Troubleshooting with Rules of Precedence
Here are some rules that define which permissions take precedence:
Standard POSIX permissions apply automatically if no ACL exists for a certain file or folder. If you don’t specify any permissions to a newly created share point (and none are inherited), the default POSIX permissions and inheritance rules are applied.
Deny permissions take precedence. When the server sees a Deny permission, it applies it regardless of other rules or precedence. This behavior can unintentionally block access for a user.
ACL entries are first-come, first-served. The order in which users and groups are listed ...