1 unix system access permissions, System access permissions are changed explicitly – Siemens Unix V4.0 User Manual

Troubleshooting

Different System Access Permissions

Product Manual

U7613-J-Z815-6-76

©

S

ie

m

ens

Ni

x

d

o

rf

I

n

fo

rm

a

ti

o

ns

s

y

s

te

m

e A

G

19

95

P

fad

:

D

:\

O

761

3e

6\

u76

13

e.

k

1

1

UNIX system access permissions on an Advanced Server file will be compatible with the
Advanced Server

only if the UNIX

system access permissions are changed explicitly

.

If these

UNIX system access permissions are modified, they can prevent access to a file or
directory even if Advanced Server access permissions grant access.

For example, if a user has Advanced Server change permission for a file, then this file
needs to have the UNIX system equivalent of change permission (RWX) in order for the
user to perform all of the operations allowed by the Advanced Server change permission
(read, write, create, and execute).

However, if you changed the file’s UNIX system permissions, eliminating the write (W)
permission for everyone other than the file’s owner, then no one but the owner can alter or
remove the file, regardless of the generous Advanced Server permissions.

Advanced Server automatically adds the appropriate UNIX system access permissions
when files and directories are created on the network. These permissions are determined
by two keywords in the Advanced Server Registry: UnixFilePerms and
UnixDirectoryPerms.

Check whether the values assigned to these keywords provide the desired UNIX system
protection for your files and directories. These keywords are in the following key:

\SYSTEM\CurrentControlSet\Services\AdvancedServer\FileServiceParameters

For more information, see the chapter

“Advanced Server Registry”

.

For more information about security and access permissions, see the manual

“Concepts

and Planning”

.

11.3.1

UNIX System Access Permissions

The UNIX system assigns access permissions to all directories and files. These UNIX
system access permissions, together with Advanced Server file and permissions,
determine whether you can read, write, or create directories and files on the server.

It is not necessary to know the UNIX system access permissions assigned to direc-

tories and files unless these access permissions prevent access when Advanced
Server permissions appear to allow access.

Access is determined through access permissions assigned by Advanced Server and the
UNIX system. Advanced Server access permissions assigned to files or directories are
based on the access permissions assigned to the individual user. These access permis-
sions can be found in the access control list that resides on Advanced Server.

i