Am Dienstag, 23. Mai 2006 22:20 schrieb Thorsten Kukuk:
> On Tue, May 23, Markus wrote:
> > Hello,
> > we are trying get oam_mkhomedir working with ACL. Unfortunately
> > pam_mkhomedir (version from debian sarge, 0.76) does not set the default
> > mask right. It ignores our default ACL settings in the parent directory.
> > We intensively googled on that problem, read a lot of source code but we
> > were unable to find the a solution for out problem.
> > Copying /etc/skel manually to the directory works perfectly as well as
> > creating a new directory with mkdir.
>
> pam_mkhomedir doesn't know anything about ACLs. So somebody has to
> implement it first.
>
pam_mkhomedir don't need to know abot ACLs. pam_mkhomedir does basically the
same steps like the following test program:
#include <sys/stat.h>
#include <sys/types.h>
int main(int argc, char* argv[]) {
if (mkdir("xyz", 0777) < 0) {
perror("mkdir");
}
if (chmod("xyz", 0700) < 0) {
perror("chmod");
}
if (chown("xyz", 4711, 4711) < 0) {
perror("chown");
}
}
If you set the default acls on the base directory, it works.
I tested your scenario on a gentoo-box and it worked like a charm. So, did you
mount your fs with acl-option? Did you compile the kernel-options (ext2 bit
different from ext3) for acls and extended attributes?
ACLs depends on kernel/fs. Which kernel and fs do you use?
--
Wilhelm Meier
email: wilhelm.meier@xxxxxxxx
_______________________________________________
Pam-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/pam-list
