true
Yes. Share permissions are not used if the resource is accessed locally.
Yes it is.
the owner of the resource.
run as
Mandatory Access control (MAC)
permissions
Yes, or you can use the extended ACL permissions on most systems as well.
User accounts and groups are useful for determining who can access various resources on a network. There may be a large number of files and folders that certain individuals should be able to modify and which others should be able to read but not be allowed to change. Assigning permissions to individual users allows a network administrator to control who can read or modify certain files and folders. They can also be used to control access to other network resources, such as printers. Assigning individual permissions to large numbers of people where large numbers of network resources exist can be time consuming. This is where groups are useful. Rather than setting each individual's permissions for each network resource, the group is set permissions, then users are assigned as members of groups. In this way the group permissions can be modified as network resources change and users can be moved from one group to another (or be made members of multiple groups) which will save time and reduce mistakes.
allowing a resources owner to add new users to an ACL assigning credential levels to users and resources to ensure only users with appropriate credentials can access a resource assigning roles to users that determine the resources they can access
Anyone who has the appropriate permissions.
The types of permissions that are needed for shared documents are "shared access." In other words, a shared document needs to be set to "public" access.
The file's owner can access it.