How Linux file permissions work

最新推荐文章于 2022-08-04 22:39:35 发布

转载最新推荐文章于 2022-08-04 22:39:35 发布 · 549 阅读

文章标签：

#linux

linux 专栏收录该内容

1 篇文章

订阅专栏

本文详细介绍了Linux文件系统的三种用户类别：用户、组和其他，并解释了读取、写入和执行这三种基本权限的作用及如何使用八进制数值表示这些权限。

原文链接

How Linux file permissions work

by NIX CRAFT on FEBRUARY 13, 2006 · 23 COMMENTS· LAST UPDATED SEPTEMBER 11, 2007

in CENTOS, DEBIAN / UBUNTU, FILE SYSTEM

Linux (and almost all other Unixish systems) have three user classes as follows:

User (u): The owner of file
Group (g): Other user who are in group (to access files)
Other (o): Everyone else

You can setup following mode on each files. In a Linux and UNIX set of permissions is called as mode:

Read (r)
Write (w)
Execute (x)

However, above three modes or permission have different meaning for file and directory:

Linux Read mode permissions

Read access on a file allows you to view file
Read access on a directory allows you to view directory contents with ls command

Write mode permissions

Write access on a file allows you to write to file
Write access on a directory allows you to remove or add new files

Execute mode permissions

Execute access on a file allows to run program or script
Execute access on a directory allows you access file in the directory

Octal numbers and permissions

You can use octal number to represent mode/permission:

r: 4
w: 2
x: 1

For example, for file owner you can use octal mode as follows. Read, write and execute (full) permission on a file in octal is
0+r+w+x = 0+4+2+1 = 7

Only Read and write permission on a file in octal is
0+r+w+x = 0+4+2+0 = 6

Only read and execute permission on a file in octal is
0+r+w+x = 0+4+0+1 = 5

Use above method to calculate permission for group and others. Let us say you wish to give full permission to owner, read & execute permission to group, and read only permission to others, then you need to calculate permission as follows:
User = r+w+x = 0+4+2+1 = 7
Group= r+w+x = 0+4+2+0 = 6
Others = r+w+x = 0+0+0+1 = 1

Effective permission is 761.

chmod command

To setup file permission you need to use chmod command:
chmod {mode} {file-name}

To setup file permission 761 you need to use chmod command as follows:
# chmod 0761 file
To setup a file readable by anyone and writable by the owner only:
# chmod 644 file
To setup a file readable/executable by everyone and writable by the owner only:
# chmod 755 file
You can change permissions for all files and directories within a directory by using the -R option on the chmod command. For example, to setup others read and execute access to all files and directories (and files and directories within directories), you need to type command as follows (i.e. change the modes of the file hierarchies rooted in the files instead of just the files themselves):
# chmod -R 755 directory-name/