Hints, Security, Assigning File Profiles
*Conan The Librarian
The new file obtains its owner, protection code, and ACL from a
number of sources. The ownership assignment of a new file is done
independently of protection and ACL.
If any of the following conditions are true, then you can assign
an identifier as the owner of a file:
o The identifier matches your process UIC.
o You hold the identifier with the Resource attribute.
o You hold GRPPRV privilege and the identifier's group number
matches your UIC group.
o You hold SYSPRV privilege.
A file receives its owner identifier from the first applicable
source that you are allowed to assign:
o The explicit assignment of an owner at creation with the
/OWNER_UIC qualifier to the CREATE or COPY command
o The previous version
o The parent directory
o The process UIC
2 - Protection Code and ACL
The sources of a new file's protection code and ACL are similar
to those of ownership and are considered in the same order. The
system assigns a file's protection code and ACL from one of the
1. The explicit assignment of elements at creation
2. The profile of the previous version of the file, if one exists
3. A Default Protection ACE and Default ACL on the parent
4. The UIC and protection defaults of the process issuing the
5. One of the above with provision for the user creating the file
See the OpenVMS Guide to System Security for further information.