Scribd Logo
Upload

Welcome to Scribd!

  • Chapter6 PracExer p141-142

    Uploaded by

    Richard Llames
    32 views2 pages
    This document describes steps for controlling file permissions and ownership using the umask command and setgid permission on a Linux system. It has the user create a shared directory where new files are owned by the group "ateam", experiment with different umask settings, and set the default umask for the user "alice" to prohibit all access for users not in their group. The guided lab confirms the changes by checking ownership and permission of new files.

    Original Description:

    Exam

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document describes steps for controlling file permissions and ownership using the umask command and setgid permission on a Linux system. It has the user create a shared directory where new files are owned by the group "ateam", experiment with different umask settings, and set the default umask for the user "alice" to prohibit all access for users not in their group. The guided lab confirms the changes by checking ownership and permission of new files.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    32 views2 pages

    Chapter6 PracExer p141-142

    Uploaded by

    Richard Llames
    This document describes steps for controlling file permissions and ownership using the umask command and setgid permission on a Linux system. It has the user create a shared directory where new files are owned by the group "ateam", experiment with different umask settings, and set the default umask for the user "alice" to prohibit all access for users not in their group. The guided lab confirms the changes by checking ownership and permission of new files.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 2

    Practice: Controlling New File Permissions and

    Ownership
    Guided exercise
    In this lab, you will control default permissions on new files using the umask command and setgid
    permission.

    Outcomes
     Create a shared directory where new files are automatically owned by the group ateam.
     Experiment with various umask settings.
     Adjust default permissions for specific users.
     Confirm your adjustment is correct.

    Before you begin...


    Reset your serverX system. Run lab permissions setup to create the alice account. The password for alice
    is password.

    1. Log in as alice on your serverX virtual machine and open a window with a Bash prompt. Use the
    umask command without arguments to display Alice's default umask value.

    [alice@serverX ~]$ umask


    0002

    2. Create a new directory /tmp/shared and a new file /tmp/shared/defaults to seehow the default
    umask affects permissions.

    [alice@serverX ~]$ mkdir /tmp/shared


    [alice@serverX ~]$ ls -ld /tmp/shared
    drwxrwxr-x. 2 alice alice 6 Feb 13 18:54 /tmp/shared
    [alice@serverX ~]$ touch /tmp/shared/defaults
    [alice@serverX ~]$ ls -l /tmp/shared/defaults
    -rw-rw-r--. 1 alice alice 0 Feb 13 18:54 /tmp/shared/defaults

    3. Change the group ownership of /tmp/shared to ateam and record the new ownership and
    permissions.

    [alice@serverX ~]$ chown :ateam /tmp/shared


    [alice@serverX ~]$ ls -ld /tmp/shared
    drwxrwxr-x. 2 alice ateam 21 Feb 13 18:54 /tmp/shared

    4. Create a new file in /tmp/shared and record the ownership and permissions.

    [alice@serverX ~]$ touch /tmp/shared/alice3


    [alice@serverX ~]$ ls -l /tmp/shared/alice3
    -rw-rw-r--. 1 alice alice 0 Feb 13 18:55 /tmp/shared/alice3

    5. Ensure the permissions of /tmp/shared causes files created in that directory to inherit the group
    ownership of ateam.

    [alice@serverX ~]$ chmod g+s /tmp/shared


    [alice@serverX ~]$ ls -ld /tmp/shared
    drwxrwsr-x. 2 alice ateam 34 Feb 13 18:55 /tmp/shared
    [alice@serverX ~]$ touch /tmp/shared/alice4
    [alice@serverX ~]$ ls -l /tmp/shared/alice4
    -rw-rw-r--. 1 alice ateam 0 Feb 13 18:55 /tmp/shared/alice4

    6. Change the umask for alice such that new files are created with read-only access for the group
    and no access for other users. Create a new file and record the ownership and permissions.

    [alice@serverX ~]$ umask 027


    [alice@serverX ~]$ touch /tmp/shared/alice5
    [alice@serverX ~]$ ls -l /tmp/shared/alice5
    -rw-r-----. 1 alice ateam 0 Feb 13 18:56 /tmp/shared/alice5

    7. Open a new Bash shell as alice and view the umask.

    [alice@serverX ~]$ umask


    0002

    8. Change the default umask for alice to prohibit all access for users not in their group.

    [alice@serverX ~]$ echo "umask 007" >> ~/.bashrc


    [alice@serverX ~]$ cat ~/.bashrc
    # .bashrc

    # Source global definitions


    if [ -f /etc/bashrc ]; then
    . /etc/bashrc
    fi

    # Uncomment the following line if you don't like systemctl's auto-paging feature:
    # export SYSTEMD_PAGER=

    # User specific aliases and functions


    umask 007

    9. Log out and back into serverX as alice and confirm that the umask changes you made are
    persistent.

    [alice@serverX ~]$ umask


    0007

    You might also like