setfacl problem

[priyankgupta1984]

i have a directory /home/manager. The directory owner is user root and group root. User tom should have read and write access to this directory. Susan should not have any access to this directory. The directory should be readable by all other users.


can any one tell me how can i perform this action?

[nishantgurwant]

i have a directory /home/manager. The directory owner is user root and group root. User tom should have read and write access to this directory. Susan should not have any access to this directory. The directory should be readable by all other users.


can any one tell me how can i perform this action?

If I am not wrong this is one of the RHSA question.So here is the solution:
1.chmod o+x /home/manager //to set read permission for all other users
2. setfacl -m u:tom:rw /home/manager //setting rw permission for tom
3. setfacl -m u:susan:000 /home/manager //restricting access for susan

Let me know if it works for u

[priyankgupta1984]

Don't know about it one of my friend asked me this question i tried this option already and 1 & 3 steps are working

but if i use step 1 it wont update directory recursively so after applying this acl if root create any file user tom wont get write access to it.

i tried another method also

chmod 755 /home/manager
setfacl -m d:u:natasha:rwx /home/manager
setfacl -m d:u:susan:--- /home/manager

here natasha able to modify existing file even recursively but not able to create and delete any file. Susan able to read and view folder and it contents but not data in files.

now can you tell me what should i do next