Default ACL problems (rwx) for files and dirs

[Olaf Frączyk]

Hi,
linux 2.2.4, samba 2.2.0, xfs filesystem
I found problems applying default ACLs for files.
Normally, when I have default mask u::rwx,g::rwx,m::rwx,u:aga:rwx
when I touch file I get:
[root at venus sda2]# chacl -l .
. [u::rwx,g::rwx,o::rwx/u::rwx,g::rwx,o::---,m::rwx,u:aga:rwx]
[root at venus sda2]# touch test
[root at venus sda2]# chacl -l test
test [u::rw-,g::rwx,o::---,m::rw-,u:aga:rwx]

So, when creating file, the x permission is masked.
Applying the same for directory, doesn't mask the x permission:
[root at venus sda2]# mkdir testdir
[root at venus sda2]# chacl -l testdir
testdir [u::rwx,g::rwx,o::---,m::rwx,u:aga:rwx/u::rwx,g::rwx,o::---,m::rwx,u:aga:rwx]

And with samba when creating file (in WinNT)in this directory (New object
-> text document)
I get (I have Polish version of WinNT):
[root at venus sda2]# chacl -l Nowy*
Nowy obiekt Dokument tekstowy.txt [u::rw-,g::rw-,o::---,m::rwx,u:aga:rwx]

It's not good that the user 'aga' has 'x' permission.
I could change default ACL to rw-, but then created directories get rw-
permissions, what is not good also.

I think in samba could be option in smb.conf:
1: when creating directory if default ACL has 'r' access, then add 'x'
access on created directories in this directory.
or:
2:when creating file if default ACL has 'x' remove it from applied ACLs.

Regards,

Olaf Fraczyk