pass capital X to setfacl in context of directories

This commit is contained in:
Aminda Suomalainen 2024-08-08 14:28:53 +03:00
parent 5b97061ad0
commit d23c2a0ad3
Signed by: Mikaela
SSH Key Fingerprint: SHA256:CXLULpqNBdUKB6E6fLA1b/4SzG0HvKD19PbIePU175Q
2 changed files with 3 additions and 6 deletions

7
chmod
View File

@ -32,14 +32,11 @@ chmod -v 600 ~/.ssh/authorized_keys
# if we have support for setting ACL, some of this becomes easier (although maybe redundant) # if we have support for setting ACL, some of this becomes easier (although maybe redundant)
if hash setfacl 2> /dev/null; then if hash setfacl 2> /dev/null; then
setfacl --modify u:$(id -un):rw,g:$(id -gn):r,o:r ~/.oidentd.conf setfacl --modify u:$(id -un):rw,g:$(id -gn):r,o:r ~/.oidentd.conf
# The execute permission is a bit silly to apply recursively, but it's setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX ~/public_html/
# needed for cd and ls. so perhaps there should be some responsibility
# given to others too...
setfacl --recursive --modify u:$(id -un):rw,g:$(id -gn):rx,o:rx ~/public_html/
# Enabling laziness pt. … # Enabling laziness pt. …
if [[ -d ~/.shell-things ]]; then if [[ -d ~/.shell-things ]]; then
setfacl --recursive --modify u:$(id -un):rw,g:$(id -gn):rx,o:rx ~/.shell-things/ setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX ~/.shell-things/
fi fi
fi fi

View File

@ -40,7 +40,7 @@ ExecStart=-/usr/bin/systemctl enable --now chrony.service
ExecStart=-/usr/bin/systemctl enable --now chronyd.service ExecStart=-/usr/bin/systemctl enable --now chronyd.service
ExecStart=-/usr/bin/systemctl enable --now systemd-oomd.service systemd-oomd.socket ExecStart=-/usr/bin/systemctl enable --now systemd-oomd.service systemd-oomd.socket
ExecStart=-/bin/chown -R root:${LINUXBREWGROUP} /home/linuxbrew -R ExecStart=-/bin/chown -R root:${LINUXBREWGROUP} /home/linuxbrew -R
ExecStart=-/bin/setfacl -R -m g:${LINUXBREWGROUP}:rwx,o:rx /home/linuxbrew ExecStart=-/bin/setfacl -R -m g:${LINUXBREWGROUP}:rwX,o:rX /home/linuxbrew
User=root User=root
StandardOutput=journal StandardOutput=journal
StandardError=journal StandardError=journal