Re: C6 : "extra" file access permission ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On Mon, Sep 22, 2014 at 12:09 AM, Always Learning <centos@xxxxxxxxxxx> wrote:
>
> On Sun, 2014-09-21 at 20:58 -0300, Marcelo Roccasalva wrote:
>
>> On Sun, Sep 21, 2014 at 7:36 PM, Always Learning <centos@xxxxxxxxxxx> wrote:
>> >
>> > In C6.5 (2.6.32-431.23.3.el6.x86_64) I see:-
>> >
>> > drwxr-xr-x.  2 root root 4096 Sep  9 04:26 conf
>
>
>> The extra dot means selinux ACL. If you find a +, it's general ACL;
>> space means no aditional Access Control List.
>
> Hi Marcelo,

Hi Paul,

> Thank you for your explanation.
>
> It is strange - all my C6 servers, except the latest, do not have the
> extra dot.

The extra dot is an ls "feature". Compare their versions...

> On the server that has the extra dot, SELINUX is disabled (sestatus &
> getenforce). Newly created file do not have the dot, but the files
> created by the install do.

The dot just means the file is labeled, not that the label will be
enforced. If you disable selinux, you can go without a label and newly
created files won't inherit labels...

-- 
Marcelo

"¿No será acaso que esta vida moderna está teniendo más de moderna que de
vida?" (Mafalda)
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos





[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux