Monday, May 7, 2012

chown: Operation not permitted

I am attempting to programmatically change a file's ownership & move it from a non-root account, but am unable to do so. The command I have constructed is:


$ /bin/sudo /bin/chown newuser:newgroup xyzzy.txt

/bin/chown: changing ownership of `xyzzy.txt': Operation not permitted

The return code from the above command is 256.

I have access to visudo, so the following entry has been added to /etc/sudoers:


newuser ALL = (ALL) NOPASSWD: /bin/chown

getfacl returns the following:


$ getfacl xyzzy.txt

# file: xyzzy.txt

# owner: another_user

# group: another_group





I'm not real clear on SELinux's FACL facilities, but I was thinking I had covered all contingencies, but obviously I haven't. Any ideas on what I should be trying next? I'm at a loss.

Thanks for any insight shared.

