Lesson 13: Manage Permissions and Sharing Flashcards
• Describe file ownership and permissions. • Explore macOS default shared folders. • Securely manage file and folder access.
How do you identify the ownership and permissions of a file or folder in the Finder?
You can use the Finder Info window to identify an item’s ownership and permissions.
In Finder, you can open the Get Info window of each file or folder and find the permissions of each.
Each file and folder has owner, group, and everyone permission settings.
Which ownership tiers are used with POSIX-style permissions to separately define specific privilege rules for each file and folder?
The ownership tiers used with POSIX-style permissions to separately define specific privilege rules for each file and folder are listed below:
- Owner: By default, an item owner is the user who created the item or copied it to the Mac.
- Group: By default, the group permissions for an item are inherited from the folder it was created in.
- Everyone: Use the everyone permission settings to define access for anyone who isn’t the owner and isn’t part of the item’s group.
How do Access Control Lists (ACLs) differ from standard UNIX file system permissions?
ACLs expand the standard UNIX permissions architecture to allow more file and folder access control.
macOS has adopted a style of ACLs similar to what’s available on Windows-based NTFS and UNIX file systems.
How does the default organization of the file system allow users to safely share local files and folders?
Every home folder contains a Public folder that other users can read and a Dropbox folder that other users can write to.
All other subfolders in a user’s home folder (except the optional Sites folder) have default permissions that don’t allow access by other users.
The Shared folder is also set for all users to share items.
What’s unique about the permissions of the /Users/Shared
folder?
The Shared folder enables local users to read and write files to it, but only the user who owns an item can delete it from the Shared folder.
(This folder’s “sticky bit” permissions setting prevents other users from deleting items that they don’t own.)