In Listing 6-3, you can see what happens when you create a simple ACL. Not only is a new entity added as the trustee of the object, but also a mask setting is added. The mask is the summary of the maximum of permissions an entity can have on the file. This mask is not important because it is modified automatically when new permissions are set with the ACL. You can use the mask, however, to reduce the permissions of all trustees to a common denominator. Since it is set automatically when working with ACLs, I recommend just ignoring the ACL masks. It complicates things if you try to modify them in a useful way.
Was this article helpful?