Discretionary Access Control (DAC) and Access Control Lists (ACL)

Play an AI-generated podcast conversation about this lesson

What is a key characteristic of Discretionary Access Control (DAC)?

It is mandatory and enforced by the operating system

It is discretionary and allows the owner to decide who is authorized (correct)

It is used only for network access control

It is used only for directory access control

In a Linux system, what is the purpose of Access Control Lists (ACLs)?

To provide an additional layer of access control beyond traditional permissions (correct)

To manage user and group accounts

To restrict access to files and directories

To optimize system performance

What is a default ACL associated with?

A group account

A directory (correct)

A specific file

A user account

What is the limitation of traditional file permissions?

Each file and directory can have only one user and group owner at a time Signup and view all the answers

In which operating systems is DAC typically implemented with ACLs?

Windows and Linux Signup and view all the answers

What is an access ACL associated with?

A specific file or directory Signup and view all the answers

What is the primary purpose of Discretionary Access Control (DAC)?

To specify and enforce access authorization based on user identity Signup and view all the answers

What is the primary function of the Real UserID in Linux?

To define the files that a process can access Signup and view all the answers

What is the purpose of the Effective UserID in Linux?

To enable a non-privileged user to access files that can only be accessed by a privileged user Signup and view all the answers

What is the purpose of the Saved UserID in Linux?

To temporarily switch to a non-privileged account when a process is running with elevated privileges Signup and view all the answers

What is the purpose of Access Control Lists (ACLs)?

To specify the access permissions of a user to a resource Signup and view all the answers

What is the purpose of the 'append' access permission?

To add new content to the end of a resource Signup and view all the answers

What is the primary purpose of setting a default ACL on a directory?

To ensure that new files and directories inherit certain ACLs Signup and view all the answers

How can you add multiple entries with the same command when modifying ACLs?

By separating each entry with a comma Signup and view all the answers

What is the purpose of the Mask entry in an ACL?

To limit the permissions of named users and groups Signup and view all the answers

What type of ACL is used to control access to a file for users not in the user group for the file?

Other ACL Signup and view all the answers

When modifying ACLs on a directory, what is the key difference compared to modifying ACLs on a file?

The inclusion of the execute permission on the list entries Signup and view all the answers

What is the purpose of the getfacl command?

To view the ACL of a file or directory Signup and view all the answers