Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Secure a KSH script
Top Forums Shell Programming and Scripting Secure a KSH script Post 302432951 by iga3725 on Monday 28th of June 2010 05:05:33 AM
Old 06-28-2010
Secure a KSH script
Hi:

I want to secure (prevent Ctrol+C, or Ctrol+Z, or any kind of aborting) this ksh script:


Code:
#!/usr/bin/ksh

clear
echo
print "CSIA RBAC -- CONFIGURACION --"
echo

print "1) Habilitar/Desabilitar RBAC en el sistema"
print "2) Configurar comandos privados"
print "6) Salir"

echo
echo "Seleccione la opcion:"
echo

while true; do
  read SELECT
  case $SELECT in
    1)    print "a) Habilitar RBAC?"
          print "b) Desabilitar RBAC?"
          while read SELECT2;do
            case $SELECT2 in
              "a") print "Habilitando RBAC" ;;
              "b") print "Desabilitando RBAC" ;;
            esac
            break 2
          done;;
    2)    print "a) Listar los comandos privilegiados activos"
          print "b) Anadir comando a RBAC"
          print "c) Eliminar comando a RBAC"
          while read SELECT2;do
            case $SELECT2 in
              "a") echo "Comandos activos:" && lssecattr -c ALL|grep csia|awk '{print $1}';;
              "b") ./addcmdrbac.ksh;;
              "c") ./delcmdrbac.ksh;;
            esac
            break 2
          done;;
   
    6) break;;
  esac
  ./menu2.ksh
done

I tried with trap but no sucess..

thx
Israel.
Last edited by pludi; 06-28-2010 at 06:10 AM.. Reason: code tags, please...
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

How to secure my script from Ctrl-C

Hi all I am looking for a way to ensure that once a user is logged in and running a script, he cannot break out of it. Thanks J (12 Replies)
Discussion started by: jhansrod
12 Replies

2. Shell Programming and Scripting

f-secure sftp in shell script

Hi, I am trying to use sftp in a ksh - Shell script, but not even a simple script like this returns not output: sftp username@remotehost <<END ls END If I do something like this: sftp username@remotehost <<END | tee logfile ls END I get this error message: Warning: tcgetattr... (1 Reply)
Discussion started by: friand
1 Replies

3. UNIX for Dummies Questions & Answers

ksh autocomplete; f-secure/ssh character mapping

I'm coming from a c-shell environment where I was spoiled with the tab completion on the command line, only to find that using korn-shell I don't have this capability. The only thing I can find by googling is to use 'set filec' - but that doesn't work (and I think is only for c-shell anyway). ... (0 Replies)
Discussion started by: uacheesehead
0 Replies

4. Shell Programming and Scripting

executing a ksh script from another ksh script

Hi, I'm new to unix scripting.How can i call a script from another script. I have a.ksh and b.ksh .I have to call b.ksh from a.ksh after it is successfully exceuted. I tried using #!/bin/ksh -x in a.ksh and at the end i have used /path/b.ksh My problem is it is executing only a.ksh.it... (6 Replies)
Discussion started by: ammu
6 Replies

5. Solaris

Secure FTP Problem using Sun SSH on Client system F-Secure on Server system

I am using shell script to do secure ftp. I have done key file setup to do password less authentication. Following are the FTP Details: FTP Client has Sun SSH. FTP Server has F-Secure. I am using SCP Command to do secure copy files. When I am doing this, I am getting the foll error scp:... (2 Replies)
Discussion started by: ftpguy
2 Replies

6. Shell Programming and Scripting

tracing a ksh script within a ksh script

I normally trace a script with the ksh -x <script name> and redirect strderr to file. But if you have a script like the examble below...... vi hairy bear=`grep bear animals` if then ksh more_animals fi If I ksh -x hairy it won't trace "more_animals" unless I put a -x in it. Is... (1 Reply)
Discussion started by: shorty
1 Replies

7. Shell Programming and Scripting

import var and function from ksh script to another ksh script

Ih all, i have multiples ksh scripts for crontab's unix jobs they all have same variables declarations and some similar functions i would have a only single script file to declare my variables, like: var1= "aaa" var2= "bbb" var3= "ccc" ... function ab { ...} function bc { ... }... (2 Replies)
Discussion started by: wolfhurt
2 Replies

8. Shell Programming and Scripting

KSH script to run other ksh scripts and output it to a file and/or email

Hi I am new to this Scripting process and would like to know How can i write a ksh script that will call other ksh scripts and write the output to a file and/or email. For example ------- Script ABC ------- a.ksh b.ksh c.ksh I need to call all three scripts execute them and... (2 Replies)
Discussion started by: pacifican
2 Replies

9. Shell Programming and Scripting

Bash Script - Mail Secure.log

I'm putting together a fairly simple script, to check "secure.log" for content and email the results in a cron, nightly. The script runs fine upon manual execution, it's a problem when ran in cron. This is on a Mac server. Any thoughts? #!bin/bash #Email secure.log, nightly. Subject="Secure... (6 Replies)
Discussion started by: Nvizn
6 Replies

10. Shell Programming and Scripting

Making a script secure to code injection

Heyas I've been told my scipts would be insecure, and to fix that. Figured i might rethink some parts of my coding style, meanwhile i tried to write an additional catcher. After reading: fail : Security Issues - didnt help too much, infact - it confused me even more. n/a:... (8 Replies)
Discussion started by: sea
8 Replies

LEARN ABOUT MOJAVE

function

shell_builtins(1)                                                                                                                shell_builtins(1)

NAME

       shell_builtins, case, for, foreach, function, if, repeat, select, switch, until, while - shell command interpreter built-in commands

       The  shell  command  interpreters  csh(1), ksh(1), and sh(1) have special built-in commands. The commands case, for, foreach, function, if,
       repeat, select, switch, until, and while are commands in the syntax recognized by the shells. They are described in the Commands section of
       the  manual  pages of the respective shells. The remaining commands listed in the table below are built into the shells for reasons such as
       efficiency or data sharing between command invocations. They are described on their respective manual pages.

