PreviousNext

Permissions for the Hostdata Container

In DCE, the hostdata items reside in a container which is really a backing storage mechanism maintained by dced. On UNIX systems this is usually a file called dcelocal/var/dced/Hostdata.db. The file is owned by root and its access via dced is protected by an ACL. These ACL permissions control who can access the data in the container. Each DCE host has one hostdata container ACL with the following name:

/.../cellname/hosts/hostname/config/hostdata

The hostdata container ACL has the following permissions:

c (control)
Modify the container ACL

r (read)
Read the list of hostdata items in the container

i (insert)
Create new hostdata items

I (Insert)
Although the I permission is present, it does not apply to hostdata items. The permission applies to server control facilities which are explained in the topic titled DCE Application Administration

Use the acl object in dcecp to view or modify ACLs. For example, use the following operation to view the ACL for the hostdata container object on host silver.

dcecp> acl show /.:/hosts/silver/config/hostdata

{user hosts/silver/self criI}

{unauthenticated r}

{any_other r}

dcecp>