Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How UNIX admin set up this? how files of 744 of other owner can be removed by another owner?
Top Forums UNIX for Advanced & Expert Users How UNIX admin set up this? how files of 744 of other owner can be removed by another owner? Post 302386176 by TheGunMan on Monday 11th of January 2010 03:11:22 PM
Old 01-11-2010
Thanks for all the replies !!
I guess ceubank gave the answer...

but looks like getacl or getfacl are not available on AIX 5.3.
So basically that means, what we see in the file permission bits that we deal with everyday, may not be what we think, the unix admin could do something there and over write the user permission settings.

This is what happened, it took me quite some time to remove the company confidential information from the screen cuts below:
Code:
f8fm: /apps/z0/log/new2/Jr>ls -l *12-1*
-rw-r--r--    1 wasadmin wasgrp     31796647 Dec 17 23:59 Jr.log.2009-12-17.#d0005
-rw-r--r--    1 wasadmin wasgrp     14488275 Dec 18 23:59 Jr.log.2009-12-18.#d0005
-rw-r--r--    1 wasadmin wasgrp     31624695 Dec 19 23:59 Jr.log.2009-12-19.#d0005
f8fm: /apps/zwl0/log/new2/Jr>
f8fm: /apps/z0/log/new2/Jr>lsuser f8fm
f8fm id=143313146 pgrp=uxzwl0p groups=uxzwl0p home=/users/f8fm shell=/usr/bin/ksh gecos=Phang Contractor registry=compat roles=
f8fm: /apps/z0/log/new2/Jr>lsuser wasadmin
wasadmin id=6047 pgrp=wasgrp groups=wasgrp,suroot,appidgrp,uxzwl0p home=/home/wasadmin shell=/usr/bin/ksh gecos=Websphere admin ID, IS#060733
f8fm: /apps/z0/log/new2/Jr>

f8fm: /apps/z0/log/new2/Jr>rm Jr.log.2009-12-17.#d0005
rm: Remove Jr.log.2009-12-17.#d0005? y
f8fm: /apps/z0/log/new2/Jr>ls -l *12-1*
-rw-r--r--    1 wasadmin wasgrp     14488275 Dec 18 23:59 Jr.log.2009-12-18.#d0005
-rw-r--r--    1 wasadmin wasgrp     31624695 Dec 19 23:59 Jr.log.2009-12-19.#d0005
f8fm: /apps/z0/log/new2/Jr>

f8fm: /apps/z0/log/new2/Jr>df .
Filesystem    512-blocks      Free %Used    Iused %Iused Mounted on
/dev/lvappz0log  104857600 103082760    2%      139     1% /apps/z0/log
f8fmil: /apps/z0/log/new2/Jr>mount -o acl
  node       mounted        mounted over    vfs       date        options      
-------- ---------------  ---------------  ------ ------------ --------------- 
         /dev/hd4         /                jfs2   Nov 18 15:52 rw,log=/dev/hd8 
         /dev/hd2         /usr             jfs2   Nov 18 15:52 rw,log=/dev/hd8 
        /dev/lvappz0log /apps/z0/log   jfs2   Nov 18 15:53 rw,log=/dev/lg_appvg01
f8fm: /apps/z0/log/new2/Jr>getacl
ksh: getacl:  not found.
Ph: /apps/z0/log/new2/Jr>getfacl
ksh: getfacl:  not found.
f8fm: /apps/z0/log/new2/Jr>

Last edited by Scott; 01-11-2010 at 04:23 PM.. Reason: Please use code tags
 

10 More Discussions You Might Find Interesting

1. Solaris

Owner of file gets 'not owner' error for chgrp

Hi Folks, I know that changing users and groups is pretty basic admin, but this one has got me stumped. When I try to change the group of a file for which I am the owner for, it still gives me a 'Not owner' error. For example, when I am logged in as 'webadmin', I have the following file: ... (4 Replies)
Discussion started by: brizrobbo
4 Replies

2. UNIX for Dummies Questions & Answers

How to set the name of the group and the owner while creation of the file?

How to set the name of the group and the owner while creation of the file? -rwxrwxr-x 1 root sys 1202 Dec 5 2002 abc.awk like here i need to set the name of root and sys to xxx xxx Any help is appreciated. Thanks. (2 Replies)
Discussion started by: nehak
2 Replies

3. UNIX for Dummies Questions & Answers

command to find the files under particular owner

Hi, I need a command to find a files under particular owner ?All the files in the system for the particular user id is the owner? Please help me on this? (2 Replies)
Discussion started by: jayaramanit
2 Replies

4. UNIX for Dummies Questions & Answers

Find files by owner

Hello, I have a problem, I need to find files in folder by owner, not using find command at all and ls -R parameter. Thanx a lot. Best regarts (1 Reply)
Discussion started by: Boliakas
1 Replies

5. Shell Programming and Scripting

find files by OWNER

i have written a script in which i have to go to a dir and search there for files belonging to owner pipe and then delete them Can anyone tell me how to find files by owner pipe. below some of the files belonging to owner pipe -rw------- 1 pipe pipe 163840 Mar 18 2008 ... (7 Replies)
Discussion started by: ali560045
7 Replies

6. Solaris

Where to look owner's configuration files?

Where to look owner's configuration files? For example: -r-xr-xr-x 1 103 staff 2723 Jun 17 1999 user_init I need to look owner 103 behavior. (3 Replies)
Discussion started by: wolfgang
3 Replies

7. Shell Programming and Scripting

mv warning set owner/group: Operation not permitted

Hi, Thanks for looking into this. I am running into below situation in free BSD. I have a file in /tmp/sample.txt with owner as 'xyz' and group as 'wheel' I am moving it to my home dir/newsample.txt whihc has owner 'xyz', but group 'someother' with below command, getting warning, but it is... (2 Replies)
Discussion started by: ramanaraoeee
2 Replies

8. Solaris

Privileges : modify dir/file owner by other that's not owner

i need to do the following operations in solaris 10: 1.change owner and group owner for files which are not owned by the current user and user group 2.to can delete files in the /tmp directory which are not of the current user 3. allow to a standard user the deletion of files in the /tmp... (1 Reply)
Discussion started by: sirmark
1 Replies

9. AIX

Files without owner and group

Dears it is normal that the below binaries stay without any owner and group I have checked it in many servers and the like the below /usr/lpp/bos.net/inst_root/etc/ipsec# ls -lrt total 248 -r-xr-xr-x 1 987 987 13589 Jun 29 2005 default_group -r-xr-xr-x ... (5 Replies)
Discussion started by: thecobra151
5 Replies

10. AIX

How to set owner and permission for files/directory in directory in this case?

Hi. My example: I have a filesystem /log. Everyday, log files are copied to /log. I'd like to set owner and permission for files and directories in /log like that chown -R log_adm /log/* chmod -R 544 /log/*It's OK, but just at that time. When a new log file or new directory is created in /log,... (8 Replies)
Discussion started by: bobochacha29
8 Replies

LEARN ABOUT REDHAT

pam_console

pam_console(8)						   System Administrator's Manual					    pam_console(8)

NAME

       pam_console - control permissions for users at the system console

SYNOPSIS

       session optional /lib/security/pam_console.so
       auth required /lib/security/pam_console.so

DESCRIPTION

       pam_console.so  is  designed to give users at the physical console (virtual terminals and local xdm-managed X sessions by default, but that
       is configurable) capabilities that they would not otherwise have, and to take those capabilities away when the are no longer logged  in	at
       the console.  It provides two main kinds of capabilities: file permissions and authentication.

       When a user logs in at the console and no other user is currently logged in at the console, pam_console.so will change permissions and own-
       ership of files as described in the file /etc/security/console.perms.  That user may then log in on other  terminals  that  are	considered
       part  of the console, and as long as the user is still logged in at any one of those terminals, that user will own those devices.  When the
       user logs out of the last terminal, the console may be taken by the next user to log in.  Other users who have logged  in  at  the  console
       during  the  time  that the first user was logged in will not be given ownership of the devices unless they log in on one of the terminals;
       having done so on any one terminal, the next user will own those devices until he or she has logged out of every terminal that is  part	of
       the  physical  console.	Then the race can start for the next user.  In practice, this is not a problem; the physical console is not gener-
       ally in use by many people at the same time, and pam_console.so just tries to do the right thing in weird cases.

ARGUMENTS

       debug  turns on debugging

       allow_nonroot_tty
	      gain console locks and change permissions even if the TTY's owner is not root.

       permsfile=filename
	      tells pam_console.so to get its permissions database from a different file than /etc/security/console.perms

       fstab=filename
	      tells pam_console.so to read the table of configured filesystems from a file other than /etc/fstab when  scanning  permsfile.   This
	      file is used to map directories to device names.

FILES

       /var/run/console.lock
       /var/run/console/
       /etc/security/console.apps
       /etc/security/console.perms

SEE ALSO

       console.perms(5)
       console.apps(5)
       /usr/doc/pam*/html/index.html pam_console_apply(8)
       /usr/doc/pam*/html/index.html

BUGS

       Let's hope not, but if you find any, please report them via the "Bug Track" link at http://bugzilla.redhat.com/bugzilla/

AUTHOR

       Michael K. Johnson <johnsonm@redhat.com>

Red Hat 							     2000/7/11							    pam_console(8)
All times are GMT -4. The time now is 08:24 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy