To display all the entries in an ACL for a given object it suffices to just give the object's name. If an entry contains a user identifier for which no user name is specified in the password file, the user identifier is displayed. To display the ACL entry, if any, for one specific user the MINIX user name has to be supplied.
To set an ACL, a user name and permissions have to be specified. The user name is either an ordinary MINIX user name or the special wildcard character ``*''. The later one denotes any user. This ACL is used for permission checks when no other ACL matches.
The permissions describe the access rights for a given object. The program accepts access rights in two forms: strings and octal values. A string is either ``r'',``w'',``x'', or a combination thereof. The octal value has its usual meaning: Bit 1 specifies execute access, bit 2 specifies write access, and bit 3 specifies read access.
The -c option will remove the ACL associated with the specified file system object.
Acl operations on a file system object that doesn't have an ACL return an error.
# acl /home/lvd lvd: rwx *: --- # acl passwd kjb: rw- lvd: rw- *: r-- # acl -c passwd # acl passwd # acl passwd '*' 2 # acl passwd *: -w- # acl /etc/passwd lvd rw # acl /etc/passwd lvd: rw- *: -w-