getacl.1 (2010 09)
g
getacl(1) getacl(1)
(write), x (execute/search), or the placeholder character
-. The perm will be displayed in the following
order:
rwx. If a permission is not granted by an ACL entry, the placeholder character will appear.
The ACL entries will be displayed in the order in which they will be evaluated when an access check is
performed. The default ACL entries that may exist on a directory have no effect on access checks.
The file owner permission bits represent the access that the owning user ACL entry has. The file group
class permission bits represent the most access that any additional user entry, additional group entry, or
the owning group entry may grant. The file other permission bits represent the access that the other ACL
entry has. If a user invokes the
chmod
command and changes the file group class permission bits, the
access granted by the additional ACL entries may be restricted.
In order to indicate that the file group class permission bits restrict an ACL entry,
getacl will display,
after each affected entry, text in the form
#effective:perm, where perm will show only the permis-
sions actually granted.
EXAMPLES
Given file
filea, with an ACL six entries long, the command
$ getacl filea
would print:
# file: filea
# owner: fletcher
# group: us
user::rwx
user:spy:---
user:archer:rw-
group::r--
class:rw-
other:---
Given file filea, with an ACL six entries long, after the command chmod 700 filea
was issued, the
command
$ getacl filea
would print:
# file: filea
# owner: fletcher
# group: us
user::rwx
user:spy:---
user:archer:rw- #effective:---
group::r-- #effective:---
class:---
other:---
Given directory fileb, with an ACL containing default entries, the command
$ getacl -d fileb
would print:
# file: fileb
# owner: fletcher
# group: us
default:user::rwx
default:user:spy:---
default:group::r--
default:other:---
Given directory fileb, the command
$ getacl fileb
would print:
2 Hewlett-Packard Company − 2 − HP-UX 11i Version 3: September 2010