CN115774694A - Method for preventing data file of special material monitoring software from being deleted and changed - Google Patents
Method for preventing data file of special material monitoring software from being deleted and changed Download PDFInfo
- Publication number
- CN115774694A CN115774694A CN202111047664.XA CN202111047664A CN115774694A CN 115774694 A CN115774694 A CN 115774694A CN 202111047664 A CN202111047664 A CN 202111047664A CN 115774694 A CN115774694 A CN 115774694A
- Authority
- CN
- China
- Prior art keywords
- software
- folder
- user
- data
- operator
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
A method for preventing a special material monitoring software data file from being deleted and changed comprises the following steps: s1: newly building a system user; s2: installing software and specifying a storage location; s3: establishing a one-to-one corresponding relationship between a software user and a system user; s4: newly building a software operator; s5: configuring the operation authority of a software user; s6: setting read, write and execution authorities; s7: setting read-write and non-delete authority; s8: setting an adhesion position; s9: multi-user software data sharing; s10: protecting user private data; the method is based on a winning-bid kylin operating system, the system is subjected to multi-user partition management and independent operation, software login user names correspond to system user accounts one by one, and modular management is performed; the software operation authority can be flexibly configured, the folder authority setting can be advanced layer by layer, and multi-user software data can be safely shared and cannot be deleted or changed; the multi-user operation space is safely isolated, and the safety protection of the private data of the user can be realized.
Description
Technical Field
The invention particularly relates to a method for preventing a special material monitoring software data file from being deleted and changed. The hierarchical authorization and the authority protection can be carried out on the operation authority of the specific folder generated by the computer application software running and used on the winning kylin operating system. Belongs to the technical field of protection of computer file operation authority.
Background
The special material needs to be monitored regularly, the monitored data files belong to key data and important information, the data files are used for storage management and production use of the special material, the data files are important for safety, and once the data files are generated, the data files cannot be deleted and changed randomly. Different operators are in a system user space, so that the following two conditions may exist when the monitoring data files are read mutually, namely the monitoring data files are intentionally deleted and maliciously tampered by the operators, and the monitoring data files are lost due to deletion and change of the monitoring data files caused by misoperation of the operators.
A common windows system is mature in file data protection method of application software of the windows system, and file data can be prevented from being deleted and changed through authority management and corresponding plug-ins. Due to the fact that the using group of the winning bid kylin operating system is single relatively, adaptation compatibility is poor compared with that of a windows system, and the user permission distribution particularity of the monitoring data management software is combined, multiple users of the software cannot well prevent software data files from being deleted and changed under the same system user.
Aiming at the problems of intentional deletion, malicious tampering and misoperation deletion and modification of files possibly caused by multiple users of application software under the same system user of the bid-winning kylin, the conventional technical measures are mainly stopped by adopting measures of encryption protection, authority setting and management system implementation at present. The measures have certain effects, but still have the following problems that the problem that part of users cannot delete and change file data is solved by carrying out encryption protection on the monitoring data storage folder, but the data sharing under a multi-user environment cannot be met; secondly, by setting read-write permission for the monitoring data storage folder, the problem that all software operator users cannot delete and change file data is solved, but a plurality of software operator users are in the same system user space, and the self-management of private data of the operator users cannot be effectively realized; thirdly, the conscious behaviors of operators are normalized through the implementation of a management system to prevent the monitoring data files from being deleted and changed, the factor that the manual management and control force is uncontrollable exists, and the risk of mistaken deletion and change still exists.
Disclosure of Invention
The invention aims to: the method for preventing the deletion and the modification of the software data files based on the multi-user operating environment, the user classification and the authority management under the bid winning kylin system is provided.
