Linux File Permissions - Basics and Commands

-
    As an open source, accessing a file requires more security in Linux. This has been maintained by providing file permissions and access modes. These are applicable for all files and directory.

File Permissions:

    The file permissions tells who all have access to the files.There are 3 attributes in file permissions classified as,
  1. Owner Permission
  2. Group Permission
  3. Other or world Permission
Owner Permission:

    The owner permission defines the action that can be done to the files by the Owner.

Group Permission:

    The Group permission defines the action that can be done to the files by the users on the group.

Other or world Permission:

    The Other permissions defines the action that can be done to the files by the world or public.


File Modes:

    The file modes defines what kind of access are provided to the users. There are 3 attributes in file modes as well,
  1. read
  2. write
  3. execute
read   - The read mode allows to view the file( Readable ). The value for read access is 4
write  - The write mode allows to modify the file ( Readable, Writable and Removable ). The value for write access is 2
execute - The execution mode allows to run the file as a program( Mostly applied to bash files in Linux ). The value for execute access is 1


   
     The above image shows the file permissions for files.
  • First will be the type of file. It may be a file, directory, or a link. 
  • Second three sets of value is assigned to the Owner of the file
  • The third three sets is assigned to the Group.
  • The final three sets is assigned to the public or world.
Printing the File permissions:

    To view file permissions and modes we can use either ls command with -l flag or ll command.







The file permission for a directory is always started with  d.
The file permission for a file is always started with  d.
The file permission for a link is always started with  l.

Changing the Ownership of a file:

    The Owner ship of the file can be changed in order to provide access to other users and groups. To obtain this we use  chown  command.

    Using chown command we can change the owner of the file at a time or user and group at the same time.







Changing the group of a file:

    If you want to change the group-owner alone, you can use  chgrp  command





    If you wish to change the permissions to all the subdirectories use  -R  flag along the  chown  command. It will recursively change the permissions for all files inside the directory




Changing File modes:

    As mentioned earlier the file modes defines the kind of access are provided to the users or groups to the file either the user has the right to read or write or delete.

    When comes to file mode there are two ways to change it.
  1. Absolute mode
  2. Symbolic mode
Absolute Mode:

    Absolute mode is also known as Numeric mode, file permissions are not represented as characters but a three-digit octal number. r=4, w=2 and x=1. Let us view how the values are defined on the following table.

Symbol RepresentsValueFor Absolute modePermission Type
---00No Permission
--x11Execute
-w-22Write
-wx2 + 13Execute + Write
r--44Read
r-x4 + 15Read + Execute
rw-4 + 26Read +Write
rwx4 + 2 + 17Read + Write +Execute

    We will see the changing the file mode through absolute mode. On the following example we will provide 761 permission for a file.






 For the test1.txt file the permissions are as follows,

Owner - File Owner jhony can read,write and execute the file.
Group - Users under the group ljunix can read and write the file.
Others - Rest of the users cannot access the file.

Symbolic mode:

    The symbolic mode allows us to modify permissions for a specific owner. It uses mathematical operators to modify the file permissions.

    In Symbolic mode we use some user denotations to change the permission along with the operators.

u stands for Owner
g stands for Group
o stands for Others
a stands for all

For Operators the permissions will be,


OperatorPermissions
                     +Adds a permission to a file or directory
-Removes the permission
                     =Sets the permission and overrides the permissions set earlier.

We will see this with an example, initially we will set the permissions to null for our test file



Now we will apply using symbolic mode,



    Without defining a user denotations the permissions will set to all the owner.



    We will add read and write access to the Owner of the file,





    These are the methods followed in changing the permissions for files using absolute mode and symbolic mode.

    Hope this articles helps you. Feel free to ask if you have any questions.

