Inheritance in standard permissions is fairly minimal in that files can only inherit the group owner and not permissions. Access Control Lists add default ACLs which are permissions that will be inherited by any future files or directories. Default ACLs work in addition to regular ACLs. A regular ACL grants access to the directory itself, a default ACL grants access to any newly created files and directories inside.
- [Narrator] Standard Linux permissions only have…one type of inheritance in the form of an SGID bit…on directories.…In that case the files and directories created inside…inherit the group owner of the parent directory…which there can only be one of.…ACLs go much further, as they let files and directories…inherit any number of user or group permissions.…These ACLs are called default ACLs.…Keep in mind that if you want to allow a user…to access a directory, you set a regular ACL on it first.…
If, however, you want that user to access all new files…and directories inside it, then set a default ACL.…Usually, you'll need to do both of these operations.…For this exercise we'll make a directory called acldir.…In a terminal type in sudo space mkdir space…/home/acldir and hit Enter.…Type in your password and hit Enter again.…If you already have this directory from another lesson…go ahead and use it.…Now let's change into it using cd.…
Type in cd space /home/acldir…and hit Enter.…You can verify your pass by typing in pwd.…
- Define file Access Control Lists.
- Describe what extended globs add to Linux pattern matching.
- State why file system recovery tools are so important for Linux users.
- Recall what execute permissions on a directory allows.
- Cite the maximum allowed default permissions on a file in Linux.
- List some of the advantages of ACLs over standard Unix permissions.