The technical scheme of the invention is as follows: a method for preventing a special material monitoring software data file from being deleted and changed comprises the following steps:
s1: newly building a system user, logging in a system administrator root5 by a winning Chinese kylin system user 1 to enter a system, and building a system common user 10, wherein the system common user 10 comprises a system common user testa18 and a system common user testb19, a data file generated by the system administrator root5 is stored in a folder root7 under a computer directory 3, and data files generated by the system common user testa18 and the system common user testb19 are stored in a folder home8 under the computer directory 3 and are respectively named as a folder testa12 and a folder testb13;
s2: installing software and designating a storage position, installing special material monitoring software in a folder software9 under a computer directory 3, wherein a software administrator 6 and a software operator 11 have the functions of acquiring information, supervising and checking and analyzing data of oxide special materials and metal special materials;
s3: the software users and the system users establish a one-to-one corresponding relation, a software manager 6 enters a software operator management module, newly-built user accounts of a system ordinary user testa18 and a system ordinary user testb19 are associated into a personnel numbering pull-down menu, and a one-to-one corresponding relation of the system ordinary user testa18 corresponding to a software operator testa21 and the system ordinary user testb19 corresponding to a software operator testb20 is established;
s4: newly building a software operator, wherein the software manager 6 enters a software operator management module, respectively selects a system common user testa18 and a system common user testb19 of an associated account in a personnel number pull-down menu, newly builds operator information, sets a user login password, and the login user name of the newly built software operator is the software operator testb20 and the software operator testa21;
s5: configuring software user operation authority, setting information acquisition, supervision and inspection and data analysis software function operation authority for a software operator testb20 and a software operator testa21 by a software administrator 6, and realizing the file writing authority of the software operator testb20 and the software operator testa21 on folders yhw14, js15, check-record16 and date-analysis17 under a folder software 9;
s6: setting read, write and execution rights, and setting-rwxrwrxrwx-rights for the folders yhw14, js15, check-record16 and folder data-analysis 17 in the folder software9 by the system administrator 5, namely, a user owner, a group owner and other users in the system have read, write and execution rights for directories;
s7: the setting is readable and writable, and the system administrator 5 uses the code 'sudo chartr + a-R/directory name' to recursively set the readable and writable of the folder yhw14, the folder js15, the check-record16 and the folder data-analysis 17 in the folder software9 respectively;
s8: setting the sticky bit, the system administrator 5 sets the permission of rwxt for folder yhw14, folder js15, check-record16 and folder date-analysis17 in the folder software9 using the code "chmod o + rwxt directory name";
s9: multi-user software data sharing, wherein through the authority setting in S6, S7 and S8, a system ordinary user testa18 and a system ordinary user testb19 read and share software data of a folder yhw14, a folder js15, a check-record16 and a folder date-analysis17 in a folder software 9;
s10: the private data of the user is protected, files of a system common user testa18 and a system common user testb19 are located in folders testa12 and testb13 under a folder home8 in a computer directory 3, and the system common user testa18 can only access the folder testa12 and cannot access the folder testb13.
In the S1, an adduiser-m command is used for establishing a system common user 10.
In the S2, the oxide special material information acquisition data file is stored in a folder yhw14 under a folder software 9.
In the S2, the information acquisition data file of the metal special material is stored in a folder js15 under a folder software 9.
In S2, the supervision and inspection data file is stored in a folder check-record16 under a folder software 9.
In S2, the data analysis data file is stored in the folder data-analysis 17 under the folder software 9.
And in the S4, the software is respectively logged in by switching the common users of the system subsequently, and the user name of the software operator is bound as the account number of the system user.
In S6, the user deletes the directory.
In S7, the permission command may not be deleted, and the group owner and other users in the system may not delete the folder yhw14, the folder js15, the check-record16, and the folder data-analysis 17 in the folder software 9.
In S8, t denotes an adhesion position, and when the setting is completed, it is found that the user reads files of other users, or can create files by himself, but only delete files created by himself, but not delete files created by other users.
In S9, the data files may not be deleted or changed.
The invention has the remarkable effects that: the system multi-user partition management is carried out, the system multi-user partition management is independent, software login user names correspond to system user accounts one by one, and the system multi-user partition management is carried out in a modularized mode; the software operation authority can be flexibly configured, the folder authority can be set layer by layer, and multi-user software data can be safely shared and cannot be deleted or changed; the multi-user operation space is safely isolated, and the safety protection of the private data of the user can be realized.
Drawings
Fig. 1 is a working schematic diagram of a method for preventing a special material monitoring software data file from being deleted and changed according to the present invention.
In fig. 1: the system comprises 1 a normalized kylin system user, 2 an administrator module, 3 a computer directory, 4 a common user module, 5 a system administrator root,6 a software administrator, 7 a folder root,8 a folder home,9 a folder software,10 a system common user, 11 a software operator, 12 a folder testa,13 a folder testb,14 a folder yhw,15 a folder js,16 a folder check-record,17 a folder date-analysis,18 a system common user testa,19 a system common user testb,20 a software operator testb and 21 a software operator testa.
