desktop-packages team mailing list archive

Thread
Date
[Bug 137458] Re: Inconsistency with Nautilus drag&drop and ACL

To: desktop-packages@xxxxxxxxxxxxxxxxxxx
From: Sebastien Bacher <seb128@xxxxxxxxxx>
Date: Mon, 14 Nov 2011 15:34:39 -0000
Reply-to: Bug 137458 <137458@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx
** Changed in: nautilus (Ubuntu)
       Status: Incomplete => Triaged

** Changed in: nautilus
   Importance: Medium => Unknown

** Changed in: nautilus
       Status: New => Unknown

** Changed in: nautilus
 Remote watch: GNOME Bug Tracker #504049 => GNOME Bug Tracker #549437

** Changed in: nautilus (Ubuntu)
       Status: Triaged => Fix Released

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to nautilus in Ubuntu.
https://bugs.launchpad.net/bugs/137458

Title:
  Inconsistency with Nautilus drag&drop and ACL

Status in Nautilus:
  Unknown
Status in “nautilus” package in Ubuntu:
  Fix Released

Bug description:
  Binary package hint: nautilus

  I am using Nautilus in connection with Eiciel for ACL support (what is
  the status of Nautilus' native ACL support anyways? I heard it should
  be there from GNOME 2.16 on...). When I copy a directory with files
  from a partition that was not mounted with acl support, file
  permissions differ depending on whether I do this copy operation from
  a shell (cp -r) or via Drag&Drop in Nautilus. In my oppinion, the file
  permissions via the shell command are more sensible.

  ----------------------------------
  Permissions of the source directory (not mounted with ACL support)
  hb@wodan:~$ getfacl .
  # file: .
  # owner: hb
  # group: hb
  user::rwx
  group::r-x
  other::r-x

  ----------------------------------
  Permissions of the target directory (mounted with ACL support)
  hb@wodan:~$ cd /var/pictures/
  hb@wodan:/var/pictures$ getfacl .
  # file: .
  # owner: root
  # group: pictures
  user::rwx
  group::rwx
  other::---
  default:user::rwx
  default:group::rwx
  default:mask::rwx
  default:other::---

  ----------------------------------
  Permissions of a subdirectory and a file in the subdirectory of the target directory (mounted with ACL support) that has been copied via the shell
  hb@wodan:/var/pictures$ getfacl copy_s #this is a directory
  # file: copy_s
  # owner: hb
  # group: pictures
  user::rwx
  group::rwx                      #effective:r-x
  mask::r-x
  other::---
  default:user::rwx
  default:group::rwx
  default:mask::rwx
  default:other::---

  hb@wodan:/var/pictures$ getfacl copy_s/copy_s # this is a file
  # file: copy_s/copy_s
  # owner: hb
  # group: pictures
  user::rw-
  group::rwx                      #effective:r--
  mask::r--
  other::---

  ----------------------------------
  Permissions of a subdirectory and a file in the subdirectory of the target directory (mounted with ACL support) that has been copied via Nautilus Drag&Drop
  hb@wodan:/var/pictures$ getfacl copy_n
  # file: copy_n
  # owner: hb
  # group: pictures
  user::rwx
  group::rwx                      #effective:r-x
  mask::r-x
  other::r-x
  default:user::rwx
  default:group::rwx
  default:mask::rwx
  default:other::---

  hb@wodan:/var/pictures$ getfacl copy_n/copy_n
  # file: copy_n/copy_n
  # owner: hb
  # group: pictures
  user::rw-
  group::rwx                      #effective:r--
  mask::r--
  other::r--

  ----------------------------------------------------------------------------------------------------

  Note how the permissions of "other" differ. I very much prefer them
  the way the shell does it. Since Nautilus is granting unwanted read
  access for world, I am marking this bug as a security vulnerability.

To manage notifications about this bug go to:
https://bugs.launchpad.net/nautilus/+bug/137458/+subscriptions