Table of Contents
Advertisement
Table 21-1
Feature
Administrative
principles
Default accessibility
Home directories—an
example of default
accessibility
Inheritance from
parents
Privacy
220 OES 2 SP2: Planning and Implementation Guide
POSIX vs. NSS/NCP File Security Models
POSIX / Linux
Permissions are individually controlled and
managed for each file and subdirectory.
Because of the nature of the POSIX
security model, users usually have read
rights to most of the system.
To make directories and files private,
permissions must be removed.
For more information on making existing
directories private, see
"Providing a Private Work Directory," on
page
196.
Users have permissions to see most of the
file system.
The contents of a few directories, such as
the
/root
home directory, can only be
viewed by the
Some system configuration files can be
read by everyone, but the most critical files,
such as
/etc/fstab
and modified by
By default, all users can see the names of
directories and files in home directories.
During LUM installation, you can specify
that newly created home directories will be
private.
For more information on making existing
home directories private, see
Section 17.4.2, "Providing a Private Work
Directory," on page
Nothing is inherited.
Granting permission to a directory or file
affects only the directory or file.
Because users have permissions to see
most of the file system for reasons stated
above, most directories and files are only
private when you make them private.
Section 17.4.2,
root
user.
, can only be read
.
root
196.
Novell Trustee Model on OES 2
Trustee assignments are made to
directories and files and flow
down from directories to
everything below unless
specifically reassigned.
Users can see only the
directories and files for which
they are trustees (or members of
a group that is a trustee).
By default, only the system
administrator and the home
directory owner can see a home
directory. Files in the directory are
secure.
If users want to share files with
others, they can grant trustee
assignments to the individual
files, or they can create a shared
subdirectory and assign trustees
to it.
Rights are inherited in all child
subdirectories and files unless
specifically reassigned.
A trustee assignment can
potentially give a user rights to a
large number of subdirectories
and files.
Directories and files are private
by default.
Advertisement
Table of Contents
Related Manuals for Novell OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009
Related Products for Novell OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009
- NOVELL EDIRECTORY 8.8 SP2 - GUIDE 10-2007
- NOVELL EDIRECTORY 8.8 SP5 - GUIDE 12-2009
- NOVELL IDENTITY MANAGER 3.6.1 - WORKORDER DRIVER IMPLEMENTATION GUIDE 18-12-2009
- NOVELL LINUX ENTERPRISE 11 - SUBSCRIPTION MANAGEMENT TOOL GUIDE 10-02-2009
- NOVELL LINUX ENTERPRISE DESKTOP 11 - ADMINISTRATION GUIDE 17-03-2009
- NOVELL OPEN ENTERPRISE SERVER - CONVERSION GUIDE 12-2010
- NOVELL PLATESPIN ORCHESTRATE 2.0.2 - UPGARDE GUIDE 10-09-2009
- NOVELL PLATESPIN ORCHESTRATE 2.0.2 - VIRTUAL MACHINE MANAGEMENT GUIDE 10-17-2009
- NOVELL PRODUCT NAME 10.3 - DEPLOYING ZENWORKS ON CITRIX SERVER BEST PRACTICES GUIDE 12-13-2010
- NOVELL SERVER CONSOLIDATION MIGRATION TOOLKIT 1.1 - ADMINISTRATION GUIDE 12-23-2005
- NOVELL ZENWORKS APPLICATION VIRTUALIZATION 8.0.2 - INTEGRATION AND STREAMING GUIDE 11-2010
- NOVELL ACCESS MANAGER 3.1 SP1 - SSL VPN SERVER GUIDE 03-17-2010
- NOVELL CUSTOMER CENTER 2.3 - GUIDE 4-8-2009
- NOVELL IFOLDER 3.X - SECURITY ADMINISTRATOR GUIDE 08-15-2006
- NOVELL LINUX ENTERPRISE SERVER 10 - START-UP GUIDE 06-12-2006
- NOVELL LINUX ENTERPRISE SERVER 10 SP2 - STORAGE ADMINISTRATION GUIDE 05-15-2009
Need help?
Do you have a question about the OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009 and is the answer not in the manual?
Questions and answers