OSF DCE Administration Guide--Core Components

ManualsBrandsHP ManualsServerHP NonStop G-Series

361

362

363

364

365

366

367

368

369

370

OSF DCE Administration Guide—Core Components

The following example shows the way mask recalculation works, as well as the effect of

the options.

Observe that the ACL contains an entry granting rwx permission to some user, but the

mask allows an effective permission of r-x. Adding a new rwx ACL entry and

recalculating the mask (according to step 6) to rwx is unsafe because the ﬁrst user’s

effective access rights are unexpectedly changed from r-x to rwx. If the acl modify

command detects such an unsafe condition, its default action is to issue an error

message and not change the ACL.

The initial state, showing the permissions and the effective permissions, is

dcecp> acl show /.:/concertos

{user vivaldi rwx effective r-x}

{mask_obj r-x}

Adding a user as shown results in an error because the mask recalculation would give

vivaldi an effective permission of rwx:

dcecp> acl modify /.:/concertos -add {user telemann rwx}

Error: Unintended permissions not granted.

Explicit use of the -mask calc option allows the recalculated mask to be applied in spite

of the new permission granted to vivaldi. The mask is set to the union of the

permissions granted to the ﬁle group class entries on the ACL. This option can result in

the inadvertent granting of extra permissions.

dcecp> acl modify /.:/concertos -add {user telemann rwx} -mask calc

dcecp> acl show /.:/concertos

{user vivaldi rwx effective rwx}

{user telemann rwx effective rwx}

{mask_obj rwx}

Using the -mask nocalc option explicitly retains the r-x mask, resulting in reduced

effective permissions for telemann. The ACL is modiﬁed exactly as speciﬁed by the

user, and no mask calculation or purging of permissions occurs.

dcecp> acl modify /.:/concertos -add {user telemann rwx} -mask nocalc

dcecp> acl show /.:/concertos

{user vivaldi rwx effective r-x}

{user telemann rwx effective r-x}

{mask_obj r-x}

Using the -purge option replaces the actual permissions with the effective permissions

in all entries. More precisely, if the command detects an unsafe condition, then the

condition intersects the current value of the mask with all of the existing, unmodiﬁed

entries in the ﬁle group class, replacing all ACL entries (except user_obj, other_obj,

mask_obj and unauthenticated) with their effective permissions.

dcecp> acl modify /.:/concertos -add {user telemann rwx} -purge

dcecp> acl show /.:/concertos

{user vivaldi rwx effective r-x}

28 − 22 Tandem Computers Incorporated 124243