4.3. Access Control Lists
Mac OS X 10.4 saw the introduction of ACLs, and Apple has continually refined them through the various iterations. For a traditional Windows system administrator, ACLs are likely easier to work with than POSIX. ACLs match the permission options almost identically. In fact, as we mentioned earlier, the OS X NFSv4 ACL format, is compatible with Windows ACLs.
A file's access control list is completely extensible, allowing you to assign very granular permissions to specific users and groups. It frees you from the constraints of the POSIX user/group/everyone paradigm, and greatly simplifies permissions management. On top of their extensibility, ACLs also define numerous different access levels and inheritance capabilities, ...
Get Enterprise Mac Security: Mac OS X Snow Leopard now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
