1. Home
  2. Linux systems
  3. Ppractical unix & internet security

Chapter 6. Filesystems and Security

Filesystems control the way that information is stored on mass storage devices. Modern filesystems allow information to be stored in files with arbitrary names; these files are then arranged in a structured tree of directories and subdirectories. Most filesystems allow files to be created, deleted, modified, and moved to different directories. The whole task is somewhat complex, because filesystems allow character-by-character control over data, whereas most mass storage systems allow information to be read or written only block by block.

The filesystem is also the primary tool for enforcing security on a Unix system. Besides holding the computer's operating system, programs, and user data, additional information stored in the filesystem is used to determine what information can be viewed, what can be modified, and what is inaccessible to the various users and system processes.



    		Preface
    		Part I: Computer Security Basics
    		Part II: Security Building Blocks
    		Chapter 4. Users, Passwords, and Authentication
    		Chapter 5. Users, Groups, and the Superuser
    		Chapter 6. Filesystems and Security
    		6.1 Understanding Filesystems
    		6.2 File Attributes and Permissions
    		6.3 chmod: Changing a File's Permissions
    		6.4 The umask
    		6.5 SUID and SGID
    		6.6 Device Files
    		6.7 Changing a File's Owner or Group
    		6.8 Summary
    		Chapter 7. Cryptography Basics
    		Chapter 8. Physical Security for Servers
    		Chapter 9. Personnel Security
    		Part III: Network and Internet Security
    		Part IV: Secure Operations
    		Part V: Handling Security Incidents
    		Part VI: Appendixes
    		Colophon