                                    |
                 Command            |           Shell
       alias                        |csh, ksh
       bg                           |csh, ksh, sh
       break                        |csh, ksh, sh
       case                         |csh, ksh, sh
       cd                           |csh, ksh, sh
       chdir                        |csh, sh
       continue                     |csh, ksh, sh
       dirs                         |csh
       echo                         |csh, ksh, sh
       eval                         |csh, ksh, sh
       exec                         |csh, ksh, sh
       exit                         |csh, ksh, sh
       export                       |ksh, sh
       false                        |ksh
       fc                           |ksh
       fg                           |csh, ksh, sh
       for                          |ksh, sh
       foreach                      |csh
       function                     |ksh
       getopts                      |ksh, sh
       glob                         |csh
       goto                         |csh
       hash                         |ksh, sh
       hashstat                     |csh
       history                      |csh
       if                           |csh, ksh, sh
       jobs                         |csh, ksh, sh
       kill                         |csh, ksh, sh
       let                          |ksh
       limit                        |csh
       login                        |csh, ksh, sh
       logout                       |csh, ksh, sh
       nice                         |csh
       newgrp                       |ksh, sh
       nohup                        |csh
       notify                       |csh
       onintr                       |csh
       popd                         |csh
       print                        |ksh
       pushd                        |csh
       pwd                          |ksh, sh
       read                         |ksh, sh
       readonly                     |ksh, sh
       rehash                       |csh
       repeat                       |csh
       return                       |ksh, sh
       select                       |ksh
       set                          |csh, ksh, sh
       setenv                       |csh
       shift                        |csh, ksh, sh

       source                       |csh
       stop                         |csh, ksh, sh
       suspend                      |csh, ksh, sh
       switch                       |csh
       test                         |ksh, sh
       time                         |csh
       times                        |ksh, sh
       trap                         |ksh, sh
       true                         |ksh
       type                         |ksh, sh
       typeset                      |ksh
       ulimit                       |ksh, sh
       umask                        |csh, ksh, sh
       unalias                      |csh, ksh
       unhash                       |csh
       unlimit                      |csh
       unset                        |csh, ksh, sh
       unsetenv                     |csh
       until                        |ksh, sh
       wait                         |csh, ksh, sh
       whence                       |ksh
       while                        |csh, ksh, sh

   Bourne Shell, sh,  Special Commands
       Input/output redirection is now permitted for these commands. File descriptor 1 is  the  default  output  location.  When  Job  Control  is
       enabled, additional Special Commands are added to the shell's environment.

       In addition to these built-in reserved command words, sh also uses:

       :               No effect; the command does nothing. A zero exit code is returned.

       .filename       Read  and  execute  commands from filename and return. The search path specified by PATH is used to find the directory con-
                       taining filename.

   C shell, csh
       Built-in commands are executed within the C shell. If a built-in command occurs as any component of a pipeline except the last, it is  exe-
       cuted in a subshell. In addition to these built-in reserved command words, csh also uses:

       :               Null command. This command is interpreted, but performs no action.

   Korn Shell, ksh,  Special Commands
       Input/Output  redirection  is  permitted.  Unless otherwise indicated, the output is written on file descriptor 1 and the exit status, when
       there is no syntax error, is zero.

       Commands that are preceded by one or two * (asterisks) are treated specially in the following ways:

       1.  Variable assignment lists preceding the command remain in effect when the command completes.

       2.  I/O redirections are processed after variable assignments.

       3.  Errors cause a script that contains them to abort.

       4.  Words, following a command preceded by ** that are in the format of a variable assignment, are expanded with the same rules as a  vari-
           able  assignment.  This means that tilde substitution is performed after the = sign and word splitting and file name generation are not
           performed.

       In addition to these built-in reserved command words, ksh also uses:

       * : [ arg ... ] The command only expands parameters.

       * .file [ arg ..Read the complete file then execute the commands. The commands are executed in the current shell environment.   The  search
                       path specified by PATH is used to find the directory containing file. If any arguments arg are given, they become the posi-
                       tional parameters. Otherwise, the positional parameters are unchanged. The exit status is the exit status of the last  com-
                       mand executed. the loop termination test.

       intro(1), alias(1), break(1), cd(1), chmod(1), csh(1), echo(1), exec(1), exit(1), find(1), getoptcvt(1), getopts(1), glob(1), hash(1), his-
       tory(1), jobs(1), kill(1), ksh(1), let(1), limit(1), login(1), logout(1), newgrp(1), nice(1), nohup(1), print(1),  pwd(1),  read(1),  read-
       only(1),  set(1),  sh(1),  shift(1),  suspend(1),  test(1B), time(1), times(1), trap(1), typeset(1), umask(1), wait(1), chdir(2), chmod(2),
       creat(2), umask(2), getopt(3C), profile(4), environ(5)

                                                                    29 Jun 2005                                                  shell_builtins(1)
All times are GMT -4. The time now is 07:02 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy