Access Control

Unix standards

CloudLab - a place with rootly power!

Setup CloudLab Account

Setup GitHub Repository


Setup CloudLab profile

:alt: Instantiate an experiment from the profile


Unix/Linux standards for access control


Root and Rootly Powers




Hands-on: Rootly power

1
2
3
4
whoami
sudo whoami
cat /etc/shadow
sudo cat /etc/shadow

Other (less secure) means of granting rootly powers

1
id
1
2
3
4
5
6
7
8
9
man chown
man chmod
cat /etc/shadow
which cat
cp $(which cat) mycat
./mycat /etc/shadow
sudo chown root mycat
sudo chmod 4755 mycat
./mycat /etc/shadow

Managemen of the root account


Challenge

1
sudo useradd -s /bin/sh -d /home/student -m student

Drawback of standard models


Extensions to standard models


Modern access control