Chapter Summary

In this chapter, you learned the concept of file permissions and access control lists. These are very important from a file- and system-security point of view. The following items were presented in this chapter.

• There are three types of user in UNIX; the owner, members of the owner group , and all other users.

• The three types of permissions can be set for every file and directory. These are read, write, and execute permissions.

• A file's permissions can be changed with the chmod command.

• The owner and group of a file can be changed with the chown and chgrp commands.

• Use of the SETUID and SETGID bits and security problems associated with these.

• Use of the sticky bit and its effect on files and directories.

• Finding files with specific file permissions using the find command.

• Use of Access Control Lists (ACLs) with the lsacl and chacl commands, which are used to list and change ACLs, respectively.

In addition, you have also used some other commands that don't affect file permissions directly. The newgrp command is used to change group membership temporarily while the su command is used to change user ID temporarily. The id command is used to check the current user and group membership.

In the next chapter, we will see the file system structure of HP-UX and how different directories are arranged in the file system. We will also see which directory contains what type of files.