Presentation is loading. Please wait.

Presentation is loading. Please wait.

Chapter 8 File Security.

Published byDiana Bryant Modified over 6 years ago

Similar presentations

Presentation on theme: "Chapter 8 File Security."— Presentation transcript:

1 Chapter 8 File Security

2 Objectives To show the three protection and security mechanisms that UNIX provides To describe the types of users of a UNIX file To discuss the basic operations that can be performed on a UNIX file To explain the concept of file access permissions/ privileges in UNIX To discuss how a user can determine access privileges for a file To describe how a user can set and change permissions for a file To cover the commands and primitives ? , ~ , * , chmod, groups, ls – l, ls – ld, umask Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

3 Password-based Protection
All login names are public knowledge and can be found in the /etc/passwd file. Change password using: yppasswd, nispasswd Discovering a user’s password: 1) You, as the owner of an account, inform others of your password 2) a password can be guessed by another user 3) a user’s password can be extracted by “brute force” Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

4 Encryption-based Protection
Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

5 Protection based on Access Permission
Types of users User (owner), group, others A user with multiple groups Types of Access Permissions Read, write, and execute Access Permissions for Directories Directory search Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

6 Protection based on Access Permission (Contd)
Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

7 Protection based on Access Permission (Contd)
Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

8 Determining and Changing File Access Privileges
Determining File Access Privileges ls –l , ls –ld Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

9 Determining and Changing File Access Privileges
Determining File Access Privileges ls –l , ls –ld Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

10 Determining and Changing File Access Privileges (Contd)
Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

11 Determining and Changing File Access Privileges
chmod [options] octal-mode file-list chmod [options] symbolic-mode file-list Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

12 Examples of chmod Command
Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

13 Determining and Changing File Access Privileges
Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

14 Access Privileges for Directories
Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

15 Access Privileges for Directories
Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

16 Default file access privileges
umask mask The access permission value on executable file or directory is computed by: file access permission = 777 – mask Current Value of the mask: $ umask 777 $ Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

17 Special Access Bits The Set-User-ID (SUID) Bit
If this bit is set for a file containing an executable program for a command, the command takes on the privileges of the owner of the file when it executes. chmod 4xxx file-list chmod u+s file-list The Set-Group-ID (SGID) Bit Causes the access permission of the process to take the group identity of the group to which the owner of the file belongs. chmod 2xxx file-list chmod g+s file-list The Sticky Bit Can be set for a directory to ensure that an unprivileged user cannot remove or rename files of other users in that directory. chmod 1xxx file-list chmod +t file-list Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

18 Special Access Bits Copyright © 2005 Pearson Addison-Wesley. All rights reserved.

Download ppt "Chapter 8 File Security."

Similar presentations

Unit 5 – User Administration Randy Marchany VA Tech Computing Center.

Unit 5 – User Administration Randy Marchany VA Tech Computing Center.
File Security. Viewing Permissions ls –l Permission Values.

File Security. Viewing Permissions ls –l Permission Values.
Chapter 10 File System Security. Security Policies security policies are doors maintain a balance between total access and total security UNIX has two.

Chapter 10 File System Security. Security Policies security policies are doors maintain a balance between total access and total security UNIX has two.
File security and Permissions A file is owned by the user who created it That user can then specify who can read, write and execute that file A file when.

File security and Permissions A file is owned by the user who created it That user can then specify who can read, write and execute that file A file when.
Linux+ Guide to Linux Certification, Second Edition

Linux+ Guide to Linux Certification, Second Edition
CS 497C – Introduction to UNIX Lecture 15: - File Attributes Chin-Chih Chang

CS 497C – Introduction to UNIX Lecture 15: - File Attributes Chin-Chih Chang
Operating Systems Recitation 11, June 9-10, 2002.

Operating Systems Recitation 11, June 9-10, 2002.
UNIX Chapter 08 File Security Mr. Mohammad Smirat.

UNIX Chapter 08 File Security Mr. Mohammad Smirat.
Linux File Security. What is Permission ? Specifies what right are granting to users to access the resources available in the computer. So that important.

Linux File Security. What is Permission ? Specifies what right are granting to users to access the resources available in the computer. So that important.
LERSAIS.  Access Control in Unix  Access Control in Windows  Port Redirection 2.

LERSAIS.  Access Control in Unix  Access Control in Windows  Port Redirection 2.
Getting Started with Linux Linux System Administration Permissions.

Getting Started with Linux Linux System Administration Permissions.
Copyright © 2002 ProsoftTraining. All rights reserved. Operating System Security.

Copyright © 2002 ProsoftTraining. All rights reserved. Operating System Security.
O.S security Ge Zhang Karlstad University. Outline Why O.S. security is important? Security schemes in Unix/Linux system Security schemes in windows system.

O.S security Ge Zhang Karlstad University. Outline Why O.S. security is important? Security schemes in Unix/Linux system Security schemes in windows system.
Filesystem Hierarchy Standard (FHS) –Standard of outlining the location of set files and directories on a Linux system –Gives Linux software developers.

Filesystem Hierarchy Standard (FHS) –Standard of outlining the location of set files and directories on a Linux system –Gives Linux software developers.
Va-scanCopyright 2002, Marchany Unit 6 – Solaris File Security Randy Marchany VA Tech Computing Center.

Va-scanCopyright 2002, Marchany Unit 6 – Solaris File Security Randy Marchany VA Tech Computing Center.
Files & Directories Objectives –to be able to describe and use the Unix file system model and concepts Contents –directory structure –file system concepts.

Files & Directories Objectives –to be able to describe and use the Unix file system model and concepts Contents –directory structure –file system concepts.
CIT 140: Introduction to ITSlide #1 CSC 140: Introduction to IT File Security.

CIT 140: Introduction to ITSlide #1 CSC 140: Introduction to IT File Security.
File Permissions. What are the three categories of users that apply to file permissions? Owner (or user) Group All others (public, world, others)

File Permissions. What are the three categories of users that apply to file permissions? Owner (or user) Group All others (public, world, others)
Linux+ Guide to Linux Certification, Second Edition

Linux+ Guide to Linux Certification, Second Edition
Managing Files CSCI N321 – System and Network Administration Copyright © 2000, 2011 by the Trustees of Indiana University except as noted.

Managing Files CSCI N321 – System and Network Administration Copyright © 2000, 2011 by the Trustees of Indiana University except as noted.

Similar presentations

Ads by Google