IntroductionAccess Control is a technology that is attracting more and
more attention as corporations and general end-users reel back from the onslaught
of advancements made by the malicious denizens of todays digitally connected
world. By utilizing various access control technologies the single loss exposure
introduced by these malicious users can be greatly reduced. With this reduction of
risk we can also reduce the total cost of ownership of a Fedora Core distribution.
Corporations and end-users alike benefit from the resultant product generated by a
little due diligence and due care of the filesystems available to them.
This due diligence and due care will be presented as a review, implementation, and
monitoring of the object instances that compose a filesystem by using the
various Open Source access control techniques and implementations available to the
general public. To enable end-users and system administrators alike to glean
meaningful content from this document, there will be a comprehensive review of
the structure and design of a filesystem at its most basic level. Further
explanation of access control mechanisms and methodologies should provide a solid
base from which to start securing the filesystems of fedora. This document will
also describe the administrative considerations and effects of the procedures
presented to ensure a cohesive and comprehensive understanding of the topic of
filesystem access control.
Intended Audience
This document is intended for all end-users of the fedora distribution.
However it is my intention to present, as effectively as possible, this
topic so that the following categories of audience can readily acquire
valuable relevant information that corresponds to their skill level:
System AdministratorsSecurity PractitionersPower UsersCurrent Version
The most current version of this document can be accessed at the
following location:
http://www.domain.com/docs/current/something.htmlThis document is built from the following sources:Remote Development Versioning&doccvs;Local Development Identification&docsysid;Revision History&REVID;2005-07-18TRJ
Initial fedora-docs CVS access. Altered
document outline.
0.22005-05-13TRJ
Bugzilla submission. Received bugid: &BUG-NUM;. Altered
inclusive nature of the document title.
0.12005-05-04TRJ
Initial draft for fedora-docsFeedback
Have you found some missing information, missing links, or missing
characters? Maybe you just have some comments and/or suggestions about
this document?
Mail it to the author of this document at the following address:
&author.mail;
Whenever possible please utilize the authors GnuPG key for these
communications:
KeyID: 1024D/57BF9042 2004-12-26 Thomas R. Jones (
IEEE Computer Society Account)
<thomasjones@computer.org>
Fingerprint: 5264 BCA1 6059 57A8 58E5 7F04 A11E 5C13
57BF 9042Copyright InformationCopyright 2005 Thomas R. Jones &author.mail;Legal Information
&LEGALNOTICE-CONTENT;
System RequirementsList requirements: materials, knowledge.Document Conventions
The following typographic and usage conventions occur in this
document:
Typographic and usage conventionsText typeMeaningQuoted textQuotes from people, quoted computer output.terminal view
Literal computer input and output captured from the
terminal, usually rendered with a light grey background.
command
Name of a command that can be entered on the command line.
VARIABLE
Name of a variable or pointer to content of a variable, as
in $VARNAME.
Option to a command, as in the
option to the ls command.
argument
Argument to a command, as in read man
ls.
command
arguments
Command synopsis or general usage, on a separated line.
filename
Name of a file or directory, for example Change
to the /usr/bin directory.Key
Keys to hit on the keyboard, such as type
Q to quit.
Button
Graphical button to click, like the OK
button.
MenuChoice
Choice to select from a graphical menu, for
instance: Select
HelpAbout Mozilla in your browser.Terminology
Important term or concept: The Linux
kernel is the heart of the
system.See ?????link to related subject within this guide.The authors
siteClickable link to an external web resource.