1.root user-created folders, how ordinary users create files in this folder
Workaround: Create two users, common group (1.) Groupadd group name (2.) gpassswd-a Zhangsan Group name (3.) to see if Zhangsan is within group: grep Group name/etc/group (4.) Change groups CHGRP Group name directory (5.) To give directory writable permissions: chmod g+w Directory
2. New file Permissions 644, no Execute permissions directory: 755
3. View User Rights Umask
4. SetUID: Normal user executes chmod u+s executable file with Admin user
5. Set the startup Vi/etc/inittab
6. When directory permissions are granted 777, users can only delete files that they have created and cannot delete files created by other users
7. Prevent accidental deletion, do not allow operation chattr +i file name can only be appended: chattr +a file name
8.visudo What's new Zhangsan helen= command to authorize root permissions
9. Sudo–l View all authorizations
10. Administrators authorize ordinary users to manage Apache:
(1.) Authorized User: Visudo Zhangsan helen=/apache/bin/apachectl,/bin/vi/apache/conf/httpd.conf
(2.) Authorized folder for normal users: Chown
11. Complex Permissions Control: ACL
(1.) Mount–o Remount,acl/home
(2.) setfacl-m u:zhangsan:rwx file name
(3.) View permissions: Getfacl file name