File System Mounting, Sharing, Protection
File System Mounting, Sharing, Protection
protection
11.4. File System mounting
11.5. File Sharing
11.5.1. Multiple Users
Owner Group approach
UID in Unix, SID in Windows
11.6. Protection
11.6.1. Types of access
mount point
Mounted file system
Users
Groups
The group attribute of
a file is used to define
a subset of users who
may share access to
the file
Permissions
Owner Group Universe approach
Ownership
The owner is the user who:
may change attributes
Groups grant access
The group attribute of a file is has the most control over the file or directory.
used to define a subset of
users who may share access
to the file
1 2 3 4 5 6 7 8 9 10
User owner Group owner file size last modific.date file name
Protection
Ownership
UID in Unix, SID in Windows
Usernames
Security ID
Username
UID in Unix, SID in Windows
Security Identifier (SID) in windows = User Identifier (UID) in Unix
These numerical identifiers are unique.
Every user can be in one or more groups.
Groups also have Group Identifiers (GID) and Group Names.
After user login and authentication the User ID and Group ID are determined (by
username and password).
That User IDs are associated with all of the User’s processes and files.
The GIDs also are included in any process or file association.
The OS uses only numerical IDs. Names are for people (to show on the screen, to print).
student1:x:501:501::/home/stud1:/bin/bash
student2:x:502:502::/home/stud2:/bin/bash
Group ID (primary)
User ID
Group ID
student1:x:501:
student2:x:502:
cis215group:x:503:student1,student2
Process Effective Permissions
Runs vi command from vi
executable binary file
Can Kill