8.8 Trustees

Directory trustees are network users assigned access rights to a directory or file. Trustees are identified by their object ID. Access rights at both the directory and files level are expressed as a bit mask.

8.8.1 Trustee Rights

The following trustee rights are defined for NetWare® 3.11 and above.

The following table compares the privileges associated with trustee rights when assigned at the directory level and at the file level.

Table 8-2 Directory and File Trustee Rights

Right

Directory Level

File Level

TR_READ

Trustee can open and read the directory.

Trustee can open and read the files.

TR_WRITE

Trustee can open and write to the directory.

Trustee can open and write to the file.

TR_CREATE

Trustee can create entries in the directory.

Trustee can salvage the file after deletion.

TR_ERASE

Trustee can remove entries from the directory.

Trustee can erase the file.

TR_ACCESS_CTRL

Trustee can grant trustee rights and modify inheritance for the directory.

Trustee can grant trustee rights and modify inheritance for the file.

TR_FILE_SCAN

Trustee can scan for directory entries.

Trustee can see the file when scanning.

TR_MODIFY

Trustee can modify directory attributes and rename entries.

Trustee can modify the file’s attributes (but not its content).

TR_SUPERVISOR

Trustee has all rights to the directory.

Trustee has all rights to the file.

8.8.2 Trustee Functions

These functions operate on directories or files and so are oriented more toward NetWare® 3.11 and above:

These functions operate on directories only and cannot read or set the TR_SUPERVISOR bit: