-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
chore: Add new section for permissions in documentation
- Loading branch information
Showing
2 changed files
with
15 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,13 @@ | ||
| --- | ||
| title: 权限 | ||
| icon: simple/amazoniam | ||
| --- | ||
|
|
||
| ## 安全模型 | ||
|
|
||
| Linux系统上最初的安全模型为DAC, Discretionary Access Control. 后来又增加了一个新的安全模型为MAC, Mandatory Access Control. | ||
|
|
||
| DAC和MAC不是互斥的, DAC是最基本的安全模型, 是我们最常用到的访问控制机制, 而MAC是构建在DAC之上的可选的加强安全机制. 访问前, Linux系统通常都是先做DAC检查, 如果没有通过则操作直接失败; 如果通过DAC检查并且系统支持MAC模块, 再做MAC权限检查. | ||
|
|
||
| [^1]: Jang, M., & Orsaria, A. (2016). RHCSA/RHCE Red Hat Linux Certification Study Guide, Seventh Edition (7th edition). McGraw Hill. | ||
| [^2]: "262588213843476". (n.d.). Linux权限控制的基本原理. Gist. Retrieved June 9, 2024, from https://gist.github.com/baymaxium/45ad3b68bcd392c3c3feebf935f1618f |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -122,4 +122,5 @@ nav: | |
| - 开始: | ||
| - index.md | ||
| - 命令行: | ||
| - 终端: 命令行/终端.md | ||
| - 终端: 命令行/终端.md | ||
| - 权限: 命令行/权限.md | ||