LOW autolearn=ham version=3.3.1 spammy=OWNER X-HELO: smtp-out-so.shaw.ca Received: from smtp-out-so.shaw.ca (HELO smtp-out-so.shaw.ca) (64.59.136.139) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Tue, 04 Jun 2019 21:26:55 +0000 Received: from [192.168.1.114] ([24.64.172.44]) by shaw.ca with ESMTP id YGxHhnzRCGusjYGxIhceW1; Tue, 04 Jun 2019 15:26:52 -0600 Reply-To: Brian.Inglis@SystematicSw.ab.ca Subject: Re: Trying to create default ACL entries to match file ACL entries To: cygwin@cygwin.com References: <5CF6C7A8.6090902@tlinx.org> <5CF6CD87.8000204@tlinx.org> From: Brian Inglis Openpgp: preference=signencrypt Message-ID: <4df43ab7-abc9-e0ae-e9c1-ace2c07da9d9@SystematicSw.ab.ca> Date: Tue, 04 Jun 2019 21:26:00 -0000 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.7.0 MIME-Version: 1.0 In-Reply-To: <5CF6CD87.8000204@tlinx.org> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-IsSubscribed: yes X-SW-Source: 2019-06/txt/msg00036.txt.bz2 On 2019-06-04 13:59, L A Walsh wrote: > lets see if this is more clear: > On 2019/06/04 12:44, Eliot Moss wrote: >> On 6/4/2019 3:34 PM, L A Walsh wrote: >>> I am trying to create an entry for '/' (or '.' w/me sitting in '/') >>> where the default entries are the same as the file entries. >>> ^^^^^^^ >>> so tried doing: >>> getfacl . | setfacl -d - . > Sorry, but am trying to get the 'file' entries (w/o the -d) > copied into the default. Not seeing -d, --default documented or supported in the code as an option flag under Cygwin: it is available under Debian/Ubuntu at least, and probably other Linux; neither are the file input option flags -M, --modify-file, -X, --remove-file, or symbolic link -L, --logical, -P, --physical, or -R, --recursive option flags. Cygwin equivalent based on setfacl(1) would be something like: $ getfacl -a source_file | sed 's/.*/&\nd:&/' | setfacl -f - target_file where you are getting and duplicating the file accesses and also creating the DACLs. > On 2019/06/04 12:44, Eliot Moss wrote: >> Ooooo ... not sure _I'd_ mess what / on a Windows system! > ----- > Ya, not idea, but too late for that. Thanks for your > vote of confidence though! :waaaaa: :-( I have had success using only setfacl -m and specifying everything I want changed or set in that argument e.g. $ setfacl -m u::rwx,g::r-x,o::r-x,d:u::rwx,d:g::r-x,d:o::r-x / probably using an admin account running with elevated permissions in this case. For Cygwin root /, I have only: $ lsp / | cygcheck-hrsv.sed drwxr-xr-x+ 1 $USER Administrators 0 May 31 05:19 / # file: / # owner: $USER # group: Administrators user::rwx group::r-x other::r-x default:user::rwx default:group::r-x default:other::r-x C:/.../cygwin64 $HOSTNAME\$USER:(F) BUILTIN\Administrators:(RX) Everyone:(RX) CREATOR OWNER:(OI)(CI)(IO)(F) CREATOR GROUP:(OI)(CI)(IO)(RX) Everyone:(OI)(CI)(IO)(RX) Successfully processed 1 files; Failed processing 0 files -- Take care. Thanks, Brian Inglis, Calgary, Alberta, Canada This email may be disturbing to some readers as it contains too much technical detail. Reader discretion is advised. -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple