POSIX.1 Permission Bit Mechanism



next up previous contents
Next: Access Control Lists Up: Discretionary Access Control Previous: Discretionary Access Control

POSIX.1 Permission Bit Mechanism

The POSIX.1 standard specifies the use of the permission bit mechanism that is currently implemented and used in many POSIX-like systems. This mechanism allows the defined permissions of read, write and execute to be specified for:

  1. the file owner,
  2. the group of users specified as the ``owning group,'' and
  3. all other users (named ``other'').
This mechanism can be cumbersome to use if permissions need to be specified for a named user who is not the owner (and nearly impossible to specify separate permissions for two users, neither of whom is the owner). It is also not possible to provide specific permissions for different named groups of users. These limitations pointed to the need to provide a Discretionary Access Control mechanism that can provide the granularity of specifying individual users and named groups. The POSIX.6 standard specifies an access control list mechanism to provide this functionality.



John Barkley
Fri Oct 7 16:17:21 EDT 1994