Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: User account with no login shell
Top Forums UNIX for Dummies Questions & Answers User account with no login shell Post 302430839 by jw_amp on Saturday 19th of June 2010 05:17:24 AM
Old 06-19-2010
User account with no login shell
Thanks pludi & apologize for replying bit late.

In the meantime, I have created an installer for a Java based server in-house product. In that I have been told that, this server should run as a daemon & should get start during boot up and currently this daemon running as a ROOT user.

My question relates to same post, that should I create a:
- Separate User Account with no login shell for this product.
- And also if I login as a normal User, will the normal user still able to use the server (which is running as a daemon) OR this daemon only gets started via its own account or ROOT account (As I have to make available this daemon to ROOT + normal user as well).
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Setting an account to be a non-login account automatically?

Is there a way to easily change an account to be a non login account (NP in the shadow) file? I know I can just edit the file but that is not what we want to do. We use access control software and want to provide a way to set an account to be non-login using simple commands that can be mapped... (0 Replies)
Discussion started by: LordJezo
0 Replies

2. AIX

Can't login root account due to can't find root shell

Hi, yesterday, I changed root's shell in /etc/passwd, cause a mistake then I can not log in root account (can't find correct shell). I attempted to log in single-mode, however, it prompted for single-mode's password then I type root's password but still can not log in. I'm using AIX 5L version 5.2... (2 Replies)
Discussion started by: neikel
2 Replies

3. Shell Programming and Scripting

auto login to Super User account

i want to write to script which will login to su account without hving user interaction.( i know Super user password) i wrote following script its also able to log into su account. but seesion gets terminates soon. what can be done ??? or is there any other solution. i don't want to use expect... (6 Replies)
Discussion started by: anup13
6 Replies

4. Debian

password less login to root from a user account

hello friends, one user is created named "user1" I login as "user1" . Now when i do "su -" to be root user I have to give password for root . Is there any way through which we can skip giving the password to root. i.e. user1@work:~$ su - Password: xxxxxx work:~$ I don't want that... (1 Reply)
Discussion started by: pradeepreddy
1 Replies

5. Shell Programming and Scripting

Create new user account and password in shell script

I am trying to create a shell script that will: check if a specific user already exists if not, create a specific group and create the user in that group assign a password to that user, where the password is passed in as a parameter to the script The problem that I need help with is 3 on... (4 Replies)
Discussion started by: killuane
4 Replies

6. Shell Programming and Scripting

How to Login as another user through Shell script from current user[Not Root]

Hi Every body, I would need a shell script program to login as different user and perform some copy commands in the script. example: Supppose ora_toms is the active user ora_toms should be able to run a script where user: ftptomsp pass: XXX should login through and run the commands ... (9 Replies)
Discussion started by: ujjwal27
9 Replies

7. AIX

User Account Login Login on your AIX server

I want to learn AIX. I would like to find someone who would be willing to give me a login to their AIX home lab server. My intent is to poke around and discover the similarities and differences of AIX compared to other *NIXs. I am a UNIX admin so I can think of what some immediate concerns may... (1 Reply)
Discussion started by: perl_in_my_shel
1 Replies

8. UNIX for Dummies Questions & Answers

How to make each login shell history independent for same account?

Hello All, Many developers in our company use same application account to log in Linux Box for code development, how can i redirect my log in shell history to a different file to avoid history being shown to others or accidentally execute the same command which i or others executed? Thank you. (4 Replies)
Discussion started by: Ariean
4 Replies

9. Solaris

Solaris 11 user account login expired

Hi everyone Please i need urgent help... I have installed solaris 11 using live media.. then i installed sunray.. every thing is fine.. but after system reboot i am unable to login on server on GUI it gives account expired error or some time authentication failed... but i can log in through... (11 Replies)
Discussion started by: amk
11 Replies

10. Shell Programming and Scripting

Shell script for user account Creation

Hi Folks, I had a request to create the user request. Between, I just write a script a create, Update Geos, and update the password. My script as below: The error message, what I am getting is all the users are updated with the same Goes value.. #!/bin/bash for i in `cat users.txt`;do... (2 Replies)
Discussion started by: gsiva
2 Replies

LEARN ABOUT SUNOS

rootd

ROOTD(1)                                                      General Commands Manual                                                     ROOTD(1)

NAME

       rootd - The ROOT file server daemon

SYNOPSIS

       rootd [options]

DESCRIPTION

       This manual page documents briefly the rootd program.

       rootd is a ROOT remote file server daemon.

       This small server is started either by inetd(8) (or xinetd(8)) when a client requests a connection to a  rootd server or by hand (i.e. from
       the command line). The  rootd server works with the ROOT TNetFile, TFTP and TNetSystem classes. It allows access to remote directories  and
       ROOT files in either read or write mode from any ROOT interactive session. By default rootd listens on port 1094, assigned to it by IANA.

STARTING VIA (X)INETD
       To run rootd via inetd(8) or xinetd(8) the port 1094 must be assigned to rootd in /etc/services; the following line should be added, if not
       present:

              rootd     1094/tcp

       If the system uses inetd, add the following line to /etc/inetd.conf:

              rootd stream tcp nowait root <bindir>/rootd rootd -i

       where <bindir> is the directory you have installed rootd in.

       The inetd(8) daemon must re-read its configuration file to become aware of the new service. This can be done either by killing and restart-
       ing it manually

              kill -HUP <pid inetd>

       or, if SYSV init(8) scripts are used, by restarting it, e.g.

