Manualshelf

Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP HP-UX Auditing System Extensions
919293949596979899100
Table 5-4 Commands and Calls Affecting ACL Entries (continued)
DescriptionCommand or Call
Does not support optional ACL entries on /var/
mail/* files.
mailx
Copies ACL entries to the new files they create.compact, compress, cp, ed, pack, unpack
Use only these commands to selectively recover and
back up files. Use the -A option when backing up
from an ACL system for recovery on a system that
does not support ACLs.
frecover, fbackup
These commands do not retain ACLs when archiving
and restoring. They use the st_mode value returned
by stat.
ar, cpio, ftio, shar, tar, dump, restore
These commands do not support ACLs.rcs, sccs
HFS access control lists use additional “continuation inodes” when creating new file
systems. Consider them when using the following commands:
fsck: Returns the number of files with ACL entries as a value for icont. Use the
-p option to clear unreferenced continuation inodes. See fsck(1M).
diskusg, ncheck: Ignores continuation inodes. See diskusg(1M) and ncheck(1M).
mkfs: Allows for continuation inodes on new disks. See mkfs(1M).
5.4 Using JFS ACLs
This section describes JFS ACLs and how to use them.
NOTE: To use JFS ACLs, you must have a VxFS file system using disk layout Version
4. See vxupgrade(1M) for information about upgrading the file system to Version 4.
5.4.1 Definition of a JFS ACL
A JFS ACL contains one-line entries naming specific users and groups and indicating
what access is granted to each. The presence of a JFS ACL also changes the meaning
of the group permission bits, which are displayed using the ls -l command.
A JFS ACL always has at least four entries: a user entry, a group entry, a class entry,
and an other entry. When a JFS ACL contains only these four entries, the permissions
it grants are exactly the same as the permissions represented by the standard UNIX
system permission bits.
5.4.2 How the System Generates a JFS ACL
Whenever a file is created on a JFS file system, the system initializes a minimal JFS ACL
for the file, containing a user entry for the owner permissions, a group entry for the
owning group permissions, a class entry for the owning group permissions, and an
5.4 Using JFS ACLs 95