Ubuntu – Relationship between file/folder’s owner and group

groupspermissionsusers

I found that a directory with following ls output in my system:

drwxr-xr-x   5 username   root  4096 Jan 14  2015 DIRNAME

It rose a question for me: Is there any restriction between files owner and group? I mean that each user in the system belongs to predefined group(s). Is it possible to assign a "group" to a file/folder that the file user (owner) does not belong to?

Best Answer

Is it possible to assign a "group" to a file/folder that the file user (owner) does not belong to?

Certainly. For example:

$ sudo ls -l /var/spool/cron/crontabs
total 8
-rw------- 1 muru     crontab 1136 Jul 21 12:30 muru
-rw------- 1 root     crontab 1090 Jan 20  2015 root

$ groups
muru adm cdrom sudo dip plugdev lpadmin sambashare
$ groups root
root : root

As you can see, neither root, nor muru, are members of crontab, yet the crontab files' group owner is crontab.

Is there any restriction between file's owner and group?

None at all¹.

¹Well, there are restrictions on each individually: the UIDs and GIDs have to be 32-bit integers (IIRC), or the username and group names must exist:

# touch /tmp/foo
# chown 1000000000:2000000000 /tmp/foo
# ls -l !$
ls -l /tmp/foo
-rw-r--r-- 1 1000000000 2000000000 0 Sep 15 09:04 /tmp/foo
# chown gibberish:garbage /tmp/foo
chown: invalid user: ‘gibberish:garbage’

But, no, no relation between owner and group.

Related Solutions

Ubuntu – Dynamically set user groups for directories and files on a directory

You can set the setgid sticky bit on the directory to ensure that all new files in the directory will have their group set to the group of the directory.

To do that, run chmod g+s DIRECTORY, where DIRECTORY is the name of your directory.

Ubuntu – Do files/directories belong to a user AND a group

as mentioned above there are 3 sections to the permissions for an example which may be easier to understand here is how it is broken down

say root is the owner/user of the file say video is the group and then as mentioned there is the world/other section which covers anyone that doesn't fit in the first two.

Now if the file has permissions like

Read/Write for root

Read for the group video with user1 as a member of that group

and none for world/other

Then the root user would have full read write control over the file. Any user in the video group (user1) would have read permissions but would not have access to modify the file. Anyone else would not even be able to view the contents of the file.

as mentioned sudo chmod can be used to change the permissions of a file. Usage of chmod is too large to explain here but a simple breakdown is like this:

u is for user,
g is for group,
and o is for others.

r is for read permission,
w is for write permission,
x is for execute permission.

so if you wanted to set a file so that the user/owner of the file can have full access and you wanted the group to have read and be able to execute the file (such as a script) and you wanted everyone else only be able to execute the file the command would be:

sudo chmod u+rwx, g+rx, o+x /path/filename

to remove a permission you just use a minus instead of the plus... so if you decided that you didn't want "world/other" to be able to execute that file you would just use

sudo chmod o-x /path/filename

You will also see numbers used at times and I would actually have to look those up but basically I know that 7 is full permissions so if you did:

sudo chmod 777 /path/filename

it would set the permissions to read write execute for user (first seven) group (second 7) and world/other (third 7).

There is also a recursive code (-R note the capitalization it must be uppercase) .. if you wanted to change all the files in one directory and its sub-directories (be careful with this command because if you type the wrong path you can set permissions for files you may not want to touch) but it would look something like this:

sudo chmod -R 777 /home/user/blah

this would change the permissions for the folder blah, all the files and all its sub-directories and files to have full read/write/execute for anyone.

Hope this gives you a better understanding of chmod and permissions. If you need more you can just do a search on chmod commands and you should find the information you need

Best Answer

Related Solutions

Ubuntu – Dynamically set user groups for directories and files on a directory

Ubuntu – Do files/directories belong to a user AND a group

Related Question