CompTIA Linux+ XK0-006 (V8) Practice Question

The requirement has two parts:

1. Grant read/write (and execute on directories) to project2 for every item that already exists. That needs an access ACL entry applied recursively.
2. Ensure that future objects created inside /srv/data inherit the same permissions. That requires a default ACL entry on each directory.

The command setfacl -R -m g:project2:rwX -m d:g:project2:rwX /srv/data performs both actions in one step:

• -R walks the entire tree so the rule reaches every file and directory that exists now.
• -m g:project2:rwX adds an access ACL giving the group read/write (and execute only on directories, thanks to the capital X) on every object it touches.
• -m d:g:project2:rwX adds a default ACL to each directory; any new file or directory created later will inherit that rule automatically.

The other answers fall short:

• A command that sets only g:project2:rwX lacks a default ACL, so new items would not inherit the permission.
• chgrp -R project2 /srv/data changes ownership instead of adding an ACL and could disrupt existing ownership.
• chmod -R g+rw /srv/data manipulates traditional permission bits; it does not provide inheritance and may overwrite current settings.

Therefore, the combined access + default ACL with setfacl is the correct solution.