Setting an ACL Mask?

[byoungtgs]

Sorry for the title, that's the best way I could think of stating the problem.

Here's some more info.
uname -a

Code:

Linux tgs-rhel01.tgs.local 2.6.18-238.5.1.el5 #1 SMP Mon Feb 21 05:52:39 EST 2011 x86_64 x86_64 x86_64 GNU/Linux

setfacl --version

Code:

setfacl 2.2.39

I'm lets say for example, I am sharing a directory out to my domain users. It's a public share using samba (being access from windows machines), using ACL's to limit access. Let's say, '/mnt/share'.
getfacl /mnt/share

Code:

# file: share
# owner: root
# group: root
user::rwx
user:TGS\134administrator:rwx
user:TGS\134bob:rwx
user:TGS\134joe:rwx
user:TGS\134ann:rwx
group::r-x
mask::rwx
other::r-x

Now, if ann creates a directory '/mnt/share/forbob' it's set with her as the owner (which I do NOT want) and also, it doesn't have the same ACL as '/mnt/share'

Is there a way to set it so that no matter who creates the directory or file under the share, (ex. /mnt/share/directory or /mnt/share/file) it inherits the ACL from the directory it's created under (ex. /mnt/share). Also, what's the easiest way to force any files created under a directory to have the same owner? (Sticky Bits?)

Also, can that be passed on even further so that if bob were to then create a file, ex. '/mnt/share/forbob/reply', it would carry on the ACL from '/mnt/share/forbob' just like forbob did from '/mnt/share'?

If you want any clarification, I am glad to help!

[byoungtgs]

Ah, believe I found this out myself!

Code:

setfacl -m d:user:<user>:<rwx>

Don't have a chance to try it out now, but I assume it will work perfectly!