LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   Linux security question about ACL (Advanced Control List) (https://www.linuxquestions.org/questions/linux-newbie-8/linux-security-question-about-acl-advanced-control-list-872409/)

newlinuxuser11 04-01-2011 11:09 AM
Linux security question about ACL (Advanced Control List)
 
Hi,

I'm new to Linux, learning with unixacademy dvds and I have a question about ACL security feature. It isn't clear to me, when we use ACL with "setfacl" command to set new advanced permissions for the files, and then we list the files with "ls" command... Does it show that files have new, extended permissions? Is there an option for "ls" to do that?
Because, isn't it a security problem when the files have extended permissions but we don't know about it until we use "getfacl" (which, as I see it, we usually don't)?

Thanks!

SL00b 04-01-2011 11:52 AM
ACL actually stands for "access control list."

If you do an ls -l, you'll see something other than the standard rwx characters that lets you know there's an ACL there. For example:

Code:
-rw-r-----+ ... tux project3 ... mydir/myfile
The "+" character lets you know there's an ACL in play.

Here's a good guide on ACLs in general. I copied the example straight out of it. http://www.suse.de/~agruen/acl/chapter/fs_acl-en.pdf

newlinuxuser11 04-21-2011 11:26 AM
Quote:
Originally Posted by SL00b (Post 4310882)
ACL actually stands for "access control list."

If you do an ls -l, you'll see something other than the standard rwx characters that lets you know there's an ACL there. For example:

Code:
-rw-r-----+ ... tux project3 ... mydir/myfile
The "+" character lets you know there's an ACL in play.
Thanks! I missed "+", didn't pay attention, my mistake.


All times are GMT -5. The time now is 08:50 PM.