You can simply removed the execute attribute from su preventing anyone from running it. However, may I suggest limiting it usage?
For example, on my Solaris 8 servers, all system administrators have a primary group of sysadmin (gid 14). The permissions of su have been changed such that only members of that group can execute su. Historically, the wheel account has been used to limit su(1M) access but the sysadmin group is not used by any other Solaris package. It also makes sense.
With a few customizations, I'm sure it will work for your OS as well.
Im sure this is somthing easy to do but i just can not figure it out where and how would i take X out of the boot for hp ux 11 i looked in the man's and nothing so maybe sombody could throw me a bone... thanks
BB (8 Replies)
I access my Sun box via ssh, and i dont need to x Window system at all, and everytime if i couldnt type user name and password fast enough its try to load the Java desktop, how can i disable X-Window login and make it stop at console login prompt ? thanks. (4 Replies)
Is there a command to disable/enable a port? I want to disable a port from a script and don't want to edit the /etc/inetd /etc/services file. (2 Replies)
Hi,
I am using solaris 10, 1 of the printers encounter some issue and it is always disable itself and dont know why? any idea how to make it auto enable back to normal? is there any configuration or scripts?? kindly advise me. thanks. (2 Replies)
Hi All,
How to prevent root user from doing setuid().
In otherwords, if the root(any user) is trying to do setuid in a program it should fail. (5 Replies)
I have modified /etc/inittab file for changing default runlevel from 5 to 3 .
Now i can boot in terminal mode .However if i issue init 5 i get a X window.
How would i disable loading X? do i need to disable some services?
P.S.
What is Xvfb? How would i disable it?
My Distribution Details.
#... (11 Replies)
Hi all Expertise,
I have following issue to solve,
SSL / TLS Renegotiation DoS (low) 222.225.12.13
Ease of Exploitation Moderate
Port 443/tcp
Family Miscellaneous
Following is the problem description:------------------
Description The remote service encrypts traffic using TLS / SSL and... (2 Replies)
Can some one suggest me the way to disable " rm -rf * " or " rm -rf / " command execution permanently from the server. Any suggestion will be very much helpful . (18 Replies)
Discussion started by: shiek.kaleem
18 Replies
LEARN ABOUT SUNOS
asadmin-disable
asadmin-disable(1AS) User Commands asadmin-disable(1AS)NAME
asadmin-disable, disable - disables the component
SYNOPSIS
disable --user admin_user [--password admin_password] [--host localhost] [--port 4848] [--secure|-s] [--passwordfile filename]
[--terse=false] [--echo=false] [--interactive] component_name
disable immediately disables the named component. The component must have been deployed. If the component has not been deployed, an error
message is returned.
OPTIONS --user authorized domain application server administrative username.
--password password to administer the domain application server.
--host machine name where the domain application server is running.
--port port number of the domain application server listening for administration requests.
--secure if true, uses SSL/TLS to communicate with the domain application server.
--passwordfile file containing the domain application server password.
--terse indicates that any output data must be very concise, typically avoiding human-friendly sentences and favoring well-
formatted data for consumption by a script.
--echo setting to true will echo the command line statement on the standard output.
--interactive prompts you for the required options that are not already specified.
OPERANDS
component_name name of the component to be disabled.
Example 1: Using disable
asadmin> disable sampleApp
Command disable executed successfully
EXIT STATUS
0 command executed successfully
1 error in executing the command
asadmin-deploy(1AS), asadmin-deploydir(1AS), asadmin-undeploy(1AS), asadmin-enable(1AS)J2EE 1.4 SDK March 2004 asadmin-disable(1AS)