Setting up ACL for a shared student directory.
I have a linux directory served up via Samba. The share is samba is a simple full rights to authorized users and works like a champ. The real magic is being done with ACLs at the file system level.
I have a directory owned by root:teachers
Using ACL, I granted my students group write access so that they could create files.
Using the default ACL feature and the SGID flag on the parent directory, students can't mess with each others files but teachers have full access, it's really slick.
Sticky on - Students can't delete each others work, due to different user names. But, neither can teachers.
Sticky off - Students can delete each others files under the shared directory, but, can't really modify files of other students. Teachers have full access.
Any thoughts on getting the best of both worlds?