1SETRICHACL(7)              Rich Access Control Lists             SETRICHACL(7)
2
3
4

NAME

6       setrichacl - Set Rich Access Control Lists
7

SYNOPSIS

9       setrichacl [option]... [file]...
10

DESCRIPTION

12       The  setrichacl  utility  sets  or  modifies  Rich Access Control Lists
13       (RichACLs) of files and directories.
14
15       The -m and -s options expect an ACL or parts of an ACL on  the  command
16       line. The -M and -S options read an ACL or parts of an ACL from a file.
17       In either case, the entry format is described in section Text  form  of
18       the  richacl(7)  manual  page. The single-letter or long forms of flags
19       and permissions can be mixed arbitrarily. Multiple  entries  are  sepa‐
20       rated by whitespace, newlines, or commas.
21
22       Note  that  the  order of entries in a RichACL is significant, and that
23       reordering entries may change the permissions granted.
24
25       The use of deny entries is discouraged. If deny entries are used,  they
26       should  be  placed ahead of allow entries for improved interoperability
27       with Windows where possible.
28
29       When the file masks are not specified, they are computed automatically.
30
31       When the ACL to be set is simple enough that the traditional file  per‐
32       mission bits can express the same permissions, setrichacl sets the file
33       permission bits and removes  the  ACL.  When  setrichacl's  counterpart
34       utility,  getrichacl(1),  is  used on a file or directory that does not
35       have a RichACL, it displays the access permissions defined by the  file
36       permission  bits as an ACL. This means that for simple ACLs, getrichacl
37       may display a slightly different ACL which is  equivalent  to  the  one
38       that was set with setrichacl.
39
40   Permissions
41       Setting  ACLs  or  changing  the file permission bits is allowed to the
42       file owner, to processes which have the write_acl  permission,  and  to
43       processes which have the CAP_FOWNER capability.
44

OPTIONS

46       --modify acl, -m acl
47              Modify  the  ACL  of file by replacing existing entries with the
48              entries in acl, and adding all new entries. When the permissions
49              of an entry are empty, remove the entry.
50
51       --modify-file acl_file, -M acl_file
52              Identical  to  --modify, but read the ACL from acl_file instead.
53              If the file is “-”, read from standard input.
54
55       --set acl, -s acl
56              Set the ACL of file to acl. Any previous ACL is  replaced.   ACL
57              entries are separated by whitespace, newlines, or commas.
58
59       --set-file acl_file, -S acl_file
60              Identical  to  --set, but read the ACL from acl_file instead. If
61              the file is “-”, read from standard input.
62
63       --remove, -b
64              Remove all extended permissions and revert to the  file  permis‐
65              sion bits only.
66
67       --version, -v
68              Display the version of setrichacl and exit.
69
70       --help, -h
71              Display command-line usage help text.
72

AUTHOR

74       Written by Andreas Grünbacher <agruenba@redhat.com>.
75
76       Please  send  your  bug reports, suggested features and comments to the
77       above address.
78

CONFORMING TO

80       Rich Access Control Lists are Linux-specific.
81

SEE ALSO

83       getrichacl(1), richacl(7), richaclex(7)
84
85
86
87Linux                             2016-02-23                     SETRICHACL(7)
Impressum