During a Linux security audit at a local college, it was noted that members of the dean’s group were able to modify employee records in addition to modifying
student records, resulting in an audit exception. The college security policy states that the dean’s group should only have the ability to modify student records.
Assuming that the correct user and group ownerships are in place, which of the following sets of permissions should have been assigned to the directories
containing the employee records?
A.
R-x—rwx
B.
Rwxrwxrwx
C.
Rwx—-wx
D.
Rwxrwxr–
R – Read
W – write
X – Execute
User/Group/OtherUsers
rwx rwx rwx
It states that the correct user and group ownerships are in place. This means ‘otherusers’ is where the fault is and that is why D is correct. It removes write and execute from otherusers
http://www.unixmantra.com/2013/04/unix-linux-file-permissions.html
3
0
Yup… Make sense. Thanks
0
0