Sign up

Sudip Bhandari

Understanding Permissions in Linux

Understanding Permissions in Linux

Sudip Bhandari's photo
Sudip Bhandari
Feb 10, 2025ยท

3 min read

๐Ÿ”’ Understanding Permissions in Linux

Linux permissions control who can read, write, or execute files and directories. They are essential for security and access management.

1. File Permissions: Read, Write, Execute

Each file and directory in Linux has three types of permissions:

PermissionSymbolMeaning
Readr (4)View the contents of a file or list a directory
Writew (2)Modify the file or create/delete files in a directory
Executex (1)Run the file (if it's a script or program) or access a directory

Each file has three permission groups:

  1. Owner (User) - The creator of the file.

  2. Group - A group of users who share permissions.

  3. Others - Everyone else.

You can view file permissions using:

ls -l

Example output:

rwxr--r-- 1 user group 1234 Feb 10 12:00 myfile.sh

  • -rwxr--r--

    • - โ†’ Regular file (or d for directory)

    • rwx โ†’ Owner has read, write, execute (r=4, w=2, x=1, total = 7)

    • r-- โ†’ Group has read only (r=4)

    • r-- โ†’ Others have read only (r=4)

2. Changing Permissions (chmod)

chmod modifies permissions.

Symbolic Method

chmod u+x file    # Add execute (x) for the user
chmod g-w file    # Remove write (w) for the group
chmod o+r file    # Add read (r) for others
chmod ugo=rwx file  # Give full permissions to everyone

Octal Method

Each permission type has a number:

  • r = 4

  • w = 2

  • x = 1

  • No permission = 0

To set permissions:

chmod 755 file  # Owner: rwx (7), Group: r-x (5), Others: r-x (5)
chmod 644 file  # Owner: rw- (6), Group: r-- (4), Others: r-- (4)
chmod 777 file  # Everyone has full permissions (โš ๏ธ NOT recommended)

3. Changing Ownership (chown)

chown changes the owner of a file.

sudo chown user file       # Change owner
sudo chown user:group file # Change owner and group
sudo chown -R user:group directory/  # Apply recursively

4. Changing Group Ownership (chgrp)

chgrp changes only the group of a file.

sudo chgrp group file

5. Understanding Special Permissions

Sticky Bit (t): Prevents users from deleting others' files in a directory.

chmod +t directory/

Example: /tmp has a sticky bit so only file owners can delete their own files.

SetUID (s): Runs a file with the owner's privileges.

chmod u+s file

Example: /bin/passwd lets users change their password.

SetGID (s): Runs a file with the group's privileges.

chmod g+s directory/

Files created in this directory inherit the group.

6. Viewing Effective Permissions

To see effective user permissions:

whoami      # Show current user
groups      # Show user's groups
id          # Show user and group IDs

To check access to a file:

namei -l /path/to/file

7. Default Permissions (umask)

umask sets the default permissions for new files.

  • View the current umask:

      umask

  • Set a new umask (e.g., 022 for 755):

      umask 022

8. Common Permission Issues & Fixes

Permission Denied (Errno 13)

sudo chmod -R 755 /path/to/directory
sudo chown -R user:user /path/to/directory

Cannot Execute Script

chmod +x script.sh
./script.sh

Can't Write to Directory

chmod u+w directory/

9. Security Best Practices

โœ… Avoid using chmod 777 (full access for everyone).
โœ… Use sudo only when necessary.
โœ… Set directories to 755 and files to 644 unless execution is needed.
โœ… Use chown carefully to prevent unauthorized access.