...
Code Block | ||
---|---|---|
| ||
sudo /home/ # Normal permissions sudo chown -R svradm:svradm ./www.dailyplanet.com/ sudo chmod -R o-rwx ./www.dailyplanet.com/ # ACL permissions sudo setfacl -Rm g:wgdailyplanet:rwxrwX ./www.dailyplanet.com/ # not right, putting execute on files sudo setfacl -Rm g:www-data:rrX ./www.dailyplanet.com/ # not quite right, need execute on directories only sudo setfacl -Rm g:staff:rrX ./www.dailyplanet.com/ |
Once we are happy with the permissions, change the default ACLs so any files or folders created underneath the parent directories are maintained,
...
Code Block | ||
---|---|---|
| ||
sudo /home/ # Normal permissions sudo chown -R svradm:svradm ./www.lexcorp.com/ sudo chmod -R o-rwx ./www.lexcorp.com/ # ACL permissions sudo setfacl -Rm g:wglexcorp:rwxrwX ./www.lexcorp.com/ sudo setfacl -Rm g:www-data:rrX ./www.lexcorp.com/ sudo setfacl -Rm g:staff:rrX ./www.lexcorp.com/ # Apply default ACLs getfacl --access ./www.lexcorp.com/ | sudo setfacl -d -RM - ./www.lexcorp.com/ |
Still one problem is that if files exist they have read from other... to fix this... maybe because I did it after, to test again...
References
Good introduction from the Ubuntu docs - https://help.ubuntu.com/community/FilePermissionsACLs
...