Detailed Description
For ease of understanding, the following discussion is directed to the specialty materials monitoring software:
1. the operating environment of the special material monitoring software is a winning-bid kylin operating system;
2. the special material monitoring software users comprise administrators and ordinary users, the number of the administrators is only 1, the number of the ordinary users is set according to the requirements, and the software administrators can manage operators and manage authorities, set personnel numbers, and set information acquisition, supervision and inspection and data analysis operation authorities;
3. the special material monitoring software can monitor various special materials, including the oxide special material and the metal special material mentioned in the embodiment;
4. the special material monitoring software has the functions of information acquisition, supervision and inspection and data analysis, wherein the information acquisition is mainly used for inputting design information and material characteristic information aiming at different types of special materials, the supervision and inspection is used for monitoring the special materials regularly, and the data analysis is mainly used for analyzing supervision and inspection records.
A method for preventing a special material monitoring software data file from being deleted and changed comprises the following steps:
s1: newly building a system user, logging in a system administrator root5 by a winning Chinese kylin system user 1 to enter a system, and establishing a system common user 10 by using an addiser-m command, wherein the system common user 10 comprises a system common user testa18 and a system common user testb19, data files generated by the system administrator root5 are stored in a folder root7 under a computer directory 3, and data files generated by the system common user testa18 and the system common user testb19 are stored in a folder home8 under the computer directory 3 and are respectively named as a folder testa12 and a folder testb13;
s2: installing software and specifying a storage position, wherein the special material monitoring software is installed in a folder software9 under a computer directory 3, a software administrator 6 and a software operator 11 have the functions of information acquisition, supervision and data analysis on oxide special materials and metal special materials, an oxide special material information acquisition data file is stored in a folder yhw14 under the folder software9, a metal special material information acquisition data file is stored in a folder js15 under the folder software9, a supervision and inspection data file is stored in a folder check-record16 under the folder software9, and a data analysis data file is stored in a folder date-analysis17 under the folder software 9;
s3: the software users and the system users establish a one-to-one corresponding relation, a software manager 6 enters a software operator management module, newly-built user accounts of a system ordinary user testa18 and a system ordinary user testb19 are associated into a personnel numbering pull-down menu, and a one-to-one corresponding relation of the system ordinary user testa18 corresponding to a software operator testa21 and the system ordinary user testb19 corresponding to a software operator testb20 is established;
s4: newly building a software operator, enabling a software manager 6 to enter a software operator management module, respectively selecting a system common user testa18 and a system common user testb19 of a related account in a personnel number pull-down menu, newly building operator information, setting a user login password, enabling login user names of the newly built software operator to be a software operator testb20 and a software operator testa21, subsequently, respectively logging in software by switching system common users, successfully binding the software operator user name to be a system user account, and realizing login only by filling the login password;
s5: configuring software user operation authority, and setting information acquisition, supervision and inspection and data analysis software function operation authority for a software operator testb20 and a software operator testa21 by a software administrator 6, so as to realize the file writing authority of the software operator testb20 and the software operator testa21 on folders yhw14, js15, check-record16 and date-analysis17 under the folder software 9;
s6: setting read, write and execution authorities, and setting-rwxrwrxrwx-authorities by a system administrator 5 for folders yhw14, js15, check-record16 and folder data-analysis 17 in the folder software9, namely, a user owner, a group owner and other users in the system have read, write and execution authorities for directories, and at the moment, the user can delete the directories;
s7: setting readable and writable but not deleting authority, wherein the system administrator 5 uses a code "sudo chartr + a-R/directory name" to recursively set the readable and writable of a folder yhw14, a folder js15, a check-record16 and a folder date-analysis17 in a folder software9 respectively, but cannot delete an authority command, and a group owner and other users in the system cannot delete the folder yhw14, the folder js15, the check-record16 and the folder date-analysis17 in the folder software9, and at this time, the users generate files stored under the folders through software and can also delete the files from each other;
s8: setting an adhesion bit, setting permissions of a folder yhw14, a folder js15, a check-record16 and rwxt of a folder date-analysis17 in a folder software9 by a system administrator 5 by using a code "chmod o + rwxt directory name", wherein t refers to the adhesion bit, and after the setting is finished, a user can read files of other users and can create the files by himself, but only the files created by the user can be deleted, and the files created by other users cannot be deleted;
s9: multi-user software data sharing, through the authority setting in S6, S7 and S8, a system common user testa18 and a system common user testb19 can read and share software data of a folder yhw14, a folder js15, a check-record16 and a folder date-analysis17 in the folder software9, and data files cannot be deleted or changed;
s10: user private data protection, system ordinary user testa18, system ordinary user testb19 file lie in folder hos 8 in computer directory 3 under folder testa12, folder testb13, utilize the characteristic of the multicit of the Kanglin system multiuser, system ordinary user testa18 can only visit folder testa12, can not visit folder testb13, system ordinary user testb19 is the same, have realized user private data security protection.
