THIS IS A DRAFT. Updates may still happen Using ls -l, explain the different file and directory permissions displayed. The owner/user, group, and other permissions should be clearly understood. Setup the following: * We have the following users: ** user1, user2, user3, .... user9 * We have the following groups: ** even, odd, staff, users, webmasters * All users are in the "users" group. File and Directory Permissions have 1 view and 2 ways to Set Fill in the octal permissions for the following: * drwxrwxrwx * -rwxrwxrwx * drwxr-xr-x * -rw-r--r-- * -rw-rw---- * -rw-r----- * -rwxr-xr-x * -rwxr--r-- * -rwxr----- * drwxr-x--- * drwx------ For the above examples, please fill in the symbolic modes. Multiple modes may be needed. How is that done? Simple File and Directory Permissions - what do these translate into from an ls -l listing? 440 660 775 750 What symbolic modes would be used to make equivalent permissions? Personal files and directories - what do these translate into from an ls -l listing? 400 600 700 What symbolic modes would be used to make equivalent permissions? Umask - what do these translate into from an ls -l listing? When is the only time that umask matters? pg 45 0022 0002 0077 0027 What does 'umask -S' do? What is the best way to change your umask forever? How would you change your umask temporarily? Execute File Permissions u+x g+x o+x o-x Execute Directory Permissions u+x g+x o+x g-x o-x go=x a+x Set and Retain eXecute Permissions +x vs +X Why would drwx--x--x be useful? Why bother with octal? * chmod u=rw,go=r file * chmod 644 file What are ACLs? Where might they be useful? Are ACLs always available to be used? What would be bad about using ACLs? Are there clients that ignore ACLs? What are the ramifications? Set Uid/Gid Permissions on files/programs/scripts. Why? Setgid on Directories. Why? Create a directory to be shared by all members of the "even" group. Explain the detailed permissions for owner, group, and access modes needed. What is the "sticky bit" and when is it used? Explain what file attributes are and when they might be useful. If a web-server runs using the 'wsrv' user account, setup file and directory permissions to allow the group 'webmaster' to maintain the files in /var/www/lpi.jdpfu.com/ . What should be the ownership, group and permissions so that no new subdirectories can be created by anyone other than root. Create subdirectories for the website: * Info * About * Purchase * Contact Allow any members of the group to modify any files inside them, except the "About" subdirectory. That should be 'immutable'. What commands were run? Command Summary - chmod (only the owner/root) - ls -al - chgrp (only the owner/root) - chown (only root can do this) - getfacl - setfacl - lsattr - chattr End Next Up - Process Control