CentOS Default ACLs on Existing File System Objects

Posted by macinjosh on Server Fault See other posts from Server Fault or by macinjosh
Published on 2009-10-27T19:18:45Z Indexed on 2010/03/24 5:03 UTC
Read the original article Hit count: 311

Filed under:
|
|
|

Is there a way to have existing file system objects inherit newly set default ACL settings of their parent directories?

The reason I need to do this is that I have an user who connect via SFTP to my server. They are able to change directories in their FTP client and see the root folder and the rest of the server. They don't have permissions to change or edit anything but their own user directory but I would like to prevent them from even view the contents of other directories.

Is there a better way to do this than ACLs? If ACLs are the way to go I'm assuming a default ACL on the root directory would be the best way to do restrict access. I could then selectively give the user permission to view certain directories. The problem is default ACLs are only inherited by new file system objects and not existing ones.

© Server Fault or respective owner

Related posts about centos

Related posts about acl