Software Distributor Administration Guide for HP-UX 11i
SD-UX Security
ACL Entries
Chapter 9276
The table below summarizes SD-UX object permissions and ACLs to
which they may be applied.
Object Protection
The control of product insert and delete permissions differs between
roots and depots.
The permission for anyone to insert or delete a product on a root is
contained within the root’s ACL. If you have write permission on a root,
you can change or delete any product on that root; there is NO product
level control on roots.
Table 9-6 SD-UX ACL Permission Definitions
Permissi
on Allows You To:
Host
System
Root Depot Product on
Depot
c (control) Edit all ACLs
t (test) Test access to an object, read (list) the ACL itself
i (insert) Insert a
new depot
or root
Insert a
new
product
Insert a
new
product
N/A
w (write)
a
Change
host
Change
root or
products
Change
depot
Change
product
r (read)
b
List depots
and roots
List root
and product
attributes
List depot
and product
attributes
Read
product
files
a. Write permission means permission to change or delete the
object, except the host source object may not be deleted.
b. Read permission on containers (i.e., hosts, roots, and depots)
lets a user list the container contents; on products within
depots, read permission lets a user copy or install the product.