tailieunhanh - Module Linux essentials - Module 16: Special permissions, links and file locations

Module Linux essentials - Module 16 introduce special permissions, links and file locations. After studying this chapter students should be able to: Working with system files and libraries, understanding symbolic links. | Module 16 Special Permissions, Links and File Locations Exam Objective Special Directories and Files Objective Summary Working with system files and libraries Understanding symbolic links setuid Permission The setuid Permission The setuid permission is set on certain system utilities so that an ordinary user can execute the program as if it was run by the root user. This allows an a normal user to perform common system administration tasks without having to do gain direct access to the root account. An excellent example of the setuid permission in action is the /usr/bin/passwd command. When a user executes the passwd command successfully, the command is able to update the /etc/shadow file to set a new password for the user. This file can’t be accessed normally by no-root users. Files with setuid A file that has setuid permission properly set will have a lowercase "s" in the “user owner” execute position, indicating both setuid and execute permission for the user owner are set: -rwsr-xr-x A file which has setuid permission, but lacks execute permission for the user owner will show an uppercase "S" to highlight that the permission is not effective: -rwSr-xr-x Using chmod with setuid The chmod command can be used to set or remove the setuid permission, using either a symbolic or numeric method Setting setuid where nnn is original permission mode: chmod u+s file or chmod 4nnn file Removing setuid where original mode is 4nnn: chmod u-s file or chmod 0nnn file setgid Permission The setgid Permission on a File The setgid permission used on a file is similar to setuid except that it uses group permissions. When a user executes a file that is setgid, the system runs the command as if the user were a member of the group that owns the executable, usually granting access to additional files. An example of setgid permission on a file is the /usr/bin/wall command. The wall command sends messages to other user’s terminals. Since this executable is owned by the "tty" group, . | Module 16 Special Permissions, Links and File Locations Exam Objective Special Directories and Files Objective Summary Working with system files and libraries Understanding symbolic links setuid Permission The setuid Permission The setuid permission is set on certain system utilities so that an ordinary user can execute the program as if it was run by the root user. This allows an a normal user to perform common system administration tasks without having to do gain direct access to the root account. An excellent example of the setuid permission in action is the /usr/bin/passwd command. When a user executes the passwd command successfully, the command is able to update the /etc/shadow file to set a new password for the user. This file can’t be accessed normally by no-root users. Files with setuid A file that has setuid permission properly set will have a lowercase "s" in the “user owner” execute position, indicating both setuid and execute permission for the user owner are set: .

• Hệ điều hành
• Linux essentials
• Module Linux essentials
• Special permissions
• Setuid permission
• Setgid permission
• Working with sticky bit
• Linux essentials chapters
• Using Linux
• Command line skills
• Network configuration
• History of Linux
• Linux system
• Open source
• Linux runs
• Desktop skills
• Working in Linux
• Command line
• Red Hat Linux Essentials
• Linux Ideas and History
• Linux Usage Basics
• Running Commands
• Browsing the Filesystem
• Linux command line
• Basic shell
• Command line interface
• Major open source applications
• Mobile applications
• Web servers
• Mail servers
• The man command
• Controlling the man page display
• Man page sections
• Working with files
• Working with directories
• Directory path
• Home directory
• The command line
• Archiving file
• Decompressed file
• Lossy compression
• Searching data from files
• Extracting data from files
• Command line pipes
• Redirecting STDOUT
• Basic scripting
• Turning commands into a script
• Basic text editing
• Basic shell scripting
• Understanding computer hardware
• System Information
• Viewing CPU information
• Peripheral devices
• Managing packages
• Managing processes
• Debian package management
• RPM based management
• Domain Name Service
• IP addressing
• Configuring the network
• System security
• User security
• System users
• Identifying user types
• Managing users
• Managing groups
• Account information
• Password security
• Managing file permissions
• Identity information
• Chmod command
• Umask command
• Slackware Linux Essentials
• 2nd Edition
• Second Edition
• JavaScript
• Enlightenment
• JavaScript 1
• Mobile Cookbook
• windows operating system
• unix operating system
• system administration
• installation tips
• operating system
• linux
• Managing Linux Systems
• TCP IP essentials
• A Lab Based approach
• TCP IP overview
• Linux and TCP IP networking
• A single segment network
• The Cisco IOS
• Dynamic routing
• system administrators
• mac operating system
• installation experience
• linux operating system
• computer software
• computer tips
• It