Simple Linux ACL problem... I must be missing something

reitsma · 09-26-2023, 12:21 PM

In playing with ACL (Ubuntu 22.04 LTS) I'm immediately running into a problem.

As me:

$ touch /tmp/foo
$ setfacl -m u:test_user:rw /tmp/foo
$ getfacl -p /tmp/foo
# file: /tmp/foo
# owner: me
# group: me
user::rw-
user:test_user:rw-
group::rw-
mask::rw-
other::rw-

So far so good.
Next, I log in as test_user

$ cd /tmp
$ getfacl foo
# file: /tmp/foo
# owner: me
# group: me
user::rw-
user:test_user:rw-
group::rw-
mask::rw-
other::rw-

...still good.
But now (still as test_user):

$ echo something >> foo
sh: 4: cannot create foo: Permission denied
$ echo something >> /tmp/foo
sh: 4: cannot create foo: Permission denied

The same happens when I create the file foo in my own (home) directory instead of in /tmp (I tried that first and when that did not work I figured I'd try /tmp)

What am I missing? Why can test_user not write to the file?

frankbell · 09-26-2023, 08:46 PM

I'm guessing it's likely a permissions issue, as /tmp is owned by root.

GazL · 09-29-2023, 01:09 PM

As long as the directory has 'x' permissions then that looks like it ought to work. /tmp is usually 1777, so I don't see why it would be a problem though.