09-22-2006
Quote:
Originally Posted by System Shock
The useradd command takes /usr/bin/false.
Out of curiosity, I don't know what Lawson is, but if it requires users to have unix logins, doesn't it require that users have a valid shell?
Yep, /usr/bin/false works. I wasn't sure it's the best way to do this but seems like it will do the job.
Lawson is an ERP application similar to SAP or PeopleSoft. In older versions a user actually would telnet into the box and use text-based menus. Nowadays they have a web portal, but they still need a user account to run reports and print jobs for individual users. I guess it's the same idea as apache needing a non-root account to start httpd instances. Why they can't accomplish it with just one user ID, I have no idea.
10 More Discussions You Might Find Interesting
1. AIX
is the nologin shell available in AIX 5.2? I am familiar with the nologin shell in linux and restricting shell access but still allowing ftp etc. Can this be done in AIX? I have not been able to locate any documentation. Thanks in advance (5 Replies)
Discussion started by: zuessh
5 Replies
2. Solaris
Hi All,
If I login to Solaris 9 by default. I can't find my history. If I run the bash shell by /etc/bash/bash then my history will go to my ~/.bash_history.
If I don't use bash where's my history of command go.
Thanks in advance. :confused: (2 Replies)
Discussion started by: itik
2 Replies
3. Shell Programming and Scripting
Hi,
Can somebody pls help me? I need to write 2 shell scripts in Sun Solaris operating system which would do this:
1. go to the specified directory - I am using alias for it at the moment
2. start the particular sql script with the output log as same as the script but with timestamp e. g.... (4 Replies)
Discussion started by: balco
4 Replies
4. Shell Programming and Scripting
Hi,
Need one clarification..
If suppose, I have disabled the login to a particular user XXX, but not deleted the user.
So the scripts which must be executed using the user XXX can still be executed using that user or is it not possible..?
In our tasks, we are disabling the user XXX, and after... (1 Reply)
Discussion started by: Dpu
1 Replies
5. UNIX for Dummies Questions & Answers
Is it possible to SSH with an account that has its shell set to /sbin/nologin?
The reason I ask is because I am running an instance of nagios where I need to use SSH keys to run a check, but I am getting connect errors in Nagios. Also, what is the risk I run into if I just simply change my... (2 Replies)
Discussion started by: streetfighter2
2 Replies
6. UNIX for Dummies Questions & Answers
dear all
i need your advice in shell with solaris
i have testing script like this
#!/usr/bin/bash
function test(){
echo "testing only"
}
## execute function ##
test
but if i running always got error like this
test.sh: syntax error at line 1: `(' unexpected
who can i running this... (7 Replies)
Discussion started by: zvtral
7 Replies
7. Shell Programming and Scripting
Hi
Iam running the below scripts on one file on solaris 10 but its giving error.
code
sh BNGREPORT1.sh z1 code in file BNGREPORT1.sh is given below.
root@blr-svr-oclan-01 # more BNGREPORT1.sh
#!/bin/sh
#cd /surender
FILE="bng_total_report_$(date +%Y%m%d_%H%M%S)"
echo HOST_NAME "|"... (4 Replies)
Discussion started by: surender reddy
4 Replies
8. Solaris
Trying to figure out the best method of security for oracle user accounts. In Solaris 10 they are set as regular users but have nologin set forcing the dev's to login as themselves and then su to the oracle users.
In Solaris11 we have the option of making it a role because RBAC is enabled but... (1 Reply)
Discussion started by: os2mac
1 Replies
9. Solaris
Hi,
Want to know, is there any way to restrict a Solaris user to Single Login. Means a particular user can login once and if he or someone else tries to login with his ID then a message displayed "user already logged in" and denies his attempt.
Regard,
Jeet (1 Reply)
Discussion started by: CountJeet
1 Replies
10. Shell Programming and Scripting
Hi
Part of our security audit we found that following system account's had shells configured;
sync
halt
shutdown
I believe this can be achieved by following commands:
chsh -s /sbin/nologin (user)
usermod -s /sbin/nologin (user)
However, I would like simple script to... (5 Replies)
Discussion started by: Gamma
5 Replies
LEARN ABOUT CENTOS
consolehelper
CONSOLEHELPER(8) System Manager's Manual CONSOLEHELPER(8)
NAME
consolehelper - A wrapper that helps console users run system programs
SYNOPSIS
progname [ options ]
DESCRIPTION
consolehelper is a tool that makes it easy for console users to run system programs, doing authentication via PAM (which can be set up to
trust all console users or to ask for a password at the system administrator's discretion). When possible, the authentication is done
graphically; otherwise, it is done within the text console from which consolehelper was started.
It is intended to be completely transparent. This means that the user will never run the consolehelper program directly. Instead, pro-
grams like /sbin/shutdown are paired with a link from /usr/bin/shutdown to /usr/bin/consolehelper. Then when non-root users (specifically,
users without /sbin in their path, or /sbin after /usr/bin) call the "shutdown" program, consolehelper will be invoked to authenticate the
action and then invoke /sbin/shutdown. (consolehelper itself has no priviledges; it calls the userhelper(8) program do the real work.)
consolehelper requires that a PAM configuration for every managed program exist. So to make /sbin/foo or /usr/sbin/foo managed, you need
to create a link from /usr/bin/foo to /usr/bin/consolehelper and create the file /etc/pam.d/foo, normally using the pam_console(8) PAM mod-
ule.
OPTIONS
This program has no command line options of its own; it passes all command line options on to the program it is calling.
SEE ALSO
userhelper(8)
AUTHOR
Michael K. Johnson <johnsonm@redhat.com>
Red Hat Software 18 March 1999 CONSOLEHELPER(8)