Go to main content
oracle home
Securing Files and Verifying File Integrity in Oracle
®
Solaris 11.3
Exit Print View
Search Term
Search Scope:
This Document
Entire Library
» ...
Documentation Home
»
Oracle Solaris 11.3 Information Library
»
Securing Files and Verifying File Integrity in ...
»
Index Numbers and Symbols
Updated: October 2017
Securing Files and Verifying File Integrity in Oracle
®
Solaris 11.3
Document Information
Using This Documentation
Product Documentation Library
Feedback
Chapter 1 Controlling Access to Files
Using UNIX Permissions to Protect Files
Commands for Viewing and Securing Files
File and Directory Ownership
UNIX File Permissions
Special File Permissions Using setuid, setgid and Sticky Bit
setuid Permission
setgid Permission
Sticky Bit
Default umask Value
File Permission Modes
Using File Attributes to Add Security to ZFS Files
Using Access Control Lists to Protect UFS Files
Protecting Executable Files From Compromising Security
Protecting Files
Protecting Files With UNIX Permissions
How to Display File Information
How to Change the Owner of a File
How to Change Group Ownership of a File
How to Change File Permissions in Symbolic Mode
How to Change File Permissions in Absolute Mode
How to Change Special File Permissions in Absolute Mode
Protecting Against Programs With Security Risk
How to Find Files With Special File Permissions
Chapter 2 Using ACLs and Attributes to Protect Oracle Solaris ZFS Files
Oracle Solaris ACL Model
Rights to Modify ZFS ACLs
ACL Formats
ACL Entry Descriptions
ZFS ACL Sets
ACL Properties
ACL Inheritance Flags
Setting ACLs on ZFS Files
Command Syntax for Setting and Modifying ACLs
Displaying ACL Information
ACL Interaction With Permission Bits
Setting ACL Inheritance on ZFS Files
Enabling the ACL on a Directory to Be Inherited
Effect of file_inherit and dir_inherit Flags
Effect of ACL Inherit Mode on ACL Inheritance
ACL passthrough Inherit Mode
ACL Inherit passthrough-x Mode
Examples of Setting Security-Relevant Attributes on ZFS Files
Preventing Accidental Deletions With the nounlink Attribute
Displaying and Changing ZFS File Attributes
Chapter 3 Verifying File Integrity by Using BART
About BART
BART Features
BART Components
BART Manifest
BART Report
BART Rules File
About Using BART
BART Security Considerations
Using BART
How to Create a Control Manifest
How to Customize a Manifest
How to Compare Manifests for the Same System Over Time
How to Compare Manifests From Different Systems
How to Customize a BART Report by Specifying File Attributes
How to Customize a BART Report by Using a Rules File
BART Manifests, Rules Files, and Reports
BART Manifest File Format
BART Rules File Format
BART Rules File Attributes
BART Quoting Syntax
BART Reporting
BART Output
File Security Glossary
Index
Index Numbers and Symbols
Index A
Index B
Index C
Index D
Index E
Index F
Index G
Index I
Index K
Index L
Index M
Index N
Index O
Index P
Index Q
Index R
Index S
Index T
Index U
Index V
Index W
Index Z
Language:
English
Index
Numbers and Symbols
+
(plus sign)
ACL entry operator for add
Command Syntax for Setting and Modifying ACLs
file permissions symbol
Setting File Permissions in Absolute Mode
-
(minus sign)
ACL entry operator for remove
Command Syntax for Setting and Modifying ACLs
ACL no inheritance flag
ACL Inheritance Flags
file permissions symbol
Setting File Permissions in Absolute Mode
file type symbol
File and Directory Ownership
. (dot)
displaying hidden files
How to Display File Information
32-bit executables
protecting from compromising security
Protecting Executable Files From Compromising Security
=
(equal sign)
ACL entry operator for replace
Command Syntax for Setting and Modifying ACLs
file permissions symbol
Setting File Permissions in Absolute Mode
A
absolute mode
changing file permissions
How to Change File Permissions in Absolute Mode
File Permission Modes
changing special file permissions
How to Change Special File Permissions in Absolute Mode
description
File Permission Modes
setting special permissions
Setting File Permissions in Symbolic Mode
Access Control Lists (ACLs)
See
ACLs
access security
files
Controlling Access to Files
UFS ACLs
Using Access Control Lists to Protect UFS Files
ZFS
Using ACLs and Attributes to Protect Oracle Solaris ZFS Files
ZFS file attributes
Using File Attributes to Add Security to ZFS Files
aclinherit
property
ACL Properties
aclmode
property
ACL Properties
ACLs
ACL inheritance
Setting ACL Inheritance on ZFS Files
ACL Inheritance Flags
aclinherit
property
ACL Properties
aclmode
property
ACL Properties
compact display
Displaying ACL Information
default entries
ACL Formats
description
Using File Attributes to Add Security to ZFS Files
description from NFSv4
ACL Entry Descriptions
description of entries
ACL Entry Descriptions
description of UFS
Using Access Control Lists to Protect UFS Files
displaying
Displaying ACLs in Compact and Verbose Format
entry types
ACL Entry Types
format of UFS entries
Using Access Control Lists to Protect UFS Files
formats
ACL Formats
inheritance like NFSv4 ACLs
ACL Inheritance Flags
interaction with permission bits
ACL Interaction With Permission Bits
NFSv4 model
Oracle Solaris ACL Model
Object Access Management rights profile and
Rights to Modify ZFS ACLs
removing
Removing ACLs
rights required for
chmod
Setting ACL Inheritance on ZFS Files
rights required to change
Showing the Effects of the aclmode and aclinherit Properties on ACL Permissions
sets
ZFS ACL Sets
setting on ZFS files
description
Setting ACLs on ZFS Files
verbose mode
Command Syntax for Setting and Modifying ACLs
verbose display
Displaying ACL Information
administering
ACLs on ZFS files
description
Setting ACLs on ZFS Files
file permissions
Protecting Files With UNIX Permissions
Protecting Files
appendonly
ZFS file attribute
Using File Attributes to Add Security to ZFS Files
attributes
keyword in BART
Explanation of the BART Manifest Format
ZFS security
Examples of Setting Security-Relevant Attributes on ZFS Files
B
BART
components
BART Components
overview
About BART
programmatic output
BART Output
security considerations
BART Security Considerations
task map
Using BART
verbose output
BART Output
bart create
command
How to Create a Control Manifest
BART Manifest
Basic Audit Reporting Tool
See
BART
C
changing
file ownership
How to Change the Owner of a File
file permissions
absolute mode
How to Change File Permissions in Absolute Mode
special
How to Change Special File Permissions in Absolute Mode
symbolic mode
How to Change File Permissions in Symbolic Mode
group ownership of file
How to Change Group Ownership of a File
special file permissions
How to Change Special File Permissions in Absolute Mode
chgrp
command
description
Commands for Securing Files and Directories
syntax
How to Change Group Ownership of a File
chmod
command
changing special permissions
Setting Special File Permissions in Absolute Mode
How to Change Special File Permissions in Absolute Mode
description
Commands for Securing Files and Directories
rights required
Showing the Effects of the aclmode and aclinherit Properties on ACL Permissions
setting ACL inheritance
Setting ACL Inheritance on ZFS Files
syntax
How to Change Special File Permissions in Absolute Mode
chown
command
description
Commands for Securing Files and Directories
rights required
Showing the Effects of the aclmode and aclinherit Properties on ACL Permissions
CIFS
file attributes for security
Using File Attributes to Add Security to ZFS Files
commands
file protection commands
Commands for Viewing and Securing Files
compact display of ACL information
Displaying ACL Information
components
BART
BART Components
control manifests (BART)
About BART
customizing
manifests
How to Customize a Manifest
customizing a report (BART)
How to Customize a BART Report by Using a Rules File
D
defaults
ACL entries
ACL Formats
login shell
Rights to Modify ZFS ACLs
rights from login shell
Rights to Modify ZFS ACLs
umask
value
Default umask Value
determining
files with
setuid
permissions
How to Find Files With Special File Permissions
directories
See Also
files
default ACL entries
ACL Formats
displaying files and related information
How to Display File Information
Commands for Securing Files and Directories
permissions
defaults
Default umask Value
description
UNIX File Permissions
public directories
Sticky Bit
disabling
32-bit executables that compromise security
Protecting Executable Files From Compromising Security
displaying
ACL entries
Displaying ACLs in Compact and Verbose Format
ACLs in compact format
Displaying ACL Information
ACLs in verbose format
Displaying ACL Information
file information
How to Display File Information
files and related information
Commands for Securing Files and Directories
dot (
.
)
displaying hidden files
How to Display File Information
E
equal sign (
=
)
ACL entry operator for replace
Command Syntax for Setting and Modifying ACLs
file permissions symbol
Setting File Permissions in Absolute Mode
executable stacks
protecting against 32-bit processes
Protecting Executable Files From Compromising Security
execute permissions
symbolic mode
Setting File Permissions in Absolute Mode
F
file attributes
CIFS security
Using File Attributes to Add Security to ZFS Files
ZFS security
Examples of Setting Security-Relevant Attributes on ZFS Files
Using File Attributes to Add Security to ZFS Files
file permission modes
absolute mode
File Permission Modes
symbolic mode
Setting File Permissions in Absolute Mode
file systems
See Also
ZFS
removing trivial ACLs
Removing ACLs
setting
ACL inheritance on ZFS files (verbose mode)
Setting ACL Inheritance on ZFS Files
ACLs on ZFS files
Displaying ACL Information
Command Syntax for Setting and Modifying ACLs
Setting ACLs on ZFS Files
TMPFS
Sticky Bit
files
BART manifests
BART Manifest File Format
changing group ownership
How to Change Group Ownership of a File
changing ownership
How to Change the Owner of a File
Commands for Securing Files and Directories
changing special file permissions
How to Change Special File Permissions in Absolute Mode
default ACL entries
ACL Formats
displaying file information
How to Display File Information
displaying hidden files
How to Display File Information
displaying information about
Commands for Securing Files and Directories
file types
File and Directory Ownership
finding files with
setuid
permissions
How to Find Files With Special File Permissions
manifests (BART)
BART Manifest File Format
ownership
and
setgid
permission
setgid Permission
and
setuid
permission
setuid Permission
permissions
absolute mode
How to Change File Permissions in Absolute Mode
File Permission Modes
changing
Changing Permissions in Symbolic Mode
File Permission Modes
Commands for Securing Files and Directories
defaults
Default umask Value
description
UNIX File Permissions
setgid
setgid Permission
setuid
setuid Permission
sticky bit
Sticky Bit
symbolic mode
Changing Permissions in Symbolic Mode
How to Change File Permissions in Symbolic Mode
File Permission Modes
umask
value
Default umask Value
protecting with UNIX permissions
Protecting Files With UNIX Permissions
scanning for integrity
Verifying File Integrity by Using BART
security
changing ownership
How to Change the Owner of a File
changing permissions
Changing Permissions in Symbolic Mode
File Permission Modes
directory permissions
UNIX File Permissions
displaying file information
Displaying File Information
Commands for Securing Files and Directories
file permissions
UNIX File Permissions
file types
File and Directory Ownership
special file permissions
Setting File Permissions in Symbolic Mode
umask
default
Default umask Value
UNIX permissions
Using UNIX Permissions to Protect Files
user classes
File and Directory Ownership
special files
Special File Permissions Using setuid, setgid and Sticky Bit
symbols of file type
File and Directory Ownership
tracking integrity
Verifying File Integrity by Using BART
find
command
finding files with
setuid
permissions
How to Find Files With Special File Permissions
formats
ACLs, of
ACL Formats
G
groups
changing file ownership
How to Change Group Ownership of a File
I
immutable
ZFS file attribute
Using File Attributes to Add Security to ZFS Files
K
keywords
attribute in BART
Explanation of the BART Manifest Format
L
listing
ACLs on ZFS files
compact display
Displaying ACL Information
verbose display
Displaying ACL Information
log files
BART
programmatic output
BART Output
verbose output
BART Output
login shell
default
Rights to Modify ZFS ACLs
profile shell
Rights to Modify ZFS ACLs
rights and
Rights to Modify ZFS ACLs
M
managing
See
administering
manifests
See Also
bart create
control
About BART
customizing
How to Customize a Manifest
file format
BART Manifest File Format
test in BART
BART Report
minus sign (
-
)
ACL entry operator for remove
Command Syntax for Setting and Modifying ACLs
ACL no inheritance flag
ACL Inheritance Flags
file permissions symbol
Setting File Permissions in Absolute Mode
symbol of file type
File and Directory Ownership
N
NFSv4 ACLs
See
ACLs
non-trivial ACL format
ACL Formats
nounlink
ZFS file attribute
Using File Attributes to Add Security to ZFS Files
O
Object Access Management rights profile
ACLs and
Showing the Effects of the aclmode and aclinherit Properties on ACL Permissions
Rights to Modify ZFS ACLs
Oracle Solaris ACLs
See
ACLs
ownership of files
changing
How to Change the Owner of a File
Commands for Securing Files and Directories
changing group ownership
How to Change Group Ownership of a File
UFS ACLs and
Using Access Control Lists to Protect UFS Files
ZFS ACLs and
Using File Attributes to Add Security to ZFS Files
P
permissions
changing file permissions
absolute mode
How to Change File Permissions in Absolute Mode
File Permission Modes
chmod
command
Commands for Securing Files and Directories
symbolic mode
Changing Permissions in Symbolic Mode
How to Change File Permissions in Symbolic Mode
File Permission Modes
defaults
Default umask Value
directory permissions
UNIX File Permissions
displaying ACL entries
Removing ACLs
file permissions
absolute mode
How to Change File Permissions in Absolute Mode
File Permission Modes
ACL entries
Removing ACLs
changing
Changing Permissions in Symbolic Mode
File Permission Modes
description
UNIX File Permissions
special permissions
Setting File Permissions in Symbolic Mode
Sticky Bit
symbolic mode
Changing Permissions in Symbolic Mode
How to Change File Permissions in Symbolic Mode
File Permission Modes
finding files with
setuid
permissions
How to Find Files With Special File Permissions
setgid
permissions
absolute mode
Setting Special File Permissions in Absolute Mode
Setting File Permissions in Symbolic Mode
description
setgid Permission
symbolic mode
Setting File Permissions in Absolute Mode
setuid
permissions
absolute mode
Setting Special File Permissions in Absolute Mode
Setting File Permissions in Symbolic Mode
description
setuid Permission
security risks
setuid Permission
symbolic mode
Setting File Permissions in Absolute Mode
special file permissions
Setting File Permissions in Symbolic Mode
Sticky Bit
Special File Permissions Using setuid, setgid and Sticky Bit
sticky bit
Sticky Bit
UFS ACLs and
Using Access Control Lists to Protect UFS Files
umask
value
Default umask Value
user classes and
File and Directory Ownership
ZFS file attributes and
Using File Attributes to Add Security to ZFS Files
plus sign (
+
)
ACL entry operator for add
Command Syntax for Setting and Modifying ACLs
file permissions symbol
Setting File Permissions in Absolute Mode
profile shell
rights and
Rights to Modify ZFS ACLs
protecting
32-bit executables from compromising security
Protecting Executable Files From Compromising Security
system from risky programs
Protecting Against Programs With Security Risk
protecting files
user procedures
Protecting Files With UNIX Permissions
with UFS ACLs
Using Access Control Lists to Protect UFS Files
with UNIX permissions
Protecting Files With UNIX Permissions
Using UNIX Permissions to Protect Files
with UNIX permissions task map
Protecting Files With UNIX Permissions
with ZFS ACLs
Setting ACLs on ZFS Files
ZFS file attributes and
Examples of Setting Security-Relevant Attributes on ZFS Files
Using File Attributes to Add Security to ZFS Files
public directories
sticky bit and
Sticky Bit
Q
quoting syntax in BART
BART Quoting Syntax
R
read permissions
symbolic mode
Setting File Permissions in Absolute Mode
readonly
CIFS file attribute
Using File Attributes to Add Security to ZFS Files
reporting tool
See
bart compare
reports
BART
About BART
rights
ACLs and
Rights to Modify ZFS ACLs
rights profile
Object Access Management
Rights to Modify ZFS ACLs
rights profiles
ACLs and
Showing the Effects of the aclmode and aclinherit Properties on ACL Permissions
administering ZFS files
Showing the Effects of the aclmode and aclinherit Properties on ACL Permissions
rstchown system variable
Enabling Users to Change the Ownership of Their Own Files
rules file (BART)
BART Rules File
rules file attributes
See
keywords
rules file format (BART)
BART Rules File Format
rules file specification language
See
quoting syntax
S
security
ACLs
Using ACLs and Attributes to Protect Oracle Solaris ZFS Files
BART
BART Security Considerations
Verifying File Integrity by Using BART
file access
Controlling Access to Files
ZFS ACLs
Using ACLs and Attributes to Protect Oracle Solaris ZFS Files
sensitive
ZFS file attribute
Using File Attributes to Add Security to ZFS Files
setgid
permissions
absolute mode
Setting Special File Permissions in Absolute Mode
Setting File Permissions in Symbolic Mode
description
setgid Permission
security risks
setgid Permission
symbolic mode
Setting File Permissions in Absolute Mode
sets of ACLs
ZFS ACL Sets
setting
ACL inheritance
Setting ACL Inheritance on ZFS Files
ACLs on ZFS files
description
Setting ACLs on ZFS Files
verbose mode
Command Syntax for Setting and Modifying ACLs
setuid
permissions
absolute mode
Setting Special File Permissions in Absolute Mode
Setting File Permissions in Symbolic Mode
description
setuid Permission
finding files with permissions set
How to Find Files With Special File Permissions
security risks
setuid Permission
symbolic mode
Setting File Permissions in Absolute Mode
Solaris ACLs
See
ACLs
special permissions
setgid
permissions
setgid Permission
setuid
permissions
setuid Permission
sticky bit
Sticky Bit
sticky bit permissions
absolute mode
Setting Special File Permissions in Absolute Mode
Setting File Permissions in Symbolic Mode
description
Sticky Bit
symbolic mode
Setting File Permissions in Absolute Mode
symbolic links
file permissions
File and Directory Permissions
symbolic mode
changing file permissions
Changing Permissions in Symbolic Mode
How to Change File Permissions in Symbolic Mode
description
File Permission Modes
system security
protecting from risky programs
Protecting Against Programs With Security Risk
ZFS file attributes
Using File Attributes to Add Security to ZFS Files
system variables
rstchown
Enabling Users to Change the Ownership of Their Own Files
systems
protecting from risky programs
Protecting Against Programs With Security Risk
tracking file integrity
Verifying File Integrity by Using BART
T
task maps
protecting files with UNIX permissions
Protecting Files With UNIX Permissions
Using BART task map
Using BART
test manifests
BART
BART Report
TMPFS file system and security
Sticky Bit
trivial ACL format
ACL Formats
troubleshooting
finding files with
setuid
permissions
How to Find Files With Special File Permissions
U
umask
value
and file creation
Default umask Value
typical values
Default umask Value
UNIX file permissions
See
files, permissions
user classes of files
File and Directory Ownership
user procedures
protecting files
Protecting Files With UNIX Permissions
using
BART
About Using BART
file permissions
Protecting Files
ZFS ACLs
Setting ACLs on ZFS Files
V
variables
rstchown
Enabling Users to Change the Ownership of Their Own Files
verbose display of ACL information
Displaying ACL Information
viewing
file permissions
How to Display File Information
W
write permissions
symbolic mode
Setting File Permissions in Absolute Mode
Z
ZFS
access controls
Using ACLs and Attributes to Protect Oracle Solaris ZFS Files
file attributes
Using File Attributes to Add Security to ZFS Files
ZFS File System Management rights profile
ACLs and
Showing the Effects of the aclmode and aclinherit Properties on ACL Permissions
zfs set
command
rights required
Showing the Effects of the aclmode and aclinherit Properties on ACL Permissions
Previous