Part 3 File Systems: Lesson 12 Flashcards
How do ACLs differ from standard UNIX filesystem permissions?
Standard UNIX file system permissions allow only for permissions to be set for one owner, one group, and all others. ACLs, on the other hand, allow for an essentially unlimited list of permissions entries.
How do you identify the ownership and permissions of a file folder in the Finder?
An item’s ownership and permissions can be identified using the Get Info or Inspector windows in the Finder.
What is the locked file flag?
The locked file flag prevents anyone, including the item’s owner, from editing an item. Only the item’s owner can unlock the item to then allow modification.
Why is the root, or beginning level of a user’s home folder visible to other users?
The root level of a user’s home folder is visible to other users so they can navigate to the Public shared folder.
How does the default organization of the filesystem allow users to safely share local files and folders?
Every home folder contains a Public folder that other users can read, and a Drop Box folder that other users can write to. All other subfolders in a user’s home folder (except the optional Sites folder) have default permissions that don’t allow access to other users. The Shared folder is also set for all users to share items.
What is unique about the permissions of the /Users/Shared folder?
The shared folder is set up to allow all users to read and write files, but only the user who owns an item can delete it from the Shared folder. This is accomplished using the sticky bit permission settings.
What does it mean when you choose to “Ignore volume ownership in the Finder? What are the security ramifications of ignoring volume ownership?
You can choose to ignore ownership on any nonsystem volume. This ignores any ownership rules and grants any logged-on user unlimited access to the contents of the volume. It’s a potential security risk because it allows any local user account to have full access to the volume even if that user didn’t originally mount the volume.
