0% found this document useful (0 votes)

5 views4 pages

Linux Access Control Experiment

The document outlines a hands-on experiment for understanding and modifying Linux access control, focusing on file permissions, user and group management, and Access Control Lists (ACLs). It includes detailed steps for creating users, changing file permissions, and exploring SUID, SGID, and Sticky Bit behaviors. The lab requires a Linux VM and includes reflection questions to assess understanding of access control concepts.

Uploaded by

Nayla Greige

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

5 views4 pages

Linux Access Control Experiment

Uploaded by

Nayla Greige

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 4

Linux Access Control: Detailed Hands-

on Experiment
Objectives

- Understand and modify Linux file permissions (read, write, execute).

- Manage users and groups.
- Apply Access Control Lists (ACLs) for fine-grained permissions.
- Explore SUID, SGID, and Sticky Bit behavior.
- Identify potential misconfigurations.

Lab Environment

- Linux VM (e.g., Ubuntu, Debian, or Kali)

- User access with sudo privileges

Part 1: File Permissions and Ownership

Step 1.1: Create Users and Files

sudo adduser alice

sudo adduser bob
sudo adduser charlie

mkdir /home/testaccess
touch /home/testaccess/secret.txt
sudo chown alice:alice /home/testaccess/secret.txt
sudo chmod 600 /home/testaccess/secret.txt

Q1: What permissions does secret.txt now have?

Q2: Can bob or charlie read this file? Try:

sudo -u bob cat /home/testaccess/secret.txt

Step 1.2: Change File Permissions
sudo chmod 640 /home/testaccess/secret.txt

Q3: What does 640 mean in permission terms?

Q4: Which users or groups now have access?

Part 2: Groups and Shared Access

Step 2.1: Create a Group and Share a File

sudo groupadd devteam

sudo usermod -aG devteam bob
sudo usermod -aG devteam charlie

sudo chgrp devteam /home/testaccess/secret.txt

sudo chmod 660 /home/testaccess/secret.txt

Q5: Who can now read/write the file?

Q6: What is the role of the group ownership here?

Part 3: Access Control Lists (ACLs)

Step 3.1: Set ACLs

sudo apt install acl # If not already installed

sudo setfacl -m u:bob:r-- /home/testaccess/secret.txt
sudo setfacl -m u:charlie:rw- /home/testaccess/secret.txt

getfacl /home/testaccess/secret.txt

Q7: What permissions were assigned to bob and charlie?

Q8: How do ACLs override standard Unix permissions?

Part 4: SUID, SGID, and Sticky Bit

Step 4.1: Explore SUID

sudo cp /bin/ping /home/testaccess/pingtest

sudo chmod u+s /home/testaccess/pingtest
ls -l /home/testaccess/pingtest

Q9: What does the s indicate in the permissions?

Q10: What happens when a regular user runs pingtest?

Step 4.2: SGID and Group Inheritance

mkdir /home/testaccess/devdir
sudo chgrp devteam /home/testaccess/devdir
sudo chmod 2770 /home/testaccess/devdir

sudo -u bob touch /home/testaccess/devdir/test.txt

ls -l /home/testaccess/devdir

Q11: What group owns the file test.txt?

Step 4.3: Sticky Bit in Shared Directories

sudo chmod +t /home/testaccess/devdir

sudo -u charlie rm /home/testaccess/devdir/test.txt

Q12: What happened? Why?

Reflection Questions
1. Why are file permissions crucial for access control?

2. How can ACLs help in environments with complex sharing needs?

3. What are the risks of misconfigured SUID or SGID binaries?

4. How does the sticky bit improve security in shared folders?

Lab Deliverables Checklist

- Screenshots of file and directory creation and permission settings.

- Screenshot showing output of getfacl for secret.txt.
- Screenshot showing the use and effect of SUID, SGID, and sticky bit.
- Written answers to all reflection and guided questions.

