The command that will satisfy the requirement of having all files that are created by the user named

web have read-only permissions by the owner is echo “umask 377” >> /home/web/.bashrc. This

command will append the umask 377 command to the end of the .bashrc file in the web user’s home

directory. The .bashrc file is a shell script that is executed whenever a new interactive shell session is

started by the user. The umask command sets the file mode creation mask, which determines the

default permissions for newly created files or directories by subtracting from the maximum

permissions (666 for files and 777 for directories). The umask 377 command means that the user

does not want to give any permissions to the group or others (3 = 000 in binary), and only wants to

give read permission to the owner (7 - 3 = 4 = 100 in binary). Therefore, any new file created by the

web user will have read-only permission by the owner (400) and no permission for anyone

else. : CompTIA Linux+ (XK0-005) Certification Study Guide, Chapter 8: Managing Users and

Groups; Umask Command in Linux | Linuxize