[Novalug] How to change a file's permission question

Jon LaBadie novalugml@jgcomp.com
Tue Aug 28 16:45:22 EDT 2012


On Tue, Aug 28, 2012 at 07:12:53PM +0000, Jeremy Hoel wrote:
> Isn't the Z flag for SELinux type security context?
> 

You're correct.  I mis-remembered -Z, tried it and it looked reasonable.
I didn't check the man page.

No 'ls' options that I know of for ACLs, use getfacl instead.

jl
> 
> On Tue, Aug 28, 2012 at 7:00 PM, Jon LaBadie <novalugml@jgcomp.com> wrote:
> > On Tue, Aug 28, 2012 at 02:02:12PM -0400, Jay Hart wrote:
> >> It didn't matter where your mind was, I didn't understand a thing.  I've never
> >> heard of chacl, getfacl, or setfacl, so this data update again left me in the
> >> "still don't understand a thing, but now I'm three times lost" category.
> >>
> >> Jay
> >
> > ACL, Access Control List.  A much finer grained capability.  For example,
> > you could allow one specific user access to a file while all others are
> > excluded by the standard rwx.
> >
> > Try "ls -Z".
> >
> > jl
> >>
> >> > *hits head on table*
> >> > chacl was the command .....
> >> >
> >> > getfacl and setfacl is where I wanted to go. Not sure where my mind
> >> > was .....
> >> >
> >> >
> >> > On Tue, 2012-08-28 at 11:54 -0400, Peter Larsen wrote:
> >> >> On Thu, 2012-08-23 at 20:41 -0400, James Ewing Cottrell 3rd wrote:
> >> >> > On 8/20/2012 11:12 AM, John Place wrote:
> >> >> > > chmod 646 SomeFile
> >> >> > >
> >> >> > > which would make that file editable by the ower and all others that are
> >> >> > > NOT in the group of the file...
> >> >> >
> >> >> > Almost Correct. Be aware that if a File is Readable and the Directory is
> >> >> > Writable, that one can simply read the file, delete it, and write
> >> >> > another copy.
> >> >> >
> >> >> > Various editors will go to different lengths to get the job done.
> >> >> > Depending on the settings, emacs will mv the original file to a backup,
> >> >> > and write an entirely new version of the file.
> >> >> >
> >> >> > If that happens, the owner will change.
> >> >> >
> >> >> > > Unique permission set, some times it was
> >> >> >
> >> >> > One technique I heard about was putting Troublemakers in their own
> >> >> > group, using that group on various System Files and Directories, and
> >> >> > chmod g-a the appropriate files and directories.
> >> >>
> >> >> ACL *COUGH*
> >> >>
> >> >> man lsattr
> >> >> man chattr
> >> >>
> >> >> It's a mystery to me why this has never really become mainstream on
> >> >> linux.
> >> >>
> >> >> _______________________________________________
> >> >> Novalug mailing list
> >> >> Novalug@calypso.tux.org
> >> >> http://calypso.tux.org/mailman/listinfo/novalug
> >> >
> >> >
> >> > --
> >> > Best Regards
> >> >   Peter Larsen
> >> >
> >> > Wise words of the day:
> >> > The only other people who might benefit from Linux8086 would be owners
> >> > of PDP/11's and other roomsized computers from the same era.
> >> >     -- Alan Cox
> >> > _______________________________________________
> >> > Novalug mailing list
> >> > Novalug@calypso.tux.org
> >> > http://calypso.tux.org/mailman/listinfo/novalug
> >> >
> >>
> >>
> >> _______________________________________________
> >> Novalug mailing list
> >> Novalug@calypso.tux.org
> >> http://calypso.tux.org/mailman/listinfo/novalug
> >>
> >>>> End of included message <<<
> >
> > --
> > Jon H. LaBadie                  novalugml@jgcomp.com
> >  11226 South Shore Rd           (703) 787-0688 (H)
> >  Reston, VA  20190              (609) 477-8330 (C)
> > _______________________________________________
> > Novalug mailing list
> > Novalug@calypso.tux.org
> > http://calypso.tux.org/mailman/listinfo/novalug
> 
>>> End of included message <<<

-- 
Jon H. LaBadie                  novalugml@jgcomp.com
 11226 South Shore Rd		(703) 787-0688 (H)
 Reston, VA  20190		(609) 477-8330 (C)



More information about the Novalug mailing list