              /etc/init.d/inetd restart

       If the system uses xinetd(8) instead, a file named 'rootd' should be created under /etc/xinetd.d with content:

              # default: off
              # description: The rootd daemon
              #
              service rootd
              {
                   disable         = no
                   flags           = REUSE
                   socket_type     = stream
                   wait            = no
                   user            = root
                   server          = <bindir>/rootd
                   server_args     = -i
              }

       where, again, <bindir> is the directory you have installed rootd in.

       The xinetd(8) daemon must be restarted:

              /sbin/service xinetd restart

       If  you installed ROOT using some pre-compiled package (for example a Redhat Linux or a Debian GNU/Linux package), this may already be done
       for you.

       The above configuration examples start the daemon with superuser privileges. Please refer to the inetd(8) or  xinetd(8)  documentation  for
       ways of limiting the privileges.

STARTING BY HAND

       You can also start rootd by hand running directly under your private account (no root system privileges needed). For example to start rootd
       listening on port 5151 just type:

              rootd -p 5151

       Notice: no & is needed rootd will go in background by itself.

ANONYMOUS LOGINS

       rootd can also be configured for anonymous usage (like anonymous ftp). To setup rootd to accept anonymous logins do  the  following  (while
       being logged in as root):

       1      Add the following line to /etc/passwd:

                 rootd:*:71:72:Anonymous rootd:/var/spool/rootd:/bin/false

              where you may modify the uid, gid (71, 72) and the home directory to suite your system.

       2      Add the following line to /etc/group:

                 rootd:*:72:rootd

              where the gid must match the gid in /etc/passwd

       3
               Create the directories:

                 /var/spool/rootd
                 mkdir /var/spool/rootd/tmp
                 chmod 777 /var/spool/rootd/tmp

              Where /var/spool/rootd must match the rootd home directory as specified in the rootd /etc/passwd entry.

       4      To make writable directories for anonymous do, for example:

                 mkdir /var/spool/rootd/pub
                 chown rootd:rootd /var/spool/rootd/pub

              That's all.

       If  you installed ROOT using some pre-compiled package (for example a Redhat Linux or a Debian GNU/Linux package), this may already be done
       for you.

       Several remarks:

       *      You can login to an anonymous server either with the names anonymous or rootd.

       *      The passwd should be of type user@host.domain Only the @ is enforced for the time being.

       *      In anonymous mode the top of the file tree is set to the rootd home directory, therefore only files below the home directory can  be
              accessed.

       *      Anonymous mode only works when the server is started via inetd(8) or xinetd(8).

ABOUT PASSWORD AUTHENTICATION

       In  system using shadow passwords, full access to the password field of the user information structure requires special privileges; this is
       typically granted if rootd is started by inetd(8) or xinetd(8), as the in above examples. If the daemon is started  in  unprivileged  mode,
       either  from  a  regular  account  or  by  (x)inetd  with  reduced privileges, password-based authentication require users to create a file
       $HOME/.rootdpass containing an encrypted password (using crypt(3)). The system tests the existence of this file before checking the  system
       password files. An encrypted password can be created in the following way:

              perl -e '$pw = crypt("<secretpasswd>","salt"); print "$pw0'

       storing the output string in $HOME/.rootdpass .

       If  the  $HOME/.rootdpass  does not exists and the system password file cannot be accessed, rootd attempts to run the authentication via an
       sshd(8) daemon.

OPTIONS

       -b <tcpwindowsize>
              specifies the tcp window size in bytes (e.g.  see  http://www.psc.edu/networking/perf_tune.html).  Default  is  65535.  Only  change
              default for pipes with a high bandwidth*delay product.

       -d <level>
              level of debug info written to syslogd 0 = no debug (default), 1 = minimum, 2 = medium, 3 = maximum.

       -D <rootdaemonrc>
              read  access  rules  from file <rootdaemonrc>. By default <root_etc_dir>/system.rootdaemonrc is used for access rules; for privately
              started daemons $HOME/.rootdaemonrc (if present) is read first.

       -f     run in the foreground (output on the window); useful for debugging purposes.

       -i     indicates that rootd was started by inetd(8) or xinetd(8).

       -noauth
              do not require client authentication

       -p <port#>[-<port2#>]
              specifies the port number to listen on. Use port-port2 to find the first available port in the indicated range. Use  0-N  for  range
              relative to default service port.

       -r     files can only be opened in read-only mode

       -s <sshd_port#>
              specifies the port number for the sshd daemon used for authentication (default is 22).

       -T <tmpdir>
              specifies the directory path to be used to place temporary files; default is /usr/tmp. Useful when running with limited privileges.

       -w     do  not check /etc/hosts.equiv, $HOME/.rhosts for password-based authentication; by default these files are checked first by calling
              ruserok(...); if this option is specified a password is always required.

SEE ALSO

       root(1), proofd(1), system.rootdaemonrc(1)

       For more information on the ROOT system, please refer to http://root.cern.ch <http://root.cern.ch/>

ORIGINAL AUTHORS

       The ROOT team (see web page above):
              Rene Brun and Fons Rademakers

COPYRIGHT

       This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public  License  as  pub-
       lished by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version.

       This  library  is  distributed  in  the  hope  that  it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MER-
       CHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public License for more details.

       You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software  Foun-
       dation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA

AUTHOR

       This  manual  page was originally written by Christian Holm Christensen <cholm@nbi.dk>, for the Debian GNU/Linux system and ROOT version 3.
       It has been modified by G. Ganis <g.ganis@cern.ch> to document new features included in ROOT version 4.

ROOT                                                                 Version 4                                                            ROOTD(1)
All times are GMT -4. The time now is 08:10 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy