Open System Services Shell and Utilities Reference Manual (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

121

122

123

124

125

126

127

128

129

130

User Commands (c) chmod(1)

ADMINISTRATOR group.

If chmod is invoked by a process whose effective user ID does not equal the super ID or ﬁle

owner, the set-user-ID and set-group-ID bits of the ﬁle mode (04000 and 02000, respectively) are

cleared.

Access Control Lists (ACLs)

When you execute the chmod command, you can change the effective permissions granted by

optional entries in the ACL for a ﬁle. In particular, using the chmod command to remove read,

write, and execute permissions from a ﬁle owner, owning group, and all others works as

expected, because the chmod command affects the class entry in the ACL, limiting any access

that can be granted to additional users or groups through optional ACL entries. To verify the

effect, use getacl command on the ﬁle after the chmod command completes and note that all

optional (nondefault) ACL entries with nonzero permissions also have the comment

# effective:---.

To set the permission bits of access control list entries, use the setacl command instead of the

chmod command.

ACLs are not supported for symbolic links.

Symbolic Mode

Symbolic mode has the form:

[who] operation permission[, operation permission ...]

The who argument speciﬁes whether you are deﬁning permissions for a user, group, or all others,

or any combination of these. The operation argument speciﬁes whether the permission is being

added, removed, or assigned absolutely. The permission argument identiﬁes the operation that

the speciﬁed users can perform on ﬁle.

Valid options for the who argument are as follows:

a User, group, and all others (same effect as the combination ugo)

g Group

o All others

u User (owner)

If the who argument is omitted, the default value is a, but the setting of the ﬁle creation

mask, umask (see the reference page for sh(1)), is applied.

Valid options for the operation argument are as follows:

- Removes speciﬁed permissions.

+ Adds speciﬁed permissions.

= Clears the selected permission ﬁeld and sets it to the speciﬁed code. If you

do not specify a permission code following =, the chmod command removes

all permissions from the selected ﬁeld.

Valid options for the permission argument are as follows:

r Read permission.

w Write permission.

527188-021 Hewlett-Packard Company 2−