All Tools About Blog Code Examples MCP Server — Use tools from AI agents
Workflows Paste Anything — Smart Detector Tool Pipeline Builder Bulk / Batch Processor
JSON Tools JSON Formatter & Beautifier JSON Validator JSON to CSV Converter JSON to TypeScript Generator JSON to Python Converter JSON Flatten & Unflatten jq Playground — JSON Processor JSON Mock Data Generator JSON Schema Validator JSONPath Evaluator JSON Schema Generator JSON Patch / Diff Generator
Encoding Tools Base64 Encoder / Decoder URL Encoder / Decoder Hash Generator (MD5/SHA) JWT Decoder HTML Entity Encoder / Decoder Image to Base64 Converter String Escape / Unescape Tool ASCII / Binary / Hex Converter Protobuf Decoder — Wire Format Viewer Encoding Detective — Mojibake Repair
Formatters HTML Beautifier XML Formatter & Validator SQL Formatter & Beautifier CSS Minifier & Beautifier JavaScript Minifier & Beautifier TOML Formatter & Converter YAML Formatter, Validator & Minifier
Generators UUID Generator Password Generator QR Code Generator Lorem Ipsum Generator Cron Expression Generator chmod Calculator Slug / URL Generator .gitignore Generator
Testing Tools Regex Tester Regex Explainer — Plain English
Security Tools HMAC Generator Content Security Policy Generator SSH Key Generator SSL Certificate Decoder CORS Header Builder & Generator
Design Tools Color Picker & Converter Placeholder Image Generator SVG Path Editor & Visualizer
Comparison Tools Diff Checker / Text Compare .env Diff & Merge
Converters JSON-YAML Converter Epoch / Unix Timestamp Converter Markdown to HTML Preview Curl to Fetch/Axios Converter Tailwind CSS Converter OpenAPI to TypeScript Text Case Converter Number Base Converter CSV Viewer & Editor Date & Time Format Converter SQL to MongoDB & N1QL Converter Semver Calculator & Comparator Byte / Size Calculator URL Parser & Builder Glob to Regex Converter Math Expression Evaluator SQL DDL to TypeScript Converter Duration / Time Calculator CSS Unit Converter — px, rem, em, pt, vw, vh JSON to Go Struct Converter HTML to Markdown Converter CSV to SQL Converter SQL to ORM Converter
Reference HTTP Status Code Explorer Git Command Builder GraphQL Schema Explorer MIME Type Lookup
Text Tools Word & Character Counter Text Line Sorter, Deduplicator & Tools
Networking Tools Subnet / CIDR Calculator
DevOps Tools Nginx Config Generator Docker Compose Validator Robots.txt Generator & Validator GitHub Actions YAML Validator

chmod Calculator

Calculate Unix file permissions with an interactive chmod calculator. Toggle read, write, and execute for owner, group, and other.

Your data never leaves your browser Available via MCP
Read (4)Write (2)Execute (1)
Owner
Group
Other
rw-r--r--
chmod 644 filename
-rw-r--r-- 1 user group 4096 Mar 9 12:00 my-file.txt
Next steps
Passwords Hash Generator UUID Generator Subnet Calc

How to Use

  1. Toggle the Read, Write, and Execute checkboxes for Owner, Group, and Other to build your permission set visually.
  2. Or type a three-digit octal number (e.g., 755) directly into the numeric input field.
  3. View the symbolic notation, chmod command, and ls -la preview below the grid.
  4. Click a common preset button to quickly apply standard permission sets like 644 or 755.
  5. Copy the numeric value or full chmod command with the Copy button.

Understanding Unix File Permissions

Unix and Linux file permissions control who can access files and directories on a system. Every file has three categories of users: the owner (the user who created the file), the group (a set of users who share access), and other (everyone else on the system). For each category, three types of access can be granted or denied: read (view the file contents), write (modify the file), and execute (run the file as a program or enter a directory).

These nine permission bits (3 categories times 3 permissions) are represented as a 9-character string in the output of ls -la. For example, rwxr-xr-x means the owner can read, write, and execute; the group can read and execute; and others can read and execute. A hyphen (-) indicates that permission is not granted.

How the chmod Command Works

The chmod command (short for "change mode") modifies file permissions on Unix-like operating systems including Linux and macOS. It accepts permissions in two formats: numeric (octal) and symbolic.

In numeric mode, permissions are expressed as a three-digit octal number. Each digit ranges from 0 to 7 and represents the sum of permission values: read (4), write (2), and execute (1). For example, chmod 755 script.sh sets owner to read+write+execute (4+2+1=7), group to read+execute (4+1=5), and other to read+execute (4+1=5).

In symbolic mode, you specify who to change (u for user/owner, g for group, o for other, a for all), the operation (+ to add, - to remove, = to set exactly), and which permissions (r, w, x). For example, chmod u+x script.sh adds execute permission for the owner only.

Common Permission Patterns

  • 644 (rw-r--r--) — The default for regular files. The owner can read and write; everyone else can only read. This is what most web servers expect for HTML, CSS, and image files.
  • 755 (rwxr-xr-x) — The default for directories and executable scripts. The owner has full access; everyone else can read and execute (for directories, execute means the ability to enter the directory).
  • 600 (rw-------) — Private files that only the owner can read and write. Used for sensitive configuration files, SSH private keys (~/.ssh/id_rsa), and password files.
  • 700 (rwx------) — Private directories only the owner can access. The ~/.ssh directory should use this permission.
  • 444 (r--r--r--) — Read-only for everyone. Useful for files that should never be modified, like certain system configuration files.
  • 400 (r--------) — Read-only for the owner only. SSH requires this for private key files: if permissions are too open, SSH will refuse to use the key.
  • 777 (rwxrwxrwx) — Full access for everyone. Avoid this in production environments as it is a serious security risk.

Directory vs. File Permissions

Permission bits behave differently for files and directories. For files, read allows viewing contents, write allows modifying contents, and execute allows running the file as a program. For directories, read allows listing the directory contents (ls), write allows creating or deleting files inside the directory, and execute allows entering the directory (cd) and accessing files within it.

A directory with read but no execute permission (r--) lets you see file names but not access file metadata or contents. A directory with execute but no read (--x) lets you access files if you know their names, but you cannot list the directory. Most directories should have both read and execute permissions for the appropriate users.

Security Considerations

Setting file permissions correctly is fundamental to system security. Overly permissive settings (like 777) can allow any user to modify or delete critical files. Web servers are particularly sensitive to permissions: configuration files containing database passwords should be 600 or 640, not world-readable. The principle of least privilege applies — grant only the minimum permissions necessary for the file to serve its purpose.

Common security mistakes include making SSH keys group- or world-readable (SSH will refuse to use them), setting 777 on web directories (allowing attackers to upload malicious files), and making executable scripts world-writable (allowing privilege escalation). Use chmod -R with caution, as it recursively changes permissions for all files and subdirectories, which can accidentally expose sensitive files.

The Octal Number System

Unix permissions use octal (base-8) because three binary bits map perfectly to a single octal digit. Each permission type is a single bit: read=100 (binary), write=010, execute=001. Combined, they form values from 000 (no permissions, octal 0) to 111 (all permissions, octal 7). Three octal digits cover all nine permission bits for owner, group, and other — making the notation compact and easy to read once you understand the system.

Related Tools

Generate secure passwords with the Password Generator. Create file checksums with the Hash Generator. Convert permission octals with the Number Base Converter. Calculate network subnets with the Subnet Calculator. Generate unique identifiers with the UUID Generator. Decode JSON Web Tokens with the JWT Decoder. Encode sensitive strings with the Base64 Encoder.

Frequently Asked Questions

What does chmod do?
chmod (change mode) is a Unix/Linux command that changes the access permissions of files and directories. It controls who can read, write, or execute a file by setting permission bits for the owner, group, and other users.
What does chmod 755 mean?
chmod 755 gives the owner full permissions (read, write, execute), while group members and other users can only read and execute. This is the standard permission for directories and executable scripts.
What is the difference between chmod 644 and 755?
chmod 644 (rw-r--r--) allows the owner to read and write, with everyone else only able to read. chmod 755 (rwxr-xr-x) adds execute permission for all users and write permission for the owner. Use 644 for regular files and 755 for directories and scripts.
Why should I avoid chmod 777?
chmod 777 gives full read, write, and execute permissions to everyone on the system. This is a security risk because any user or process can modify or delete the file. Use more restrictive permissions like 755 for directories or 644 for files.
How do symbolic and numeric chmod notations differ?
Numeric notation uses three octal digits (e.g., 755) where each digit represents owner, group, and other permissions. Symbolic notation uses letters: r (read), w (write), x (execute), with u (user/owner), g (group), o (other). For example, "chmod u+x file" adds execute for the owner, while "chmod 755 file" sets all permissions at once.

Code Examples

Learn how to use this tool programmatically in your favorite language.

Calculate chmod permissions

Related Tools

UUID Generator

Generate random UUID v4 and v7 identifiers instantly.

Password Generator

Generate strong, random passwords with customizable options.

QR Code Generator

Generate QR codes from text or URLs with custom colors.

Lorem Ipsum Generator

Generate placeholder text by paragraphs, sentences, or words.

Cron Expression Generator

Build, parse, and validate cron expressions with a visual editor.

Use this tool from AI agents. The CodeTidy MCP Server lets Claude, Cursor, and other AI agents use this tool and 46 others directly. One command: npx @codetidy/mcp

Drop file to load