I'm trying to set up a couple of ACL entries on a directory named parentdir that will allow a specific user named somefool, to create a subdirectory, but I want a member of the group somegroup (which is also the GID of parentdir directory) to be able to delete it, and any files in that subdirectory. So, the ACL's on parentdir look like this:
With these ACLs, somefool can create a subdirectory, and a member of somegroup can delete that subdirectory. However, if that subdirectory is populated with files created by somefool, the somegroup member cannot delete them (or the directory, for obvious reasons). Can anyone tell me what I'm doing wrong?