Open System Services System Calls Reference Manual (G06.28+, H06.05+)
Miscellaneous acl(5)
________________________________________________________________
Notation Entry Type Description
________________________________________________________________
user:uid:perm USER Permissions for the user specified by uid
group:gid:perm GROUP Permissions for the group specified by gid
________________________________________________________________
Examples of nondefault optional ACL entries:
u:mary:rwx
Grant read, write, and execute access to the user mary.
user:george:---
Deny access to the user george.
g:writers:rw-
Grant read and write access to all members of the group writers.
Actual ACL Entries
The base ACL entries, optional user ACL entries, and optional group ACL
entries are considered "actual" ACL entries because they actually control access
to the associated file or directory. These ACL entries are also called nondefault
ACL entries. Contrast with "Default ACL Entries."
Default ACL Entries
Default ACL entries are allowed for directories only. Default ACL entries do not
determine who can access the directory. Instead, default ACL entries affect the
access permissions for files or directories created in the directory (see "ACL
Inheritance" later in this reference page). All default ACL entries are optional
ACL entries. Default ACL entries include:
______________________________________________________________________________
Notation Entry Type Description
______________________________________________________________________________
default:user::perm DEF_USER_OBJ Default permissions for the object owner
Default permissions for additional users
specified by uid
default:user:uid:perm DEF_USER
Default permissions for members of the
owning group of the object
default:group::perm DEF_GROUP_OBJ
Default permissions for members of the
additional group specified by gid
default:group:gid:perm DEF_GROUP
Default maximum permissions granted to
the file group class
default:class:perm DEF_CLASS_OBJ
default:other:perm DEF_OTHER_OBJ Default permissions granted to other users
______________________________________________________________________________
These entries are sometimes referred to as base default ACL entries because the permissions for
these entries in the parent directory, modified by the file-creation mode, the umask, or both,
become the permissions for the base ACL entries for a new file when the new file inherits ACL
entries from the parent directory:
• default:user::perm (DEF_USER_OBJ)
• default:group::perm (DEF_GROUP_OBJ)
• default:class:perm (DEF_CLASS_OBJ)
• default:other:perm (DEF_OTHER_OBJ)
527186-007 Hewlett-Packard Company 12−5