CentOS Default ACLs on Existing File System Objects
Posted
by macinjosh
on Server Fault
See other posts from Server Fault
or by macinjosh
Published on 2009-10-27T19:18:45Z
Indexed on
2010/03/24
5:03 UTC
Read the original article
Hit count: 311
Is there a way to have existing file system objects inherit newly set default ACL settings of their parent directories?
The reason I need to do this is that I have an user who connect via SFTP to my server. They are able to change directories in their FTP client and see the root folder and the rest of the server. They don't have permissions to change or edit anything but their own user directory but I would like to prevent them from even view the contents of other directories.
Is there a better way to do this than ACLs? If ACLs are the way to go I'm assuming a default ACL on the root directory would be the best way to do restrict access. I could then selectively give the user permission to view certain directories. The problem is default ACLs are only inherited by new file system objects and not existing ones.
© Server Fault or respective owner