Claims (11)
1. A method for preventing a special material monitoring software data file from being deleted and changed is characterized in that: the method comprises the following steps:
s1: newly building a system user, logging in a root (5) of a system administrator to enter a system by a winning-bid kylin system user (1), and building a system common user (10), wherein the system common user (10) comprises a system common user testa (18) and a system common user testb (19), data files generated by the system administrator root (5) are stored in a folder root (7) under a computer directory (3), and data files generated by the system common user testa (18) and the system common user testb (19) are stored in a folder home (8) under the computer directory (3) and are respectively named as a folder testa (12) and a folder testb (13);
s2: installing software and designating a storage position, wherein the special material monitoring software is installed in a folder software (9) under a computer directory (3), and a software manager (6) and a software operator (11) have the functions of information acquisition, supervision and inspection and data analysis on the oxide special material and the metal special material;
s3: the software users and the system users establish a one-to-one corresponding relation, a software administrator (6) enters a software operator management module, newly-built user accounts of system common users testa (18) and testb (19) are associated into a personnel number pull-down menu, and a one-to-one corresponding relation between the system common users testa (18) and the software operators testb (21) and between the system common users testb (19) and the software operators testb (20) is established;
s4: newly building a software operator, enabling the software operator (6) to enter a software operator management module, respectively selecting a common account system user testa (18) and a common system user testb (19) which are associated with the software operator in a personnel number pull-down menu, newly building operator information, setting a user login password, and obtaining a login user name of the newly built software operator, namely the software operator testb (20) and the software operator testa (21);
s5: configuring software user operation authority, and setting information acquisition, supervision and inspection and data analysis software function operation authority for a software operator testb (20) and a software operator testa (21) by a software administrator (6) to realize the file writing authority of the software operator testb (20) and the software operator testa (21) for folders yhw (14), js (15), check-record (16) and date-analysis (17) under folder software (9);
s6: setting read, write and execute rights, the system administrator 5 sets-rwxrwrxrwx-rights for the folders yhw (14), js (15), check-record (16) and date-analysis (17) in the folder software9, that is, the user owner, the group owner and other users in the system have read, write and execute rights for directories;
s7: the setting is readable and writable, and a system administrator (5) uses a code 'sudo chartr + a-R/directory name' to recursively set the readable and writable of a folder yhw (14), a folder js (15), a check-record (16) and a folder date-analysis (17) in a folder software (9) respectively;
s8: setting an adhesion bit, and setting permission of rwxt of a folder yhw (14), a folder js (15), a check-record (16) and a folder date-analysis (17) in a folder software (9) by a system administrator (5) by using a code 'chmod o + rwxt directory name';
s9: multi-user software data sharing, wherein through the authority setting in S6, S7 and S8, a system ordinary user testa (18) and a system ordinary user testb (19) read and share software data of a folder yhw (14), a folder js (15), a check-record (16) and a folder date-analysis (17) in the folder software (9);
s10: and (3) protecting private data of a user, wherein files of a system common user testa (18) and a system common user testb (19) are positioned in folders testa (12) and testb (13) under a folder home (8) in a computer directory (3), and the system common user testa (18) can only access the folder testa (12) and cannot access the folder testb (13).
2. The method for preventing the deletion and the modification of the data file of the special material monitoring software according to claim 1, wherein the method comprises the following steps: in the S1, a system common user (10) is established by using an adduiser-m command under the winning kylin system.
3. The method for preventing the deletion and the modification of the data file of the special material monitoring software according to claim 1, wherein the method comprises the following steps: in the S2, the information acquisition data file of the oxide special material is stored in a folder yhw (14) under a folder software (9).
4. A method for preventing deletion and modification of a specialty materials monitoring software data file as claimed in claim 1 wherein: in the S2, the information acquisition data file of the metal special material is stored in a folder js (15) under a folder software (9).
5. A method for preventing deletion and modification of a specialty materials monitoring software data file as claimed in claim 1 wherein: in S2, the supervision and inspection data file is stored in a folder check-record (16) under a folder software (9).
6. A method for preventing deletion and modification of a specialty materials monitoring software data file as claimed in claim 1 wherein: in S2, the data analysis data file is stored in the folder data-analysis (17) under the folder software (9).
7. The method for preventing the deletion and the modification of the data file of the special material monitoring software according to claim 1, wherein the method comprises the following steps: and in the S4, the software is respectively logged in by switching the common users of the system subsequently, and the user name of the software operator is bound as the account number of the system user.
8. The method for preventing the deletion and the modification of the data file of the special material monitoring software according to claim 1, wherein the method comprises the following steps: in S6, the user deletes the directory.
9. The method for preventing the deletion and the modification of the data file of the special material monitoring software according to claim 1, wherein the method comprises the following steps: in S7, the group owner and other users in the system do not delete the folder yhw (14), folder js (15), check-record (16) and folder data-analysis (17) in the folder software (9) without deleting the permission command.
10. The method for preventing the deletion and the modification of the data file of the special material monitoring software according to claim 1, wherein the method comprises the following steps: in S8, t refers to an adhesion position, and after the setting is completed, the user is found to read other user files.
11. A method for preventing deletion and modification of a specialty materials monitoring software data file as claimed in claim 1 wherein: in S9, the data files cannot be deleted or changed.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111047664.XA CN115774694A (en) | 2021-09-08 | 2021-09-08 | Method for preventing data file of special material monitoring software from being deleted and changed |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111047664.XA CN115774694A (en) | 2021-09-08 | 2021-09-08 | Method for preventing data file of special material monitoring software from being deleted and changed |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115774694A true CN115774694A (en) | 2023-03-10 |
Family
ID=85387874
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111047664.XA Pending CN115774694A (en) | 2021-09-08 | 2021-09-08 | Method for preventing data file of special material monitoring software from being deleted and changed |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115774694A (en) |
-
2021
- 2021-09-08 CN CN202111047664.XA patent/CN115774694A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7496575B2 (en) | Application instrumentation and monitoring | |
| DE69530128T2 (en) | SECURITY FOR COMPUTER EQUIPMENT | |
| KR100740682B1 (en) | Secure file server system prevent data save from local pc, and and method thereof and media that can record computer program for method thereof | |
| CN101923678A (en) | Data security protection method of enterprise management software | |
| EP1496427A2 (en) | Data processing method with restricted data arrangement, storage area management method, and data processing system | |
| CN112329031A (en) | Data authority control system based on data center | |
| CN109643356B (en) | Method and system for preventing phishing or extorting software attacks | |
| KR101552950B1 (en) | direct access management system for a server and network device | |
| CN102722671A (en) | Data defense system in windows operation system | |
| DE10244728A1 (en) | Information protection system for optical disk, transmits user password to optical disk, when stored and obtained serial number of disk are in collation | |
| DE112005002955T5 (en) | Electrical transmission system in a secret environment between virtual disks and associated electrical transmission method | |
| CN109684866B (en) | Safe USB flash disk system supporting multi-user data protection | |
| CN102930216A (en) | Encrypt file management method based on wireless USB (Universal Serial Bus) flash disc | |
| CN107358122A (en) | The access management method and system of a kind of data storage | |
| CN116542637B (en) | Government platform safety control method based on computer | |
| CN115774694A (en) | Method for preventing data file of special material monitoring software from being deleted and changed | |
| EP2915091B1 (en) | Method for the protected deposit of event protocol data of a computer system, computer programme product and computer system | |
| CN118368120A (en) | Data management method and device of operation and maintenance platform, electronic equipment and medium | |
| CN109995735A (en) | Downloading and application method, server, client, system, equipment and medium | |
| JP2005038124A (en) | File access control method and control system | |
| Cisco | Using Security Manager Tools | |
| CN115941743A (en) | Method and system for identity authentication and data backup | |
| CN114168984A (en) | Access control and file encryption method suitable for numerical control system | |
| CN115129783A (en) | Autonomous supervised block chain data fragment storage method for guaranteeing privacy | |
| TWI430130B (en) | File usage permission management system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |