10-16-2009
if the people with root access cannot be trusted then the removal of the su log is the least of your worries.
but... one thing you could do is setup a remote syslog server with limited access and configure all of the UNIX clients to log to that server. This would prevent the logs from being tampered with. Make sure the same people with root cannot access that server. This would only be part of the solution but might prove very useful.
10 More Discussions You Might Find Interesting
1. Answers to Frequently Asked Questions
We have quite a few threads about this subject. I have collected some of them and arranged them by the OS which is primarily discussed in the thread. That is because the exact procedure depends on the OS involved. What's more, since you often need to interact with the boot process, the... (0 Replies)
Discussion started by: Perderabo
0 Replies
2. Linux
wish to know how to access root password it root password is forgotten in linux (1 Reply)
Discussion started by: wojtyla
1 Replies
3. UNIX for Dummies Questions & Answers
Hi folks,
I'm trying to install a program, and I want to place some of the executables into /usr/bin so that they can be executed from any folder on the computer. I've been giveng the root password, but told never to log in directly as root. Instead, I can wait for a password prompt. However, I... (2 Replies)
Discussion started by: lunchtime
2 Replies
4. UNIX for Dummies Questions & Answers
Hi everyone hope you can help me
i have 5 root users and the problem with that is how can you see
witch root user did what on the box how can you track the users that
played on the servers.
1) What commands they typed (in linux you get history )
2) From witch ip did they connect to the server (3 Replies)
Discussion started by: sucram
3 Replies
5. Shell Programming and Scripting
Hi Friends.
I am new to scripting now i want to change the root password using the script with standard password.
which is the easy scripting to learn for the beginner, Thanks in advance. (2 Replies)
Discussion started by: kurva
2 Replies
6. Solaris
Hello All,
I have several solaris boxes running Solaris 8. When changing root passwords on them, all will simply ask for the new root password to change and of course to re-type the new password. One of the systems however asks for the existing root password before it will display the new password... (8 Replies)
Discussion started by: tferrazz
8 Replies
7. Solaris
Hi All
Hope it's okay to post on this sub-forum, couldn't find a better place
I've got a 480R running solaris 8 with veritas volume manager managing all filesystems, including an encapsulated root disk (I believe the root disk is encapsulated as one of the root mirror disks has an entry under... (1 Reply)
Discussion started by: sunnyd76
1 Replies
8. Shell Programming and Scripting
I need to list users in /etc/passwd with root's GID or UID or /root as home directory
If we have these entries in /etc/passwd
root:x:0:0:root:/root:/bin/bash
rootgooduser1:x:100:100::/home/gooduser1:/bin/bash
baduser1:x:0:300::/home/baduser1:/bin/bash... (6 Replies)
Discussion started by: anil510
6 Replies
9. Ubuntu
We are having a little problem on a server. We want that some users should be able to do e.g. sudo and become root, but with the restriction that the user can't change root password. That is, a guarantee that we still can login to that server and become root no matter of what the other users will... (2 Replies)
Discussion started by: 244an
2 Replies
10. UNIX for Beginners Questions & Answers
i do not have root on a solairs 10 server , however i do have the root role, i was wondering if I can change the root password as a a role with the passwd command? I have not tried yet.
and do i have to use the # chgkey -p afterwards?
i need to patch is why i am asking.
thanks (1 Reply)
Discussion started by: goya
1 Replies
mountd(1M) mountd(1M)
NAME
mountd, rpc.mountd - server for NFS mount requests and NFS access checks
SYNOPSIS
n]
DESCRIPTION
is an RPC server that answers requests for NFS access information and file system mount requests. It reads the file to determine which
file systems are available for mounting by which remote machines. See sharetab(4). running on the local server will contact the first
time an NFS client tries to access the file system to determine whether the client should get read-write, read-only, or no access. This
access can be dependent on the security mode used in the remote procedure call from the client. See share_nfs(1M).
The command also provides information as to what file systems are mounted by which clients. This information can be printed using the
showmount(1M) command.
The daemon is automatically invoked if and in
Only superuser can run the daemon.
Options
The following options are supported:
This is an obsolete option. All messages and errors are logged to
Reject mount requests from clients. Clients that have file systems
mounted will not be affected.
Specify tracing level
n, where n can have one of the following values:
Errors only (default).
Errors, requests handled by mountd, results, and the names of the
main functions leading to the result
Run the command in verbose mode. Each time
determines what access a client should get, it will log the result to the as well as the names of the main functions
leading to the result.
WARNINGS
If is running, must also be running in order to be assured that the NFS server can respond to requests.
Some routines that compare hostnames use case-sensitive string comparisons; some do not. If an incoming request fails, verify that the
case of the hostname in the file to be parsed matches the case of the hostname called for, and attempt the request again.
If a client crashes, executing on the server will show that the client still has a file system mounted. In other words, stale entries may
accumulate in for clients that crash without sending an unmount request.
Also, if a client mounts the same remote directory twice, only one entry appears in Doing a of one of these directories removes the single
entry and no longer indicates that the remote directory is mounted.
AUTHOR
was developed by Sun Microsystems, Inc.
FILES
shared file system table
list of all hosts having file systems mounted from this machine
rpc.mountd log file for messages and errors
SEE ALSO
nfsd(1M), share(1M), share_nfs(1M), showmount(1M), sharetab(4).
mountd(1M)