--------------------------------------------------------------------------------------
EXAMPLE:
--------------------------------------------------------------------------------------

drwxrwx---  15 group                YOURDOMAIN\Domain Users   403B 21-10-16_18:03 /data/Projects/Finance/ 
 0: group:YOURDOMAIN\Domain Admins allow dir_gen_all,object_inherit,container_inherit 
 1: user:YOURDOMAIN\pbrandon allow dir_gen_read,dir_gen_execute,object_inherit,container_inherit 
 2: group:YOURDOMAIN\gwatson allow dir_gen_read,dir_gen_execute,container_inherit 
 3: SYSTEM allow dir_gen_all,object_inherit,container_inherit 
drwxrwx---  31 YOURDOMAIN\cjohnson  YOURDOMAIN\Domain Users   865B 21-10-16_18:03 /data/Projects/Finance/Results
 0: group:YOURDOMAIN\Project Office allow dir_gen_read,dir_gen_write,dir_gen_execute,std_delete,object_inherit,container_inherit 
 1: group:YOURDOMAIN\Finance Auditors allow dir_gen_all,object_inherit,container_inherit  
 3: group:YOURDOMAIN\Domain Admins allow inherited dir_gen_all,object_inherit,container_inherit,inherited_ace 
 4: user:YOURDOMAIN\pbrandon allow inherited dir_gen_read,dir_gen_execute,object_inherit,container_inherit,inherited_ace 
 5: group:YOURDOMAIN\Project Management allow inherited dir_gen_read,dir_gen_execute,container_inherit,inherited_ace 
 6: SYSTEM allow inherited dir_gen_all,object_inherit,container_inherit,inherited_ace 
 etc...

--------------------------------------------------------------------------------------
Details of the ACL listing:
--------------------------------------------------------------------------------------
     The ACL, more specifically the discretionary access control list (DACL),
     is a list of access control entries.  Each access control entry (ACE) in
     the ACL is listed as a single line with an index number for the ACE
     (starting at 0) and has the following parts:
           identity
                   The identity to which this ACE applies
           'allow' or 'deny'
                   To indicate whether the ACE allows or denies the permis-
                   sions listen as part of the ACE
           permissions
                   A list of one or more permissions that are allowed or
                   denied by this ACE
           permission words
                   These indicate flags that affect inheritance behavior, if
                   present in the ACE
     These parts are described below.

     Identity can be of type user (listed as user:), type group (listed as
     group:), or the special identity, everyone.  For directories, it can also
     be one of two special template identities, creator_owner and cre-
     ator_group.  When present in the ACL of a containing directory, these
     template identities are replaced in the ACL of a newly created filesystem
     object with the specific user and group of the creator, respectively.

     Permissions that can appear in the listing for any filesystem object are:
           std_delete
                   The right to delete the object
           std_read_dac
                   The right to read the security descriptor, not including
                   the SACL (system ACL which represents audit policy in NTFS
                   that can be listed in OneFS by the super-user but otherwise
                   unsupported)
           std_write_dac
                   The right to modify the DACL in the object's security
                   descriptor
           std_write_owner
                   The right to change the owner in the object's security
                   descriptor
           std_synchronize
                   The right to use the object as a thread synchronization
                   primitive
           std_required
                   Maps to std_delete, std_read_dac, std_write_dac, and
                   std_write_owner

     Permissions that can appear only for a directory are:
           dir_gen_all
                   Read, write, and execute access
           dir_gen_read
                   Read access
           dir_gen_write
                   Write access
           dir_gen_execute
                   Execute access
           list    List entries.
           add_file
                   The right to create a file in the directory
           add_subdir
                   The right to create a subdirectory
           delete_child
                   The right to delete children, including read-only files
           traverse
                   The right to traverse the directory
           dir_read_attr
                   The right to read directory attributes
           dir_write_attr
                   The right to write directory attributes
           dir_read_ext_attr
                   The right to read extended directory attributes
           dir_write_ext_attr
                   The right to write extended directory attributes

     The generic permissions for directories are mapped to more specific per-
     missions as follows:
           dir_gen_read
                   list, dir_read_attr, dir_read_ext_attr, std_read_dac, and
                   std_synchronize
           dir_gen_write
                   add_file, add_subdir, dir_write_attr, dir_write_ext_attr,
                   std_read_dac, and std_synchronize
           dir_gen_execute
                   traverse, std_read_dac, and std_synchronize
           dir_gen_all
                   dir_gen_read, dir_gen_write, dir_gen_execute, delete_child,
                   and std_write_owner

     Permissions that can appear in the listing for a non-directory filesystem
     object are:
           file_gen_all
                   Read, write, and execute access
           file_gen_read
                   Read access
           file_gen_write
                   Write access
           file_gen_execute
                   Execute access
           file_read
                   The right to read file data
           file_write
                   The right to write file data
           append  The right to append to a file
           execute
                   The right to execute a file
           delete_child
                   This permission is currently not used for a file, but can
                   still be set for Windows compatibility.
           file_read_attr
                   The right to read file attributes
           file_write_attr
                   The right to write file attributes
           file_read_ext_attr
                   The right to read extended file attributes
           file_write_ext_attr
                   The right to write extended file attributes

     The generic permissions for non-directory filesystem objects are mapped
     to more specific permissions as follows:
           file_gen_read
                   file_read, file_read_attr, file_read_ext_attr,
                   std_read_dac, and std_synchronize
           file_gen_write
                   file_write, file_write_attr, file_write_ext_attr, append,
                   std_read_dac, and std_synchronize
           file_gen_execute
                   execute, std_read_dac, and std_synchronize
           file_gen_all
                   file_gen_read, file_gen_write, file_gen_execute,
                   delete_child, and std_write_owner

     Another combination of specific permissions that can be listed is:
           modify  file_write, append, file_write_ext_attr, file_write_attr,
                   delete_child, std_delete, std_write_dac, and
                   std_write_owner

     The permission words that can be listed indicate any inheritance flags in
     the ACE:
           object_inherit
                   Only files in this directory and its descendants inherit
                   the ACE
           container_inherit
                   Only directories in this directory and its descendants
                   inherit the ACE
           no_prop_inherit
                   This ACE will not propagate to descendants (applies to
                   object_inherit and container_inherit ACEs)
           inherit_only
                   The ACE does not apply for permissions to this object, but
                   will apply to descendants when inherited
           inherited_ace
                   The ACE was inherited
