beautypg.com

HP NonStop G-Series User Manual

Page 74

background image

OSS File Synchronization

HP AutoSYNC User’s Guide522580-016

5-6

Ownership and Security

The user is SUPER.SUPER. The Super ID always has permission to synchronize
files for other user IDs.

The

SYNCHRONIZE

or

ADD SYNCFILESET

option OWNER is specified and the

user is the same as the specified owner or, the OWNERGROUP is specified and
the group ID is the same as the specified owner. In these cases the destination
files are all owned by the user. If the OWNER option is omitted and the files are not
owned by the user, an error 4001, permission denied, is returned. Likewise, if the
OWNERGROUP is omitted and the group ID is not the group ID of the user, an
error 4001, permission denied, is returned.

The security of the destination file or directory is the same as the source file or
directory, except for WRITE access. WRITE access on the destination files is set to
allow subsequent synchronizations, much like PURGE security for Guardian files.
(There is no PURGE security for OSS files.) If the user is the owner of the source file
or directory but did not have WRITE access to the source file set, WRITE access on
the destination OSS files is set as follows:

If the user is not SUPER.SUPER (255,255), WRITE access is granted for the
destination file. AutoSYNC applies the equivalent of Guardian purge security rules
to OSS WRITE security.

If the user is SUPER.SUPER (255,255), WRITE security is not upgraded and
remains the same as the source file security setting because the SUPER.SUPER
user always has the required WRITE access.

You may use the SECURE option to override the default security setting.

The SECURE option for OSS files specifies read, write and execute access, for the
user (owner of the file or directory), the group and others: “rwxrwxrwx”. The complete
security string must be entered. The accepted values are:

“r” grants read access

“w” grants write access

“x” grants execute access

“-” denies access for read, write, and execute settings.

Ownership of synchronized symbolic links is a special case. By default, the owner of a
synchronized symbolic link is always the user and not the owner of the source
symbolic link or the OWNER specified in the

SYNCHRONIZE

command option.

Likewise, the group ID of synchronized symbolic links is, by default, the group ID of the
user and not the group ID of the source symbolic link or the group ID specified in the

SYNCHRONIZE

command OWNERGROUP option.

You can change this behavior as described below.

This manual is related to the following products:
See also other documents in the category HP Computer hardware: