Manualshelf

OSF DCE Administration Guide--Core Components

ManualsBrandsHP ManualsServerHP NonStop G-Series
131132133134135136137138139140
OSF DCE Administration Guide—Core Components
This ACL has the following permissions:
c (control) Modify the ACL
d (delete) Delete the server configuration information
f (flag) Start the server with custom flags
r (read) Read the server configuration information
w (write) Modify the server configuration information
x (execute) Start the server
Use the acl object to view or modify ACLs. For example, use the following operation to
view the ACL for the video_clip server on host silver:
dcecp> acl show /.:/hosts/silver/config/srvrconf/video_clip
{user appl_admin cdfrwx}
{unauthenticated r}
{any_other r}
This ACL takes its default values from the container’s Initial Object ACL. You can
operate on the Initial Object ACL by using the -io option to acl operations. The
following example shows the Initial Object ACL for the video_clip server:
dcecp> acl show /.:/hosts/silver/config/srvrconf -io
{unauthenticated r}
{any_other r}
10.1.1.3.3 Permissions for the Server Execution Container
When servers are started, the DCE daemon copies server configuration information into
the server execution database. The dced process also adds more information about the
running server such as a UUID, the server’s communication endpoints and its process
name and ID. The execution information controls the running server; for instance, the
process ID is used to stop a server. When a server exits, the DCE daemon removes its
server execution information.
The server execution information resides in a container. The container, a backing
storage mechanism implemented as a file on UNIX systems, is owned by root and its
access through dced is protected by an ACL. These ACL permissions control who can
access information in the container. Each DCE host has one server execution Container
ACL with the following name:
/.../cellname/hosts/hostname/config/srvrexec
The server execution Container ACL has the following permissions:
c (control) Modify the Container ACL.
r (read) Read execution information in the container.
10 6 Tandem Computers Incorporated 124243