← Back to team overview

desktop-packages team mailing list archive

[Bug 137458] Re: Inconsistency with Nautilus drag&drop and ACL

 

Why is this bug assigned to https://bugzilla.gnome.org/show_bug.cgi?id=549437 ?
It should be assigned to https://bugzilla.gnome.org/show_bug.cgi?id=504049. As far as I know, bug is still present in Ubuntu 11.04.

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to nautilus in Ubuntu.
https://bugs.launchpad.net/bugs/137458

Title:
  Inconsistency with Nautilus drag&drop and ACL

Status in Nautilus:
  Unknown
Status in “nautilus” package in Ubuntu:
  Fix Released

Bug description:
  Binary package hint: nautilus

  I am using Nautilus in connection with Eiciel for ACL support (what is
  the status of Nautilus' native ACL support anyways? I heard it should
  be there from GNOME 2.16 on...). When I copy a directory with files
  from a partition that was not mounted with acl support, file
  permissions differ depending on whether I do this copy operation from
  a shell (cp -r) or via Drag&Drop in Nautilus. In my oppinion, the file
  permissions via the shell command are more sensible.

  ----------------------------------
  Permissions of the source directory (not mounted with ACL support)
  hb@wodan:~$ getfacl .
  # file: .
  # owner: hb
  # group: hb
  user::rwx
  group::r-x
  other::r-x

  ----------------------------------
  Permissions of the target directory (mounted with ACL support)
  hb@wodan:~$ cd /var/pictures/
  hb@wodan:/var/pictures$ getfacl .
  # file: .
  # owner: root
  # group: pictures
  user::rwx
  group::rwx
  other::---
  default:user::rwx
  default:group::rwx
  default:mask::rwx
  default:other::---

  ----------------------------------
  Permissions of a subdirectory and a file in the subdirectory of the target directory (mounted with ACL support) that has been copied via the shell
  hb@wodan:/var/pictures$ getfacl copy_s #this is a directory
  # file: copy_s
  # owner: hb
  # group: pictures
  user::rwx
  group::rwx                      #effective:r-x
  mask::r-x
  other::---
  default:user::rwx
  default:group::rwx
  default:mask::rwx
  default:other::---

  hb@wodan:/var/pictures$ getfacl copy_s/copy_s # this is a file
  # file: copy_s/copy_s
  # owner: hb
  # group: pictures
  user::rw-
  group::rwx                      #effective:r--
  mask::r--
  other::---

  ----------------------------------
  Permissions of a subdirectory and a file in the subdirectory of the target directory (mounted with ACL support) that has been copied via Nautilus Drag&Drop
  hb@wodan:/var/pictures$ getfacl copy_n
  # file: copy_n
  # owner: hb
  # group: pictures
  user::rwx
  group::rwx                      #effective:r-x
  mask::r-x
  other::r-x
  default:user::rwx
  default:group::rwx
  default:mask::rwx
  default:other::---

  hb@wodan:/var/pictures$ getfacl copy_n/copy_n
  # file: copy_n/copy_n
  # owner: hb
  # group: pictures
  user::rw-
  group::rwx                      #effective:r--
  mask::r--
  other::r--

  ----------------------------------------------------------------------------------------------------

  Note how the permissions of "other" differ. I very much prefer them
  the way the shell does it. Since Nautilus is granting unwanted read
  access for world, I am marking this bug as a security vulnerability.

To manage notifications about this bug go to:
https://bugs.launchpad.net/nautilus/+bug/137458/+subscriptions