Directory permissions


Permissions
For security reasons, all Unix systems including Linux have file permissions which allow you to control access to directories - who can read, write, or execute a file or command in a directory.
In the extreme left is either a d or hyphen (-) indicating whether this is a directory or a file (occasionally you will also see an l indicating a link). Then you see three groups of the same three letters in the same order: r for read, w for write, x for execute, and the hyphen (-) for no permission given in that type. The first group of three letters is for the owner, the second group for the group, and the third the world. Whoever creates the file is the owner, and if more than one person is working on a project or needs access to this file they are given permission as a group, and finally how the file is open to anyone who has access to the system (the world).
chmod, chown, chgrp
The command to change file permissions is chmod (change mode). There are two ways for doing this: the numeric system and the symbolic system.
The numeric system uses numbers to track permissions. Using the table below you add together the numeric equivalent for the permissions you want.
400 - owner has read permission 200 - owner has write permission 100 - owner has execute permission
040 - group has read permission 020 - group has write permission 010 - group has execute permission
004 - world has read permission 002 - world has write permission 001 - world has execute permission
Thus chmod 764 SomeFile gives the owner permission to read, write, and execute SomeFile; the group has permission to read and write; the world permission to read only.
The other method for changing modes is the symbolic method. With this method, you have to know the existing permissions because the commands are added or removed relative to how permissions are currently set. The plus sign (+) adds a permission, the minus sign (-) removes a permission.
u - user (owner) g - group o - other (world) a - everyone - user, group, and other
r - read permission w - write permission x - execute permission
t - sticky bit
Thus chmod g+x Some File gives permission to the group to execute SomeFile.
In the past Unix crackers used to get around the permissions by messing around with entire directories. The way to prevent this is to set restrictive permissions for the directory using the sticky bit, which makes the directory accessible only to the owner and root without affecting how the individual file permissions are set.
chmod -t The Directory
You can also change the owner with the chown command, and change the group with chgrp.

Comments

Post a Comment

Popular posts from this blog

Installation of Linux version of XAMPP

Image
Step 1: Download you can download Linux version of XAMPP from the give link A complete list of downloads (older versions) is available Step 2: Installation After downloading simply type in the following comm ands: Go to a Linux shell and login as the system administrator root: su Extract the downloaded archive file to /opt: tar xvfz xampp-linux-1.7.tar.gz -C /opt Note: Please use only this command to install XAMPP. DON'T use any Microsoft Windows tools to extract the archive, it won't work. Note : already installed XAMPP versions get overwritten by this command. That's all. XAMPP is now installed below the /opt/lampp directory. Step 3: Start To start XAMPP simply call this command: /opt/lampp/lampp start You should now see something like this on your screen: Starting XAMPP 1.7... LAMPP: Starting Apache... LAMPP: Starting MySQL... LAMPP started. Ready. Apache and MySQL are running. If you get any error messages please take a look at the Step 4:...
Read more

How can I prevent users from connecting to a USB storage device? in Windows OS

It is easy to lock a machine down, disable the floppy, and cdrom in the bios. There is a simple registry change that will keep the USB storage drivers from starting when the system boots. Keeps people from walking up to a PC and copying data off with a USB key, but allows you to keep your scanner, keyboard, and mouse working. As always - back your system up before messing around in the registry. Just open regedit and browse to this key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\UsbStor Notice the value 'Start' Switch this value to 4, and USB storage devices are disabled. Switch this value to 3, and USB storage devices are enabled. Hence you have Prevented users from connecting a USB device
Read more

Basic Linux Commands

command cd : Use cd change directories example: cd home or complete path must be written cd /root/home command clear : clean up your command window command ls : The ls command lists the contents of your current working directory command mkdir : makes directory command df : df provides a very quick check of your file system disk space. command du : du display usage of the disk space example du -a command finger : finger allows you to see who else is on the system or get detailed information about a person who has access to the system. command man : man followed by a command will give detailed information about that command Example: man ls command logout : logout will log your account out of the system command find : find will locate a files/directories qui...
Read more