[ale] kde question

DJ-Pfulio djpfulio at jdpfu.com
Mon Feb 15 15:11:30 EST 2016


On 02/15/2016 09:14 AM, Sean Kilpatrick wrote:
> output from ls -al on /etc/yum.repos.d:
> 
> -rw-rw-rw-.   1 root     root    957 Nov 25  2014 epel.repo
> -rw-rw-rw-.   1 root     root   1056 Nov 25  2014 epel-testing.repo
> 
> My limited understanding of the terminology is that when user is listed
> as rw, the user can read and write to the file. Obviously, I made the
> change as root.

There are multiple layers of permissions. the most common behave just like you
expect, but do you see that '.' at the end of the permissions bits?  That means
that "file ACLs" are being used.  It also means that you cannot trust any of the
normal permissions, since they may have been overrode.  Use
     $ getfacl /etc/yum.repos.d/*
to see the truth.

FACLs are separate from SELinux. Support has been part of most file systems for
a very long time. Certainly SELinux makes extensive use of them.

Other distros don't always show the '.', so then you use Ubuntu, don't expect to
see it, just know that ACLs can exist (or not) on any file/directory, so if the
permissions aren't doing what you know they should, check the ACLs.  I remember
the first time I ran into ACLs at work. It sucked and took me multiple hours to
figure it out.



More information about the Ale mailing list