// Set setgid (set group ID upon execution)
# chmod g+s /QA_files/
# chmod 2755 /QA_files/
// for new items (hence the d)
# setfacl -Rdm g:600:rw /QA_files/
// for old/existing items under the folder.
# setfacl -Rm g:600:rw /QA_files/
Note: 600 is the group ID.
Note: The -R option recurses on subfolders.
Note: The -d option defaults to this rule. This means that the ACL will apply to all files and directories created in DIR after the setfacl was run.
Note: The -m option modifies the rule to u:USER:rwX that is give to the user (u:) USER the permissions rwX. The capital X means give execution permission to all folders and to files that have the execute permissions. This prevent us to make all files executable.
// Create folder/file w/o given ACL to public for logged in user:
add unmask 0027 to .bashrc
sudo setfacl -Rdm g:groupnamehere:rwx /base/path/members/ sudo setfacl -Rm g:groupnamehere:rwx /base/path/members/