ACL
Access Control List
Set read + execute permissions to /etc/fooctl for jdoe user:
setfactl --modify user:jdoe:rX /etc/fooctl
ls -adl /etc/fooctl
drwxr-x---+ 2 root root 4096 Apr 8 11:59 /etc/fooctl
Set read permission to /etc/fooctl/fooctl.conf for jdoe user:
setfactl --modify user:jdoe:r /etc/fooctl/fooctl.conf
ls -adl /etc/fooctl/fooctl.conf
-rw-rw-r--+ 1 root root 1943 Apr 8 11:59 /etc/fooctl/fooctl.conf
getfacl /etc/fooctl/fooctl.conf
getfacl: Removing leading '/' from absolute path names
# file: etc/fooctl/fooctl.conf
# owner: root
# group: root
user::rw-
user:jdoe:r--
group::rw-
mask::rw-
other::r--
Remove read permission from /etc/fooctl/fooctl.conf for jdoe user:
setfactl --remove user:jdoe /etc/fooctl/fooctl.conf
getfacl /etc/fooctl/fooctl.conf
getfacl: Removing leading '/' from absolute path names
# file: etc/kea/kea-dhcp4.conf
# owner: root
# group: root
user::rw-
group::rw-
mask::rw-
other::r--
ls -adl /etc/fooctl/fooctl.conf
-rw-rw-r--+ 1 root root 1943 Apr 8 11:59 /etc/fooctl/fooctl.conf
setfactl --remove-all /etc/fooctl/fooctl.conf
ls -adl /etc/fooctl/fooctl.conf
-rw-rw-r-- 1 root root 1943 Apr 8 11:59 /etc/fooctl/fooctl.conf