Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Deny dba command to a user group!!
Top Forums UNIX for Dummies Questions & Answers Deny dba command to a user group!! Post 302122394 by RishiPahuja on Wednesday 20th of June 2007 10:58:35 AM
Old 06-20-2007
MySQL
Still its not very clear what exactly you want to do:

Assuming your database is in /opt/informix and you dont want users belogning to group xyz should get even read access to this directory. The command that should do this will be

chown root:root /opt/informix
chmod 770 /opt/informix : This command will make sure only user root and users belonging to group root can access this directory and no one else.

As you mention it is a live system please consult someone at hand before applying these commands. Because it could be possible depending upon your setup if user other than group root could be executing/reading from /opt/informix
 

10 More Discussions You Might Find Interesting

1. IP Networking

how to deny someone to use ftp command ?

hi,all, i have a question to trouble you. a workstation named AAA, and open the ftp services to permit user download and upload files. i have root password. a pc install windows 2k named BBB, someone install a serv-u ftp ( a ftp server software ) to transfer data. i don't have the... (4 Replies)
Discussion started by: yarx
4 Replies

2. Solaris

How to remove user from a group using command line

Hi, Wanted to remove a user from a group , but no GUI , must use command line (2 Replies)
Discussion started by: civic2005
2 Replies

3. Shell Programming and Scripting

Find all files with group read OR group write OR user write permission

I need to find all the files that have group Read or Write permission or files that have user write permission. This is what I have so far: find . -exec ls -l {} \; | awk '/-...rw..w./ {print $1 " " $3 " " $4 " " $9}' It shows me all files where group read = true, group write = true... (5 Replies)
Discussion started by: shunter63
5 Replies

4. Cybersecurity

File owned by oracle user and dba group need readonly access to other users

Under oracle user file abc.txt was created. Oracle user belong to dba group on UNIX Server. However other non Oracle users which belongs to some other network groups need read only access to this file. Every time when I login as other then oracle user and try to view this file it saying that I... (2 Replies)
Discussion started by: groosha
2 Replies

5. AIX

Does ACL can only grant/deny access for specific command?

Dear AIX/UNIX experts: I have a demand to restricted a file to be copy by others, but this file must can be read by others/Applications. As I tried, the chmod command cannot fulfill this requirement. But not sure if the ACL can achieve this function or not ? Could anybody give me your... (8 Replies)
Discussion started by: devyfong
8 Replies

6. UNIX for Dummies Questions & Answers

Allow user@ip_good but deny user@any_other_ip in sshd.

Is it possible? Scenario: ALLOW only access from: userok@ip_good DENY access from userok@* and ALLOW acces from *@* Regards ISrael. (4 Replies)
Discussion started by: iga3725
4 Replies

7. Emergency UNIX and Linux Support

Configure Squid to use LDAP group auth to deny internet access

Hi all We have squid-2.5.STABLE11-3.FC4 running in our environment. LDAP authentication works fine. Active Directory 2003 Users are prompted to enter credentials every time they access the net. The system works perfectly, but I need to configure Squid to block users in a specific AD group.... (1 Reply)
Discussion started by: wbdevilliers
1 Replies

8. Ubuntu

Create New User with the same group nd privileges of the other user

Hi, Anyone can help me on how to duplicate privileges and group for useroradb01 to userrootdb01. I have currently using "useroradb01" and create a newly user "userrootdb01". I want both in the sames privileges and group. Please see the existing users list below; drwxr-xr-x 53 useroradb01... (0 Replies)
Discussion started by: fspalero
0 Replies

9. Solaris

Is it possible to deny a user to use Vi editor in Solaris?

Hi, I want to deny Vi editor to few users, is it possible to do the same in Solaris 10. If yes, then how? Thanks in advance............ (2 Replies)
Discussion started by: ajhal04
2 Replies

10. Red Hat

User is a Part of a Group But Group Details Do Not Show the User

Hi, In the following output you can see the the user "richard" is a member on the team/group "developers": # id richard uid=10247(richard) gid=100361(developers) groups=100361(developers),10053(testers) but in the following details of the said group (developers), the said user... (3 Replies)
Discussion started by: indiansoil
3 Replies

LEARN ABOUT CENTOS

groupmems

GROUPMEMS(8)						    System Management Commands						      GROUPMEMS(8)

NAME

       groupmems - administer members of a user's primary group

SYNOPSIS

       groupmems -a user_name | -d user_name | [-g group_name] | -l | -p

DESCRIPTION

       The groupmems command allows a user to administer his/her own group membership list without the requirement of superuser privileges. The
       groupmems utility is for systems that configure its users to be in their own name sake primary group (i.e., guest / guest).

       Only the superuser, as administrator, can use groupmems to alter the memberships of other groups.

OPTIONS

       The options which apply to the groupmems command are:

       -a, --add user_name
	   Add an user to the group membership list.

	   If the /etc/gshadow file exist, and the group has no entry in the /etc/gshadow file, a new entry will be created.

       -d, --delete user_name
	   Delete a user from the group membership list.

	   If the /etc/gshadow file exist, the user will be removed from the list of members and administrators of the group.

	   If the /etc/gshadow file exist, and the group has no entry in the /etc/gshadow file, a new entry will be created.

       -g, --group group_name
	   The superuser can specify which group membership list to modify.

       -h, --help
	   Display help message and exit.

       -l, --list
	   List the group membership list.

       -p, --purge
	   Purge all users from the group membership list.

	   If the /etc/gshadow file exist, and the group has no entry in the /etc/gshadow file, a new entry will be created.

       -R, --root CHROOT_DIR
	   Apply changes in the CHROOT_DIR directory and use the configuration files from the CHROOT_DIR directory.

SETUP

       The groupmems executable should be in mode 2770 as user root and in group groups. The system administrator can add users to group groups to
       allow or disallow them using the groupmems utility to manage their own group membership list.

		$ groupadd -r groups
		$ chmod 2770 groupmems
		$ chown root.groups groupmems
		$ groupmems -g groups -a gk4

CONFIGURATION

       The following configuration variables in /etc/login.defs change the behavior of this tool:

       MAX_MEMBERS_PER_GROUP (number)
	   Maximum members per group entry. When the maximum is reached, a new group entry (line) is started in /etc/group (with the same name,
	   same password, and same GID).

	   The default value is 0, meaning that there are no limits in the number of members in a group.

	   This feature (split group) permits to limit the length of lines in the group file. This is useful to make sure that lines for NIS
	   groups are not larger than 1024 characters.

	   If you need to enforce such limit, you can use 25.

	   Note: split groups may not be supported by all tools (even in the Shadow toolsuite). You should not use this variable unless you really
	   need it.

FILES

       /etc/group
	   Group account information.

       /etc/gshadow
	   secure group account information

SEE ALSO

       chfn(1), chsh(1), passwd(1), groupadd(8), groupdel(8), useradd(8), userdel(8), usermod(8).

shadow-utils 4.1.5.1						    05/25/2012							      GROUPMEMS(8)
All times are GMT -4. The time now is 06:39 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy