tool::chmod-detail
chmod 750
rwxr-x---
Group Accessible Directory
Permission Structure
Owner (User)
✓Read (r)
✓Write (w)
✓Execute (x)
Group
✓Read (r)
✗Write (w)
✓Execute (x)
Others
✗Read (r)
✗Write (w)
✗Execute (x)
Octal
750Symbolic
rwxr-x---Explanation
chmod 750 gives the owner full permissions, the group read and execute (directory traversal) permissions, and others no access at all. Ideal for restricting an application directory to a specific service group while completely blocking outside users. Achieves the principle of least privilege elegantly.
Common Use Cases
- ▸Web application root (only www-data group can access)
- ▸Database data directories (only DB group can access)
- ▸System service configuration directories
- ▸Admin script directories accessible only to the sudo group
- ▸Internal-network-only API server directories
Security Considerations
750 is a clean implementation of the principle of least privilege. Others cannot list (ls) or enter (cd) the directory. It must be paired with the correct group ownership (chown :group) for the intended access control to take effect.
Command Examples
$ chmod 750 /var/www/myapp$ chown root:www-data /var/www/myapp$ chmod 750 /etc/myservice$ chmod 750 /opt/database/dataRelated Permissions
ad · 300×250
// related tools