Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Non-root user access to privileged ports-Solaris 8
Operating Systems Solaris Non-root user access to privileged ports-Solaris 8 Post 302342900 by jlliagre on Tuesday 11th of August 2009 03:41:07 AM
Old 08-11-2009
The best solution would be to migrate to Solaris 10 and use RBAC to grant the net_privaddr privilege to the tomcat user.
 

10 More Discussions You Might Find Interesting

1. Cybersecurity

Allowing access to ports < 1024 w/o root

I need to set up an application to run in a script which will be running as a web server but is a database. I need to allow users to use the web server but the app must be run as root in order for the ports to be accessible. This is not a very secure environment would like to know how this could... (2 Replies)
Discussion started by: rpollard
2 Replies

2. UNIX for Advanced & Expert Users

Forgot the privileged access password in ibm pseries615c3

Hi friends, I am having ibm pseries615c3 server. previously i set privileged access password for the firmware. Now i forgot that password. Help me to reset or remove the firmware password from the server. Otherwise anyone plz help me how to change the default boot device in pseries servers. I... (8 Replies)
Discussion started by: muthulingaraja
8 Replies

3. HP-UX

user commands without root access

Hi I have been asked to find out how to 1) create users 2) reset passwords 3) kill processes that may require root privileges without having root password, sudo rights or rights to passwd command Any ideas? Thanks in advance (1 Reply)
Discussion started by: emealogistics
1 Replies

4. Solaris

I can not access root user through LAN

Dear i have installed Solaris 10 on SUN V240 after installation i can not access system through root user if i access system through any other user it conects but root is not connecting through LAN if i connect through SC and then access root though cosole -f command it also works kindly... (6 Replies)
Discussion started by: rizwan225
6 Replies

5. Shell Programming and Scripting

access user history as root

Hi, I need to access a user's command history. However, the dilemma is that he is logged in and so his current history is not yet flushed to .bash_history file which gets flushed when he logs out. Is there a way I can still access his most recent history? thank you, S (4 Replies)
Discussion started by: sardare
4 Replies

6. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

7. Linux

nix User Access Restrictions to Network, USB ports, PCMCIA, CDROM

How to create a user account on a Linux desktop machine with restrictions on connecting to the LAN, WAN, PCMCIA ports, Firewire, CDROM and generally any user controllable output options? I have the task to set up a machine for users working with sensitive data that should not be leaving the... (1 Reply)
Discussion started by: netfreighter
1 Replies

8. Shell Programming and Scripting

How to give root access to non root user?

Currently in my system Red Hat is installed. And Many user connect to my machine via SSH Techia Terminal. I want to give some users a root level access. Can anyone please help me how to make it possible. I too searched on the Google but didn't find the correct way Regards ADI (4 Replies)
Discussion started by: adisky123
4 Replies

9. AIX

How to check that rpcbind/portmap on AIX allowes updates from non privileged ports?

Hi, I am trying to implement a service on AIX based on ONCRPC protocal and I want to use a RPC library called oncrpc4j because it is a non-blocked i/o library. I found it works fine on my work machine (WIndows 7) but failed on my AIX work station. The author of oncrpc4j told me that check that... (1 Reply)
Discussion started by: derekhsu
1 Replies

10. Solaris

Sudo access of rm to non-root user

Hello, It is Solaris-10. There is a file as /opt/vpp/dom1.2/pdd/today_23. It is always generated by root, so owned by root only. This file has to be deleted as part of application restart always and that is done by app_user and SA is always involved to do rm on that file. Is it possible to give... (9 Replies)
Discussion started by: solaris_1977
9 Replies

LEARN ABOUT DEBIAN

gradm2

GRADM(8)						      System Manager's Manual							  GRADM(8)

NAME

       gradm - Administration program for the grsecurity RBAC system

SYNOPSIS

       gradm  [ -E ] [ -R ] [ -C ] [ -F ] [ -L <logfile> ] [ -O <filename|stream> ] [ -M <filename|uid> ] [ -D ] [ -P [rolename] ] [ -a <rolename>
       ] [ -n <rolename> ] [ -p <rolename> ] [ -u ] [ -V ] [ -h ] [ -v ]

DESCRIPTION

       gradm is the userspace RBAC parsing and authentication program for grsecurity

       grsecurity aims to be a complete security system for Linux 2.4.	gradm performs several tasks for the RBAC system  including  authenticated
       via a password to the kernel and parsing rules to be passed to the kernel.

OPTIONS

       All options to gradm are mutually exclusive, except for -L and -O.

       -E     Enable the RBAC system

       -R     Reload the RBAC system (only valid while in admin mode)

       -C     Perform a check of the RBAC policy, running the same analysis against it that is performed when enabling.

       -F     Toggle  full  learning  mode.   If  used only with -L, it enables the RBAC system in full learning mode.	If used with -L and -O, it
	      parses the full learning logs and generates a complete ruleset.

       -M <filename|uid>
	      Remove an execution ban on a given uid or filename that has been put in place by the RES_CRASH resource restriction of the RBAC sys-
	      tem.

       -L <logfile>
	      Parses  the  learning  logs.  Accepts an argument which specifies the logfile to scan for the learning logs.  If "-" is specified as
	      the logfile, stdin will be used as the learning log.  This option can be used with -E, -O, or -F.

       -O <filename|stream>
	      Specifies output mode.  Requires a single argument that can be "stdout", "stderr", or a regular file.  Only used with -L or -F.

       -D     Disable the RBAC system

       -P [rolename]
	      Without an argument, it sets the password for administering the RBAC system.  With a role name as an argument, it sets the  password
	      for that given special role.

       -a <rolename>
	      Authenticate to a special role that requires a password.

       -n <rolename>
	      Authenticate to a special role that does not require a password.

       -p <rolename>
	      Authenticate through PAM to a special role.

       -u     Removes yourself from your current special role, reverting back to the normal role selection.  To be used, for instance, for logging
	      out of an admin role without exiting your shell.

       -V     Displays verbose policy statistics when enabling the RBAC system or checking the RBAC policy.  Can only be used with -C, -E,  or	-F
	      -L <filename>

       -h     Display help information

       -v     Print version information and exit

REPORTING BUGS

       Please include as much information as possible(using any available debugging options) and send bug reports for gradm or the grsecurity RBAC
       system to spender@grsecurity.net.

AUTHOR

       grsecurity and gradm were created and are maintained by Brad Spengler <spender@grsecurity.net>

																	  GRADM(8)
All times are GMT -4. The time now is 10:21 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy