I am using a TrueNAS system version 24.04.2.5. There is a dataset named “shares” that uses ACL (Access Control Lists). When users create new files in this dataset in a shell (not via SMB), the file permissions are set to 755 (rwxr-xr-x) instead of the expected 644 (rw-r–r–), even though the umask is set to 022.
Could someone please help me identify what might be causing this behavior and suggest a solution?
If you have configured an ACL with the NFSv4 acltype, then the POSIX mode bits are determined by the combination of the owner@, group@, and everyone@ entries.
Generally, permissions in this case works like in Windows. You as an administrator set what you want the permissions to be on the directory and everything created within it, and then forget about it (and don’t grant users / processes ability to manage their own permissions). So if you don’t want execute bits on files, then you create two owner@ entries - one to inherit on directories and one to inherit on files, and in the latter case you remove the execute bit.
