On Nov 29, 2010, at 7:47 AM, Les Mikesell wrote: > On 11/29/2010 7:35 AM, Adam Tauno Williams wrote: >> >> Even if it is *possible*, the traditional UNIX permissions are a >> serious >> *PAIN*. If you want two users to have rw- to a file you... create a >> group of two users??? > > Yes, there is nothing simpler than a group to represent a group of > users. > >> You end up with a zillion groups - which is >> pointless and unmaintainable. Thank goodness for ACL support and >> setfacl/getfacl. > > So what do you do when you have user-specific ACLs splattered randomly > through the filesystem and the members of the cooperating groups > change? Perhaps consult with Winblows AD admins as I'm sure they deal with this all the time. MS$ ACLs have been around for a very long time. - aurf