Comments

Post a Comment

Popular Posts on this blog

How to Install LAMP Stack on Linux - Ubuntu 17.04

-
Image
What is LAMP?     LAMP stands for Linux with Apache, Mysql and PHP. In this article we are going to see how to install a LAMP stack in Debian based machines Ubuntu-17.04. We are going to install all these packages through source installation which allows us to install required versions. Installing Apache:     On my previous articles i showed how to run a customized apache through source installation. Click here if you miss the article for installing Apache. Installing Mysql:     On Ubuntu machine we are going to install the default mysql through apt. $ apt-get install mysql-server $ systemctl start mysql Installing PHP:     As already told we are configuring applications through source installations. Downloading the source package,     Download the package from PHP official site. Click here to go to the downloads page. This page has the latest stable version for PHP.  For older...
Read more

Creating and Running Virtual Machines in LINUX - KVM - Cli Mode

-
Image
    In this article we will be seeing how to run multiple virtual machines in our host machine through cli mode. Creating Logical volume for the Virtual Machine:     Since the VM needs physical requirements such as Hard-disk, Memory, CPU. We will allocate those from the host machine. For HD we will create a logical volume using the below command, $ lvcreate -L 50G -n ljunix.vmserver-1 kvm lvcreate command use to create the logical volume. -L stands for the size of the HD interms of GB -n is for the Virtual Machine name. kvm is the default path for the volumes being stored. The file path is /dev/kvm Installing the Virtual Machine:     Now our VM has some physical volume to run the installation, Since our Hypervisor is KVM we will be installing Kernel based virtual machines through virt command.     virt-install is a command line tool which provides an easy way to provision operating systems into virtua...
Read more

Apache Webserver - Installation from source (tar.gz and tar.bz2)

-
Image
    Installing from source used to be very common and also quite simple. You would download the source file, unpack it (with either zip or tar), then issue the commands to the the directory you want to install it. Crons: Allows us to install required version. Customizing Modules. To configure and integrate with other source packages.     In this articles we gonna install the Apache through source file on /usr/local/ directory. Get the source file for the desired version from the official website of Apache, where you can find the latest version. click here to download latest package You can either download or wget the file (tar.gz and tar.bz2 are available). $ wget http://mirrors.estointernet.in/apache//httpd/httpd-2.4.37.tar.gz Untar the package, $ tar -xzf httpd-2.4.37.tar.gz On default apache the portable runtime libraries are installed by default, when it comes to source installation you have to inst...
Read more

Setting up a Mail server using Roundcube - Part-2 - Centos 7

-
Image
    On the previous article we have seen how to configure postfix configuration for a mail server. In this second part we will be seeing how to configure and integrate dovecot to handle mail box.     Dovecot is an open-source Internet Message Access Protocol (IMAP) and Post Office Protocol version 3 (POP3) server application. It retrieves emails from Postfix and delivers them to the relevant mailbox on the mail server.     The main config file is /etc/dovecot/dovecot.conf , all other related files are included in the main config file. To integrate IMAP with postfix we have already declared the parameters on /etc/postfix/main.cf files on the Part-I article , smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = $myhostname smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks, reject_unauth_destination broken_sasl_auth_clients = yes smtpd_sasl_type = dovecot smtpd...
Read more

Replacing Commands for Linux Files - Using Perl and Sed

-
Image
     A file may contain different types of strings, numbers, special characters, etc..,. We can directly edit the file using a file editor, but that applies to a single file only. If we wish to search and replace a particular word or number on multiple files, it is a burden to edit manually on every single file. In such situations we use Perl and Sed commands to achieve it.        In this article we are going to see how to replace strings, numbers in a file or a set of files using perl command and sed command. Using Perl:     Perl is the command interpreter of the Perl programming language . Perl has a large number of options that can be useful on the command line. In this article we will be seeing how to perform search and replace alone as stated earlier. Syntax:                            ...
Read more

How to install Docker on Ubuntu-17.04

-
Image
        Docker is a great tool for automating the deployment of applications through containers. In this article we will see how to install docker on Ubuntu-17.04         Since Ubuntu-17.04 is not a LTS version, installing package on 17.04 is little burden. It requires apt-get update on adding repositories which will fails on dependencies. Docker is one of the too. We cannot install docker through apt-get on Ubuntu-17.04. Here is a workaround that will install and run docker on Ubuntu-17.04. Download the binary file from Docker official site through wget, jhony@ljunix~/Downloads$ wget https://get.docker.com/builds/Linux/x86_64/docker-17.04.0-ce.tgz Extract the file, jhony@ljunix~/Downloads$ tar -xzf docker-17.04.0-ce.tgz Copy the extracted files and folder to /usr/bin/ directory, jhony@ljunix~/Downloads$ cd docker/ jhony@ljunix~/Downloads/docker$ ls completion docker docker-containerd docker-containe...
Read more

Blog Top Sites

blog search
blog search

Blog Log

Internet Blogs
submit a blog