module 2 day 4, final day of module 2: supplemental reading for special permissions in windows through Permissions Quiz

Question 1

what can groups or users do with Full control?

Answer 1

groups or users granted full control permissions on a folder can delete any files in that folder regardless of the permissions protecting the file

Question 2

Although they have the same special permissions, what permissions are inherited differently?

Answer 2

List Folder Contents and Read&Execute

Question 3

What is inherited by folders but not files?

Answer 3

List Folder Contents

Question 4

What is inherited by both files and folder and is always present when you view file or folder permissions?

Answer 4

read&execute

Question 5

What group does not include the Anonymous Logon group by default?

Answer 5

the Everyone group, so permissions applied to the Everyone group do not affect the Anonymous Logon group.

Question 6

what do you need special permissions for in Linux?

Answer 6

Giving a normal user root access

Question 7

How can we write or scramble passwords in the shadow file if it is owned by root?

Answer 7

a special permission bit known as setuid

Question 8

what does setuid do?

Answer 8

enable files to be run set by the permissions of the owner of the file

Question 9

how do you run the passwd command? what are you running it as?

Answer 9

as root

Question 10

in rws, what does the s permission stand for?

Answer 10

setuid

Question 11

what allows us to run the file with the permissions of the owner of the file?

Answer 11

when the S is substituted where a regular bit would be in the first three bits of permissions

Question 12

how do you enable the setuid bit? what two methods are available?

Answer 12

symbolically or numerically

Question 13

how do you enable the setuid bit in symbolic format? for mycoolfile.txt

Answer 13

use an s.
sudo chmod u+s mycoolfile.txt

Question 14

how do you enable the setuid bit in numeric format? for filename.txt

Answer 14

sudo chmod 4755 filename.txt

you prepend a 4 to the other permissions for the file to enable setuid.

Question 15

how can I run a file similar to setuid?

Answer 15

with group permissions

Question 16

what does the passwd command do?

Answer 16

it scrambles our password and adds it to the shadow file

Question 17

what does setuid do?

Answer 17

allows the file to be run by the permissions of the owner of the file

Question 18

what is setUID?

Answer 18

a special permission

Question 19

what is s replacing for setuid?

Answer 19

x

Question 20

what can you use to run a file with group permissions?

Answer 20

SetGID

Question 21

how can you see if the setGID is enabled?

Answer 21

run:
ls -l /usr/filename,
and you look in the bits 4-6 of the permissions

Question 22

what is the numerical format for setGID? for filename.txt

Answer 22

2 prepended to the permissions set
sudo chmod 2755 filename.txt

Question 23

what is the symbolic format for setting setGID? for filename.txt

Answer 23

sudo chmod g+s filename.txt

Question 24

what bit sticks a file or folder down and makes it so anyone can write to a file or folder but they can’t delete anything, only the owner or root can delete anything

Answer 24

the sticky bit

Question 25

in ls, what does the d flag do?

Answer 25

shows information for just the directory and not the contents

Question 26

what does the special permission symbol t mean in a file's permissions, like in the /tmp file?

Answer 26

anyone can add and modify files

Question 27

who can delete the /tmp directory?

Answer 27

only root or the owner

Question 28

what formats can i use to enable the sticky bit?

Answer 28

numerical or symbolic

Question 29

what is the numerical bit for sticky bit?

Answer 29

1

Question 30

what does the command sudo chmod +t file.txt do?

Answer 30

add the sticky bit

Question 31

what does sudo chmod 1755 filename.txt do?

Answer 31

add the sticky bit numerically

Question 32

what are core concepts in security?

Answer 32

user access, group access, passwords, and permissions

Question 33

access control lists

Answer 33

ACL

Question 34

a user that has complete control over a machin

Answer 34

Administrator

Question 35

a way of protecting your accounts and information such as facial recognition and fingerprint

Answer 35

biometric data

Question 36

a tool that lets you manage a local or remote computer

Answer 36

computer management

Question 37

discretionary Access control list

Answer 37

DACL

Question 38

a process for setting permissions for who has access to certain files

Answer 38

File permissions

Question 39

a user or group can do anything they want to files.

Answer 39

full control

Question 40

a permission group that mean that a DACL will be inherited, but not applied to a container

Answer 40

Inherit Only

Question 41

a command that will execute and list folder contents and is an alias for Read and Execute

Answer 41

List folder contents

Question 42

a system used to apply and enforce rules about how the device has to be configured and used

Answer 42

Mobile device management

Question 43

an umbrella permissions that includes read and execute and write

Answer 43

modify

Question 44

the initial account you made during setup

Answer 44

primary account

Question 45

permissions that grant you access to read the file that exists and execute it if it's runnable

Answer 45

Read and execute permissions

Question 46

permissions that grant you access to read the file that exists

Answer 46

Read permissions

Question 47

It is the first user. It gets automatically created when we install a Linux OS and has all the privileges on the OS. Also called the super user. Technically only one, but anyone that is granted access to their powers can be called a super user too

Answer 47

Root user

Question 48

system access control list

Answer 48

SACLs

Question 49

one of these is actually made up of multiple Special or specific permissions

Answer 49

Simple permissions

Question 50

an account that grants you access to multiple accounts without requiring constant entry of a password or username

Answer 50

single sing on, SSO

Question 51

a user who is given access to the machine but has restricted access to do things like install software or change certain settngs

Answer 51

standard user

Question 52

a network of computers and users that are added to a central database

Answer 52

windows domain

Question 53

a permissions that allows you to make changes to a file

Answer 53

write permission