Exam XK0-005 topic 1 question 61 discussion

I think it is D. With the append only attribute activated, you can only add information to the file; you cannot change it. This includes deleting or changing the ACL.

The append-only attribute (set with chattr +a) restricts modifications to the file, including changes to its metadata, which includes ACLs.

D. "File attributes are preventing file modification." It is not C: "SELinux file context is denying the ACL changes." SELinux does not discriminate: if an attribute can be set, then it can be unset. It's true that SELinux could be configured to totally disallow or selectively allow access to 'chattr', but that is not its default configuration and the question has no hint in regard to a change in SELinux policy. This can be easily demonstrated on any system using SELinux. touch file sudo chattr +a file lsattr file rm file sudo chattr -a file lsattr file

The correct option is C. SELinux file context is denying the ACL changes. The error message “setfacl: data.txt: operation not permitted” is caused by the SELinux file context denying the ACL changes.

it has the ---------a-- (append attr) hence you cant remove nor modify the file

C. SELinux file context is denying the ACL changes. The file context of the file is set to user_home_t and since the file is located under the /home directory, it is most likely that the file is located in a user's home directory which is restricted by SELinux. SELinux provides Mandatory Access Control (MAC) to restrict the access of the files and processes in a Linux system.