Manualshelf

OSF DCE Administration Guide--Core Components

ManualsBrandsHP ManualsServerHP NonStop G-Series
361362363364365366367368369370
OSF DCE Administration Guide—Core Components
objects or containers created within the initial container. The Initial Container ACLs
and the Initial Object ACLs can be edited in the same way as the usual ACL by using
the -ic and -io options to the dcecp acl commands.
28.6.1 Objects and Containers
The type of ACL used for an object depends on whether the object is a simple object or
a container. Containers are objects that hold other objects. The objects they hold can
themselves be either simple objects or container objects. Simple objects do not hold
other objects. Although any DCE component can have objects and containers, the
simplest and most common illustration is the file system. In the file system, there are
files and directories. The files are simple objects, and the directories are containers.
The directories can hold simple objects (files) and other containers (subdirectories).
The Object ACL is associated with simple and container objects. The Initial Container
and Initial Object ACLs are associated only with container objects.
28.6.2 Initial ACLs for Objects and Containers
Initial ACL entries and the ACL that contains them are applied automatically when an
object is created. The entries can be modified at any time with the DCE control
program. The types of DCE ACLs used as Initial ACLs for containers and objects are
as follows:
The Initial Container ACL determines the default ACL for containers created within
a container. For example, the file system Initial Container ACL for a directory
specifies the default ACL for subdirectories created within that directory.
The Initial Object ACL determines the default for objects created within a container.
For example, the file system Initial Object ACL for a directory specifies the default
ACL for files created within that directory.
28.6.2.1 Default ACLs for Objects
When a simple object is created in a container, it inherits the container’s Initial Object
ACL as its Object ACL. Figure 28-4 illustrates how the default ACL is assigned to
simple objects created in containers.
Figure 28-4. Initial ACLs for Objects Created in Containers
28 18 Tandem Computers Incorporated 124243