Hi All,
I am sorry for not giving all the information. But here is my actual need. I would be having Oracle database on a Red hat Linux server which would listen to Port 1521(Default port for oracle).
I need to restrict users to this Port.I thought two solutions for this using iptables.
Solution 1 : Set the firewall with iptables rules, to allow ip addresses of a particular subnet to access the Oracle port.Using this rule only machines on the DBserver's subnet are able to communicate with it on Port 1521.
Solution 2:
Have a list of all valid IP's in a file and set a rule in the iptable to allow access to those IP addreesses only.
Code:
iptables -P FORWARD DROP
for mac in $(cat ipaddressfile); do
iptables -A FORWARD -m mac --mac-source $mac -j ACCEPT
done
Please let me know if I am on the right track or if something else needs to be done.Also kindly let me know , which solution would work better looking at the security point of view.
Hi Gurus,
Tried searching for something similiar in this forum but not really what i want.
This is my case:
I have about 20 users running on sun workstation. We have done a upgrade recently and right now it seems that the users can access to terminal and console which they are not suppose... (12 Replies)
Hi
I have requirement to create 3 new users on my server but to restrict their access to a set of particular folders.
/export/home/kapil/shared,
/export/home/kapil/shared/Folder1
/export/home/kapil/shared/Folder2
These folders should be accessible to all the 3 users and to me too.... (1 Reply)
Hi,
I had installed vsftp in rhel5 and i want to restrict all the local users from accessing the ftp.
i want to allow specific users to access the ftp server.
Request you to please help.
Thanks & regards
Arun (1 Reply)
Hi All,
How to restrict the NIS users not to change their passwords in for NIS users??
and my NIS user is unable to login to at client location what could be the problem for this ?
Any body can help me. Thanks in advance. (1 Reply)
Hi there
I have an application user on my system that wants accesses to these file systems as such:
rwx:
/SAPO
/SAPS12
/R3_888
/R3_888B
/R3_888F
/R3_888R
r:
/usr/sap
these are the existing FS permissions:ownerships:
# ls -ld /SAPO (9 Replies)
Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux
Hi Folks,
Please help me. I am bit struck here.
Here is the OS info.
Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux
I have a... (17 Replies)
I'm using Solaris 10. I want to restrict users from executing this dangerous command.
rm -rf *
But they should be able to perform the below actions:
rm -rf *.*
rm -rf filename
rm -rf directory
Is it possible? If yes then pls let me know how to do it? (7 Replies)
I'm trying to use squid to restrict elinks' access to certain websites(only http traffic).
I have tried some configs in squid.conf but no luck. Hope someone has a bit of time to explain me how can you make these config's :)
---------- Post updated at 05:40 PM ---------- Previous update was at... (1 Reply)
Dear friends,
:)
I create new user
useradd -g other -d /export/home/sltftp -m -s /bin/bash -c "SLT user account for TMA ftp backup" sltftp
now i need do restrict thees
chmod
delete
overwrite
rename
from this user:(for all the files in the server ,sltftp user can only able to download... (4 Replies)
Discussion started by: darakas
4 Replies
LEARN ABOUT DEBIAN
eurephiadm-adminaccess
eurephiadm adminaccess(7) eurephiadm adminaccess(7)NAME
eurephiadm-adminaccess - Access control for eurephia administration features
DESCRIPTION
The eurephiadm adminaccess is used to grant eurephia users access to the different administration modules in eurephia.
Available modes for the adminaccess command are:
-G | --grant
Grant a specific access level to a user
-R | --revoke
Revoke access levels
-l | --list
List all granted accesses
-h | --help <mode> Help about a specific mode
LIST MODE
The list mode will show the granted user access levels
-i | --uid
User account ID
-u | --username
User name
-I | --interface
Which interfaces to show (default "C")
-a | --access-level Which access level to show
GRANT MODE
The grant mode will grant a user access to a specified access level.
-i | --uid
User account ID
-I | --interface
Grant access through which interface (default "C")
-a | --access-level Which access level to grant access to
REVOKE MODE
The revoke mode will remove an access from the desired user accounts.
-i | --uid
User account ID
-I | --interface
Revoke access from interface (default "C")
-a | --access-level Which access level to revoke access from
ACCESS LEVELS
attempts
This access level grants access to the eurephiadm attempts command. The attempts command can list, reset or delete login attempts
records in the database.
blacklist
This is similar to the attempts access. It provides access to the eurphiadm blacklist command, where you can list, add or delete
blacklisted usernames, certificate digests or IP addresses.
certadmin
This level is needed to use the eurephiadm certs command. This commands provides you access to list, add or delete certificate
information which the eurephia plug-in will use during the authentication process.
config This level grants access to the eurephiadm config and eurephiadm show-config commands. The latter command will list out both the
eurephiadm config file and all configuration parameters in the database. The config command is used to set or delete configuration
parameters in the database.
fwprofiles
This access level is needed to list, add or delete firewall profiles eurephia which may use.
useradmin
This provides access to the eurephiadm users and eurephiadm usercerts commands, which is used to create or delete user accounts and
link the user accounts together with a certificate and a firewall access profile.
SEE ALSO eurephiadm(7)AUTHOR
Copyright (C) 2008-2010 David Sommerseth <dazo@users.sourceforge.net>
David Sommerseth July 2010 eurephiadm adminaccess(7)