Coworking Space Rs. 55.67 Million Dec-2022
No ratings yet
Coworking Space Rs. 55.67 Million Dec-2022
37 pages
1.1 Permissions Linux New
100% (1)
1.1 Permissions Linux New
47 pages
Linux Ex5
No ratings yet
Linux Ex5
2 pages
Lab -Access Control Copyyyyyyy
No ratings yet
Lab -Access Control Copyyyyyyy
11 pages
Lab03_Part01_DAC_ACL Implementation in Linux
No ratings yet
Lab03_Part01_DAC_ACL Implementation in Linux
18 pages
Managing Linux Users Groups and File Permissions
No ratings yet
Managing Linux Users Groups and File Permissions
16 pages
Linuxfile Admin
No ratings yet
Linuxfile Admin
232 pages
File Permition
No ratings yet
File Permition
5 pages
C6 - LAB - Access Control
No ratings yet
C6 - LAB - Access Control
4 pages
User Management
No ratings yet
User Management
29 pages
Activity2 Managing File Ownership and Per Missions
No ratings yet
Activity2 Managing File Ownership and Per Missions
6 pages
LAMP Chapter2 New
No ratings yet
LAMP Chapter2 New
79 pages
Assignment 2
No ratings yet
Assignment 2
7 pages
Chapter 18
No ratings yet
Chapter 18
13 pages
Special Permissions: SUID, GUID, and Sticky Bit in Linux
No ratings yet
Special Permissions: SUID, GUID, and Sticky Bit in Linux
6 pages
Red Hat System Administration I: Document Version
No ratings yet
Red Hat System Administration I: Document Version
8 pages
Linux Access Control Lists (Acls) : 4.1 Review Existing File Permissions
No ratings yet
Linux Access Control Lists (Acls) : 4.1 Review Existing File Permissions
3 pages
Linea de Comandos Windows
No ratings yet
Linea de Comandos Windows
3 pages
User and Group Administration
No ratings yet
User and Group Administration
6 pages
Manage Users and Groups in Linux
No ratings yet
Manage Users and Groups in Linux
19 pages
Abusing SUID Binaries
No ratings yet
Abusing SUID Binaries
25 pages
Linux Files and File Permission
No ratings yet
Linux Files and File Permission
188 pages
About Suid Sgid and Sticky B
No ratings yet
About Suid Sgid and Sticky B
7 pages
Lec - Unit 14 - Advanced Topics in Users, Groups and Permissions
No ratings yet
Lec - Unit 14 - Advanced Topics in Users, Groups and Permissions
13 pages
ACLs in Linux
No ratings yet
ACLs in Linux
11 pages
Day 6 Task: File Permissions and Access Control Lists
No ratings yet
Day 6 Task: File Permissions and Access Control Lists
4 pages
05 Linux Access Control
No ratings yet
05 Linux Access Control
10 pages
Linux Advanced File Permissions - SUID, SGID and Sticky Bit
100% (1)
Linux Advanced File Permissions - SUID, SGID and Sticky Bit
8 pages
Security Lab: Student Name
No ratings yet
Security Lab: Student Name
16 pages
UNIX Access Permissions
100% (2)
UNIX Access Permissions
35 pages
Suid Sgid
No ratings yet
Suid Sgid
7 pages
10. Special Permission
No ratings yet
10. Special Permission
9 pages
What Is SUID GUID and Sticky Bit
No ratings yet
What Is SUID GUID and Sticky Bit
2 pages
Linux FilePermission
No ratings yet
Linux FilePermission
20 pages
2022A7PS0292G (1)
No ratings yet
2022A7PS0292G (1)
5 pages
12 Linux Security
No ratings yet
12 Linux Security
51 pages
Rhel 7
100% (2)
Rhel 7
17 pages
Per Missions
No ratings yet
Per Missions
2 pages
Lecture 18.10.2017
No ratings yet
Lecture 18.10.2017
16 pages
Linux_fundamental
No ratings yet
Linux_fundamental
5 pages
Weel02 Task
No ratings yet
Weel02 Task
9 pages
Linux Based Networks: Punjab University College of Information Technology
No ratings yet
Linux Based Networks: Punjab University College of Information Technology
57 pages
FilePermissionsCommands Unix
No ratings yet
FilePermissionsCommands Unix
25 pages
Lab6 SE173102
No ratings yet
Lab6 SE173102
4 pages
File Ownership & Permission in Linux
No ratings yet
File Ownership & Permission in Linux
7 pages
User-Group & Permissions-Ownership
No ratings yet
User-Group & Permissions-Ownership
6 pages
Linux File Permissions
No ratings yet
Linux File Permissions
22 pages
Final-OS - Lab Manual - V1.0 Lab-3
No ratings yet
Final-OS - Lab Manual - V1.0 Lab-3
13 pages
Module 4
No ratings yet
Module 4
11 pages
Linux Rajul
No ratings yet
Linux Rajul
27 pages
CPE-3411-Lab_No_3
No ratings yet
CPE-3411-Lab_No_3
18 pages
LAB 6 - Access Control Lists and Implementing Mand
No ratings yet
LAB 6 - Access Control Lists and Implementing Mand
4 pages
Chapter 2 Account and Security Administration, and Access Control
No ratings yet
Chapter 2 Account and Security Administration, and Access Control
42 pages
Operating System Lab 03
No ratings yet
Operating System Lab 03
16 pages
Linux Operating System Security: Joen A. Sinamag
No ratings yet
Linux Operating System Security: Joen A. Sinamag
12 pages
Lecture Summary: Exercise: Make It So That Our
No ratings yet
Lecture Summary: Exercise: Make It So That Our
4 pages
Basic Premission
No ratings yet
Basic Premission
15 pages
Special Directories and Files
No ratings yet
Special Directories and Files
20 pages
Lab #11
No ratings yet
Lab #11
13 pages
Access Control
No ratings yet
Access Control
26 pages
LPIC-1 Primer
From Everand
LPIC-1 Primer
John Greene
4.5/5 (3)
IP ICMP Ex
No ratings yet
IP ICMP Ex
2 pages
Cybersecurity Lab Report
No ratings yet
Cybersecurity Lab Report
4 pages
CPEN341 Chap2 Attacks Security Services
No ratings yet
CPEN341 Chap2 Attacks Security Services
57 pages
Session - 8
No ratings yet
Session - 8
6 pages
Session - 4
No ratings yet
Session - 4
4 pages
Session - 6
No ratings yet
Session - 6
4 pages
Lab9-Wifi Infrastructure Mode With AP
No ratings yet
Lab9-Wifi Infrastructure Mode With AP
9 pages
Session - 3
No ratings yet
Session - 3
4 pages
Faculty: Faculty of Engineering 146 CR Major: BE - Computer Engineering
No ratings yet
Faculty: Faculty of Engineering 146 CR Major: BE - Computer Engineering
6 pages
Instructions For Lab Reports: 332:224 Principles of Electrical Engineering II Laboratory
No ratings yet
Instructions For Lab Reports: 332:224 Principles of Electrical Engineering II Laboratory
1 page
Computer Security Lab 4 Wireshark 1
No ratings yet
Computer Security Lab 4 Wireshark 1
2 pages
Cryptography:: Cryptool
No ratings yet
Cryptography:: Cryptool
15 pages
Computer Security Lab 5 Wireshark 2
No ratings yet
Computer Security Lab 5 Wireshark 2
3 pages
Experiment 6: Transformers: Prelab
No ratings yet
Experiment 6: Transformers: Prelab
4 pages
Wireless Networks Lab 01 1
No ratings yet
Wireless Networks Lab 01 1
4 pages
Circuit 1-Experiment 1 - 2021
No ratings yet
Circuit 1-Experiment 1 - 2021
5 pages
Objectives:: Lab 9: Wi-Fi Signal Strength
No ratings yet
Objectives:: Lab 9: Wi-Fi Signal Strength
6 pages
ME 360 Lab 2
No ratings yet
ME 360 Lab 2
20 pages
Experiment #7: Introduction To Lab VIEW
No ratings yet
Experiment #7: Introduction To Lab VIEW
20 pages
Self-Assessment System and Tax Compliance Co PDF
No ratings yet
Self-Assessment System and Tax Compliance Co PDF
9 pages
Aerosol Brochure PDF
No ratings yet
Aerosol Brochure PDF
4 pages
Article 12 Cases Summaries
67% (9)
Article 12 Cases Summaries
4 pages
BUSS1040 - Semester 1, 2020
No ratings yet
BUSS1040 - Semester 1, 2020
11 pages
HDFC Liquid Fund - 15-May-2025
No ratings yet
HDFC Liquid Fund - 15-May-2025
13 pages
Parse Handout
No ratings yet
Parse Handout
2 pages
Metro Manila: Paranaque City
No ratings yet
Metro Manila: Paranaque City
2 pages
Part 1 Onandjokwe's Pioneer of Medical Mission-Film Cover Design Part 1
No ratings yet
Part 1 Onandjokwe's Pioneer of Medical Mission-Film Cover Design Part 1
5 pages
FR KC Leadership Compass Am 2023 Report
No ratings yet
FR KC Leadership Compass Am 2023 Report
125 pages
People Media: Riena Mercene, Telle Tiberio, Justine Galandines, Aldrin Parreño, and Jethro Lago
No ratings yet
People Media: Riena Mercene, Telle Tiberio, Justine Galandines, Aldrin Parreño, and Jethro Lago
51 pages
Quick Guide 2 ABB Wireless
No ratings yet
Quick Guide 2 ABB Wireless
6 pages
Data Privacy Policy PDF
No ratings yet
Data Privacy Policy PDF
5 pages
Commandes Reboot
100% (1)
Commandes Reboot
5 pages
A Study On Translation of Chinese Children's Literature From The Perspective of Polysystem Theory
No ratings yet
A Study On Translation of Chinese Children's Literature From The Perspective of Polysystem Theory
5 pages
Presentation SKID Fabrication To BCC - 21.08.2014
No ratings yet
Presentation SKID Fabrication To BCC - 21.08.2014
5 pages
Hohfeld's Theory
No ratings yet
Hohfeld's Theory
11 pages
Aditya ranjan sir math
No ratings yet
Aditya ranjan sir math
26 pages
Council Assam
No ratings yet
Council Assam
5 pages
Jurnal Rifqi Dewantoro
No ratings yet
Jurnal Rifqi Dewantoro
12 pages
Contoh Soal
No ratings yet
Contoh Soal
6 pages
Sociopolitics of English Language Teaching Bil
No ratings yet
Sociopolitics of English Language Teaching Bil
273 pages
SWIFT Slides g4C Vendor Webinar 20201117
No ratings yet
SWIFT Slides g4C Vendor Webinar 20201117
27 pages
Updated Teachers' Duties & Responsibilities of Discipline Schedule 2024-25
No ratings yet
Updated Teachers' Duties & Responsibilities of Discipline Schedule 2024-25
10 pages
Venus
No ratings yet
Venus
5 pages
Teacher Ratio by School Secondary 2011
No ratings yet
Teacher Ratio by School Secondary 2011
1,204 pages
Empowerment Alone Cannot Help Our Women
No ratings yet
Empowerment Alone Cannot Help Our Women
2 pages
1580 4550 4750 5000 Series 4 8 Channel Manual Es
No ratings yet
1580 4550 4750 5000 Series 4 8 Channel Manual Es
1 page
Nicole Matthews: Skills Summary
No ratings yet
Nicole Matthews: Skills Summary
2 pages
Heri Homes at Migaa
No ratings yet
Heri Homes at Migaa
19 pages

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.

Linux Access Control Experiment

Uploaded by

Linux Access Control Experiment

Uploaded by

Linux Access Control: Detailed Hands-

- Understand and modify Linux file permissions (read, write, execute).

- Linux VM (e.g., Ubuntu, Debian, or Kali)

Part 1: File Permissions and Ownership

Step 1.1: Create Users and Files

sudo adduser alice

Q1: What permissions does secret.txt now have?

Q2: Can bob or charlie read this file? Try:

sudo -u bob cat /home/testaccess/secret.txt

Q3: What does 640 mean in permission terms?

Q4: Which users or groups now have access?

Part 2: Groups and Shared Access

Step 2.1: Create a Group and Share a File

sudo groupadd devteam

sudo chgrp devteam /home/testaccess/secret.txt

Q5: Who can now read/write the file?

Q6: What is the role of the group ownership here?

Part 3: Access Control Lists (ACLs)

Step 3.1: Set ACLs

sudo apt install acl # If not already installed

Q7: What permissions were assigned to bob and charlie?

Q8: How do ACLs override standard Unix permissions?

Part 4: SUID, SGID, and Sticky Bit

Step 4.1: Explore SUID

sudo cp /bin/ping /home/testaccess/pingtest

Q9: What does the s indicate in the permissions?

Q10: What happens when a regular user runs pingtest?

Step 4.2: SGID and Group Inheritance

sudo -u bob touch /home/testaccess/devdir/test.txt

Q11: What group owns the file test.txt?

Step 4.3: Sticky Bit in Shared Directories

sudo chmod +t /home/testaccess/devdir

sudo -u charlie rm /home/testaccess/devdir/test.txt

Q12: What happened? Why?

2. How can ACLs help in environments with complex sharing needs?

3. What are the risks of misconfigured SUID or SGID binaries?

4. How does the sticky bit improve security in shared folders?

Lab Deliverables Checklist

- Screenshots of file and directory creation and permission settings.

You might also like

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.