The first line of defense for protecting objects in a file system are the default UNIX permissions that are assigned to every file system object. UNIX permissions support assigning unique access rights to the owner of the object, to a group assigned to the object, as well as to anyone else. Additionally, the default file system, ZFS, supports access control lists (ACLs), which more finely control access to individual or groups of file system objects.
For more information, see the following:
For an overview of file permissions, see Using UNIX Permissions to Protect Files in Securing Files and Verifying File Integrity in Oracle Solaris 11.2 .
For an overview and examples of protecting ZFS files, see Chapter 7, Using ACLs and Attributes to Protect Oracle Solaris ZFS Files, in Managing ZFS File Systems in Oracle Solaris 11.2 and the man pages.
For instructions about setting ACLs on ZFS files, see the chmod (1) man page.