Software Distributor Administration Guide for HP-UX 11i
SD-UX Security
ACL Entries
Chapter 9 279
Root ACLs
Principals (users) identified in ACLs that are protecting roots are
granted permission to manage installed products. The permissions
associated with a root are:
A sample root ACL that grants a user named lois permission to read,
write, and insert software and members of the group named swadm all
possible permissions is:
user:lois:rwi-
group:swadm:crwit
When a root is created, it is automatically protected by a default ACL
derived from its host. Use swacl to change the initial values of this ACL.
For additional information, see “ACL Templates” on page 282.
Depot ACLs
Principals identified in ACLs that are protecting depots are users who
have been granted permission to manage the depot and to create new
products. The permissions associated with a depot are:
Table 9-8 Root Permissions
i (insert) Permission to install a new product.
r (read) Permission to list the contents of the root.
w (write) Permission to delete the root itself or the products in
the root.
c (control) Permission to edit or change the ACL.
t (test) Permission to test access to an object and list the ACL.
Table 9-9 Depot Permissions
i (insert) Permission to copy a new product into the depot.
r (read) Permission to list the contents (products) of the
depot source.
w (write) Permission to delete the depot (if it is empty), and
unregister itself (not the products in the depot).
c (control) Permission to edit or change the ACL.