Lecture 20 - UNIX 4

Home

Objectives

• To introduce more about UNIX

Contents

• File Modes (Permissions)
• Search Path
• Standard Input and Output
• Grep
• The vi Editor
• The nano Editor
• Editors
• Unix Revision
• Discuss Assignment 3

The upcoming tutorial  is in the Unix Lab B1.11

File Modes (Permissions)

Each file has a set of permission codes (known as the file mode). The directory list ls -l  shows these codes. e.g.:

drwxr-x--x   2 retallick itstaff        76 Jun  3  1997 bin
drwx------   3 retallick itstaff      4096 Jun  7  1999 bitpen
-rw-r--r--   1 retallick itstaff     53489 May 27  1998 brian.gif
drwxr-x--x   3 retallick sys            27 May 29  1997 dumpster
-rw-r--r--   1 retallick itstaff    570786 May 24  1999 gocats.wav
drwxr-xr-x   5 retallick itstaff        48 Jul 28  1996 mygdc

The left 10 characters tell us the permissions of the files:

• the first letter indicates the type of a file where "-" means an ordinary file, "d" means a directory and "l" is for symbolic link. Other types are: "b" is for block-type special file, "c" is for character-type special file, "p" is for pipe, and "s" is for socket).
• The next nine characters show the mode (protection) of the file.
  These are in groups of three "rwxrwxrwx", where any letter may be replaced by a "-".
  "r" means read access is granted, "w" write access and "x" executable access
• The first "rwx" refer to the access allowed to the user (owner) of the file (known as user protection).
  • if "r" is present, the user may read the file,
  • if "w" is present, the user may write to the file,
  • and if "x" is present, the user may execute the file, that is the file is taken to be a program or command.
• The next group of "rwx" refers to members of the same group to which the file belongs (group protection). Each user of the system is also a member of a group - the groups are specified by the systems administrator. The group may be shown as a number or a name associated with the group. For example there may be groups for students and staff..
• The final group of "rwx" refers to the access allowed to ALL other users (other protection).

Note: directory, command and executable files must have executable permission for the user.

chmod

change mode. Changes the file mode (permissions) on a file or files.

The permissions of any file can be changed by the  chmod command (this is pronounced as ch-mod where where ch is sounded as in change and mod as in model).

Only the owner of a file (or the super-user) can alter a file's permissions. Syntax is:

Format

chmod [-R] [ugoa][+-=][rwx] filenames

Where:

• u=user (owner), g=group, o=others, a=all users (equivalent to ugo)
• + = add, - = remove, "=" is set
• r=read, w=write, x=execute

Note: "-" is not used to indicate an option (flag/switch). "+" is used to add permissions, "-" is used to remove permissions and "=" is used to set the permissions to that specified.

Options

-R     Recursive. Changes the mode on the files specified including subdirectories.

Examples

chmod u+rw afile      (Add read and write permissions for the user (owner) to the file afile)

chmod go-rwx *        (Takes all access away from group and others for every file in the current directory)

chmod a-w /usr/local/pub/*.gif    (Takes write access away from all users for every file with a .gif extension in the /usr/local/pub directory)

chmod -R o=rx *     (Anyone (others) can now read and execute but not write to files in the current directory and its subdirectories)

String and Numeric Permissions/Modes

chmod can be used with numeric permission rather than strings.

The values are summed to form a permission digit e.g. read + write permission = 4 (for read, 100 in binary) + 2 (for write, 010 in binary) = 6 (110 in binary). Three digits are used to make up a permission; the first for user, the second for group and the third for other.

Examples

chmod 700 afile    (Equivalent to to u+rwx, g-rwx, o-rwx)

chmod 640 afile    (Equivalent to to u+rw, u-x, g+r, g-wx, o-rwx)

chmod 777 afile    (Equivalent to to u+rwx, g+rwx, o+rwx)

Common Permissions

Files

Common combinations of permissions for files (see below for directories)

Directories

Directories have different properties to normal files. The table below summaries the key permission settings for directories

umask

umask     user file creation mask.

umask is used to specify the permissions given to all new files created. The permission specified is the opposite of the numeric permissions specified above - it specified what permissions are NOT given. Therefore a umask of 077 indicates a user can read, write and execute (rwx = 7 - (4 (read) + 2 (write) + 1 (execute)) = 0, group has no access (not rwx = 7 - 0 = 7) and other has no access (not rwx = 7 - 0 = 7). To grant read and write access to user (7 - (4 + 2) = 1), and group read and execute(7 - 4 + 1 = 2) and world read  (7 - (4) = 3 gives a umask of  123. A umask of 077 is equivalent to a chmod of 777 - 077 = 700 = u=rwx, g-rwx, o-rwx.

After the umask is in effect until you log out or provide a new umask. The umask is applied to all new files and directories created  It does not affect existing files. Remember directories need read and execute access.

Format

umask [mode]

Common umasks

Note: the binary umask and binary permissions are the complement of each other.

Examples

umask     Displays the current value of umask

umask 077     Set a usr mask equivalent to chmod 700 or u=rwx go-rwx

umask 123     Set a usr mask equivalent to chmod 654 or u=rw g=rx u=r

Protecting Your Files

By default the files in your account are readable by other students. This is appropriate for some files e.g. web pages in the directory public_html. However tutorial work, assignments etc should not be readable by other users.

I recommend that you do the following to provide suitable levels of protection for your files:

1. Set the default mode (permissions) for files so that only you can access them. To do this insert the command:

    umask 077 

in your .login file. This provides rwx  (read & write & eXecute) access for the user, and no access for any other users. Once .login has been executed all new files created will have this mode, from now on. To execute the .login file either (a) logout then login in again or (b) execute the login file by typing the command source .login

2. Change directory to your home directory. Set the mode on all files to user read & write & execute; and no group or other access. The -R results in all subdirectories and their files being changed.

    chmod -R go-rwx *

or the equivalent command

   chmod -R 700 *

The above command changes the permissions on files in the current directory and all subdirectories below this. If this is your home directory, this will protect all of your files, as other users won't have access to the subdirectories in the home directory so can't get at the files in them

3. Change the protection on files that you want other users to access. Ensure that users have access to the directory as well as the files. The following changes the permissions on the directory public_html to group & other to read and execute

    chmod go+rx public_html

to change files in a directory, use cd to change directory to that directory and provide read access to everyone:

    chmod go+rx *

or the equivalent command

    chmod 755 *

For example change directory to the public_html directory and then execute the above command to provide read and execute access to the files in public_html.

Whenever you create or copy files to public_html you need to set their permissions (e.g. chmod go+rx *) if they are to be group or other accessible. This may be necessary for your assignments in some subjects.

Standard Input and Output

A fundamental principle of the Unix OS is that output of one program can be used as input for another program. From the command line the operation of the input and output can also be redirected through the use of the redirection characters <, <<, >, >> and piping using the vertical bar character '|' where the standard output of one command becomes the standard input of another.

Examples

ls                 (ls outputs to stdout - i.e. the screen )

less afile.txt     (less receives input from the file afile.txt and outputs it to stdout i.e. the screen)

ls > afile.txt     (Output from ls is sent to the file afile.txt everything in afile.txt is overwritten)

ls >> afile.txt    (Output from ls is appended to the end of afile.txt If it already exists, otherwise a new file is created)

cat file1.txt     (cat receives input from file1.txt and outputs the file to the screen )

cat file1.txt file2.txt > file3.txt (cat concatenates file1.txt and file2.txt and outputs to the file file3.txt)

cat > file1.txt file2.txt     (Copies from stdin (the keyboard) to the file afile.txt until the End-Of-File (EOF) is reached - a CTRL-D)

Input is usually from the keyboard, but it can be redirected also, really only used for programs that have a set input sequence, such as a list of numbers that can easily be stored in a file. eg:

progName < afile.txt

ls -l | less   (Output from ls is sent as input into the program less. The output of less is displayed to stdout as a sequence of characters one screen at a time)  

Problem: you want to display the largest 10 directories in your account as you want to find where all that space has gone.

Solution: (in steps).

1. Change directory to your home directory
2. Use du -k to display the size of directories in your account. This displays to stdout (the screen). Note that the first thing displayed is the file size in kilobytes.
3. The sort command can be used to sort a file or output from a command. sort -k1 -n sorts the first field (-k1) into numeric (-n) order.
4. Combine the commands to send the output from du as input to sort to test it: du -k | sort -k1 -n
5. This displays all of the directories, which can be a lot. We only want to see the top 10 directories, one way is to use the tail command. tail takes its input from stdin. To display the last 10 lines use tail -10.
6. Combine the commands to send the output from sort as input to tail to test it: du -k | sort -k1 -n | tail -10
7. du -k | sort -k1 -n | tail -10

Grep

grep is for searching files. grep stands for Global Regular Expression Print.

Format

grep  [-ciln]  search-pattern  files-to-search

Options/Switches

-c    count. Only count the number of matching lines the search pattern was found on
-i    ignore case. Ignore case (case insensitive search)
-l    list. Only list the names of the files that contain the search pattern
-n    numbers. List the line numbers the search pattern was found on

Examples

grep hello *.java          (Search for all the java programs 
                            with the string hello in them)
grep smith /etc/passwd     (Search for all occurrences of 
                            "smith" in the password file)
grep -ic 'Prog Env' * | less  (Search for all occurrences of "Prog Env"
                               in the any file in this directory using a
                               case insensitive search and only counting 
                               occurrences)

The vi Editor

The vi (pronounced Vee I) editor is a character based, full screen, text editor. It uses its own set of commands (you can get a summary from vi_guide.pdf).

Vi is a moded editor. This means that it operates in different modes. When you first start it, it is in command mode. Here you can give keystroke commands to move around the file, delete lines, copy, paste, and the like. When you give one of the text insertion commands, such as i, you move to insert mode where everything you type goes into the file. You leave insert mode by pressing the ESCAPE key, which returns you to command mode. There is also a bottom line mode which allows more complex search and replace operations. The commands are case sensitive e.g. a is different to A. Once you are familiar with the commands, vi is extremely quick to use, particularly if  if you are a touch typist.

vi has a number of advantages:

• it is available on most UNIX systems
• it doesn't require a graphical environment - it can be used via a terminal window e.g. via telnet
• it works well over slow communication lines
• once mastered it is extremely quick to use

Some useful vi commands:

To run

• vi
• vi  filename

Modes

• insert mode (insert text to left of the cursor position)
  • i
• command mode
  • ESC

Files

• Save As (Write) a file e.g. :w Test.java
  • :w filename
• Save (Write) a file
  • :w
• Open (Read) a File into the current document e.g. :r Test.java
  • :r filename

Moving Around

• Left (Backwards)
  • LeftArrow or h
• Right (Forwards)
  • RightArrow or l
• Up (Previous) one line
  • UpArrow or k
• Down (Next)
  • DownArrow or j
• Forward one word
  • w
• Back one word
  • b
• Beginning of line
  • 0 (zero)
• End of line
  • $
• Next Page
  • Ctrl+f
• Previous Page
  • Ctrl+b
• Move (Go) to line number n e.g. 100G goes to line 100
  • nG
• Move (Go) to the start of the file
  • 1G
• Move (Go) to the end of the file
  • G

Editing Text

• Delete character cursor is on:
  • x
• Delete to end of word cursor is on: 
  • dw
• Delete current line
  • dd
• Delete 'n' lines e.g. 2dd deletes 2 lines
  • ndd
• Copy (Yank) lines e.g. 3yy copies 3 lines
  • nyy
• Paste before current line
  • P
• Paste after current line
  • p
• Join current and next lines
  • J
• Undo last deletion or insertion
  • U

Exit

• Exit and save
  • ZZ
• Quit without saving
  • :q!

Note: When you complete an editing session, you save the file and exit using ZZ

The nano Editor

nano is a full screen text editor that doesn't require a graphical environment to run. This can be useful if you are logging in from a system that doesn't have a graphical environment. nano uses special keystrokes to perform commands, such as Ctrl+X to exit, Ctrl+G for help. It doesn't use the mouse. See http://www.nano-editor.org/ for more.

Some commands are shown at the bottom of the window. Many commands use the control key (Ctrl).

To Run

• nano
• nano filename

Files

• Save (write Out) a file: Ctrl+O
  • Type the file name (or use Ctrl+T to select an existing file)
• Open (Read) a File: Ctrl+R

Moving Around

• Left (Backwards): LeftArrow or Ctrl+B
• Right (Forwards): RightArrow or Ctrl+F
• Up (Previous) one line: UpArrow or Ctrl+P
• Down (Next): DownArrow or Ctrl+N
• Beginning of line: Ctrl+A
• End of line: Ctrl+E
• Next Page: Ctrl+V or F8
• Previous Page: Ctrl+Y or F7

Editing Text

• Delete character to the left: Backspace
• Cut text:
  • Move the cursor to the start of the text to be selected
  • Start selection: Ctrl+^
  • Then move the cursor to the end of the text to select
  • Cut selected text: Ctrl+K
• Paste (Uncut) text: Ctrl+U
• Find (Where is) text: Ctrl+W
• Insert a tab: Tab or Ctrl+I

Miscellaneous

• Refresh the window: Ctrl+L
• Display Cursor position: Ctrl+C

Exit

• Ctrl+X
• then Y to save, N not to save or Ctrl+C to cancel.

Editors

Unix is an old system, which has been updated constantly. There are many available editors. Some include:

• gedit - a window based (WIMP interface) editor
• vi - the visual (full screen) extension to ex that runs in a terminal window
• nano - a the visual (full screen) extension to pico that runs in a terminal window
• nedit - a window based (WIMP interface) editor
• emacs - another full screen editor, which makes extensive use of control keys. Very powerful.
• ed - a line mode editor (one line at a time)
• ex - an extended version of ed
• sed - a stream editor which will apply a set of commands to multiple files
• awk - a pattern processing system.

Further Reading

• UNIX Command Summary
• vi_guide.pdf
• Taylor, D. (2005) Sams Teach Yourself UNIX in 24 Hours. 4th ed. Indianapolis, Indiana: Sams. (ISBN: 0-672-32814-3; Cost: approximately $45; Format: Paperback; Pages: 528; Comments: an excellent introduction to UNIX, with greater coverage than Learning the UNIX Operating System. The third edition is also excellent).
• Das, S. (2006) Your Unix: The Ultimate Guide. 2nd ed. Boston MA: McGraw-Hill. (ISBN: 0-07-252042-6; Format: Paperback; Pages: 706; Comments: more in depth that Taylor).

Written by Tim Whitfort.