How do I completely remove an ACL???

What makes you think the ACL is still there? If it's WGM, you might be getting duped. What does 'ls -le' show on the dir?

iBook G4 Mac OS X (10.4.4)

You are using the correct argument via chmod to remove an ACE. Under normal circumstances chmod -a# 0 ... could be used repeatedly to remove all ACL entries.

I've seen the behavior you're describing. Either Workgroup Manager indicates an ACL entry is present, or you see one with your directory listing in ls -el. Here's how I've been able to solve the problem.

1. Stop all file services or other services that need access to the volume that contains the troublesome share point or folder. Using Disk Utility (or diskutil) perform a Repair Volume (not Repair Permissions). This may catch errors in your Extended Attributes file for the volume in question, which can cause ACL information to be damaged.

2. After you've repaired the target volume, make sure you're up-to-date to at least Server 10.4.3. The earlier versions, I believe, were prone to causing such Extended Attributes problems in the first place.

3. Try chmod -a# 0 ... to remove the "stuck" ACL entry again. If it continues to fail, I've used the following tricks:

a. Duplicate the file or folder with the "stuck" ACL entry and delete its original. You can then remove the troublesome ACL entry on the duplicate, if it is inherited.

b. Use chmod =a# 0 ... to edit the difficult ACL entry, then delete it with chmod -a# 0 .... The "=a" argument allows you to edit an existing ACL entry, replacing its contents with new ones. Here's an example:

chmod =a# 0 "nobody deny readattr" /Volumes/Data/Shared
chmod -a# 0 /Volumes/Data/Shared

--Gerrit