AFS quick reference
AFS access permissions
Permissions that apply to directories
- l (lookup)
- Allows one to list the contents of a directory. It does not allow the reading of files.
- i (insert)
- Allows one to create new files in a directory or copy new files to a directory.
- d (delete)
- Allows one to remove files and sub-directories from a directory.
- a (administer)
- Allows one to change a directory's ACL. The owner of a directory can always change the ACL of a directory that s/he owns, along with the ACLs of any subdirectories in that directory.
Permissions that apply to files
- r (read)
- Allows one to read the contents of file in the directory.
- w (write)
- Allows one to modify the contents of files in a directory and use chmod on them.
- k (lock)
- Allows programs to lock files in a directory.
Special AFS groups
- Anyone, anywhere.
- Anyone on a CMU host.
- Anyone on a SCS host.
- Anyone authenticated to the cs.cmu.edu AFS cell (people with valid SCS accounts).
- Authorized AFS administrators (Facilities staff).
- The SCS Web and FTP servers and a few other authorized hosts.
Using the fs command to list your AFS quotafs lq <directory-name>
Using the fs command to list/change ACLsfs help will list all fs commands. fs help <command> will list the syntax for the given command.
An ACL entry is of the form:
<user_or_group name> <permissions>For example: