|
|
Sponsored Content
Top Forums
UNIX for Advanced & Expert Users
How to allow particular user only to login as a root using "ssh" ?
Post 302447505 by diesan on Monday 23rd of August 2010 11:02:56 AM
08-23-2010
|
|
10 More Discussions You Might Find Interesting
1. Solaris
I'm running sendmail (8.13.8+Sun/8.13.8/Submit) solaris 10.
When I send mail to root at the command line (whether I use a full-qualified address or just root), I get the error message
root... User address required.
Sending mail to root (either at the command line or in a cron job),... (10 Replies)
Discussion started by: csgonan
10 Replies
2. Shell Programming and Scripting
Hi Folks,
I am writing a shell script that can logon to remote machine automatically. But, I am facing one problem. I am using "ssh" command in script and while login into remote machine it asks for passowrd and it stops for STDIN input for password. I want my script to supply password... (2 Replies)
Discussion started by: gydave
2 Replies
3. Red Hat
I am trying to install openmotif22-2.2.3-18.src.rpm,
after I typed in " rpm -i openmotif22-2.2.3-18.src.rpm"
the following message comes out:
warning: user owen does not exist - using root
warning: group owen does not exist - using root
I am install openmotif under root account.
Do... (2 Replies)
Discussion started by: fishwater00
2 Replies
4. Solaris
I am getting the following error in the cron log:
! bad user (root) Wed Sep 22 14:30:00 2010
< root 8989 c Wed Sep 22 14:30:00 2010 rc=1
What does this mean? (5 Replies)
Discussion started by: jastanle84
5 Replies
5. AIX
Hello,
Using AIX 6.1 boxes.
User user1 connects from box A to box B using ssh.
When password authentication is used everything is fine. When I configure user1 to use public key authentication sftp client works fine(no password asked), but ssh client fails. This is sshd log:
Accepted publickey... (3 Replies)
Discussion started by: vilius
3 Replies
6. HP-UX
Greetings!
I am trying to perform a passwordless SSH login from a HPUX 11.31 client to a HPUX 11.31 server. Whenever I do a "ssh -l root serverA" from the client, I am prompted for a password. Giving the password, I am able to successfully login. However I am trying to accomplish a... (9 Replies)
Discussion started by: Rob Sandifer
9 Replies
7. UNIX for Dummies Questions & Answers
Please can you help me understand the significance of providing arguments under sh -s in
> ssh -qtt ${user}@${host} "sh -s "${version}"" < test.sh (4 Replies)
Discussion started by: Sree10
4 Replies
8. AIX
Our AIX servers send e-mails which have the "from" address set to "root@company.com" for our root user ("C{M}company.com" in /etc/sendmail.cf). The problem is that when bad e-mails are sent out or rejected by remote servers, they are being returned and delivered to e-mail box of "Mary Root".
... (2 Replies)
Discussion started by: kah00na
2 Replies
9. Shell Programming and Scripting
Close duplicate thread. (0 Replies)
Discussion started by: denissi
0 Replies
10. UNIX for Beginners Questions & Answers
I am looking t run root level command on multiple servers, but all servers have only "su - " permission available in sudoers.
please help me if any way that I can run command using help of "su -"
My script
for hosts in `cat hosts.txt`;
do
echo "###########################Server Name-... (5 Replies)
Discussion started by: yash_message
5 Replies
LEARN ABOUT DEBIAN
st_snapshot
ST_SNAPSHOT(1) systraq ST_SNAPSHOT(1) NAME
st_snapshot - calculate checksum and stat ownership and permissions of files SYNOPSIS
ST_SUM=sha256sum st_snapshot patterns homepatterns DESCRIPTION
st_snapshot calculates checksums and stats ownership and permissions of critical system files. This script is typically run in either root-mode or public-mode. Running this script in root-mode requires root priviliges. One is adviced to set up a dedicated user account for running this script in public mode. In root-mode, the files snapshot_root.list and snapshot_root.homelist are typically passed as arguments. These pattern files are read by the script and contain names of files and directories; listing a directory in such a pattern file is equivalent to listing all files which live in the directorytree with this directory as root. snapshot_root.list could e.g. read # snapshot_root.list - files and directories we wanna get # monitored: we wanna get a note once these files, or any file # under these directories, gets created, gets rm-ed, gets # permissions or contents changed. these notices will not # include the possibly secret contents of these files # # this file gets read by st_systraq /etc/group /etc/gshadow /etc/hosts.allow /etc/hosts.deny /etc/hosts.equiv /etc/lilo.conf /etc/passwd /etc/postfix/server.pem /etc/shadow /etc/skel /etc/ssh Equivalent files snapshot_pub.list and snapshot_pub.homelist should be on the system. These files should contain all worldreadable to be monitored files. This allows for running this script as root only in those cases where it's needed: when reading files, readable for root only. The homelist files contain files and directories which should get monitored for every homedirectory on the system. snapshot_pub.homelist could e.g. contain: .profile .cshrc .tcshrc .login .logout .bash_profile .bashrc .exrc .nexrc As a special case, when the environment variable ST_OPHOMES is set to a non-empty string (typically when running in public mode), we stat the permissions on all homedirectories themselves. The produced snapshot is printed to stdout. The output when running in public mode could look like: # ownership and permissions of homedirs drwxr-xr-x root root /bin drwxr-xr-x root root /dev drwxr-sr-x root staff /home drwxr-sr-x joostvb joostvb /home/joostvb drwxr-xr-x root root /usr/sbin drwxr-xr-x root root /var # sha256sum of critical pub files 4d3cd13d6dbc10e2e3ccb9477cbc9eb9b76302454c276d5771ae0b10a5fbb4d2 /home/joostvb/.ssh/id_rsa.pub eb8d83e0246f761a21bdfb13a03fac634ed7c3b7dde4c2efddd7b2838d32596f /var/qmail/alias/.bashrc 4e371f9a11f5a2464d3d5c952e58e24f73b377d33767ed93b2082fcb59a647fe /etc/zlogin # ownership and permissions of critical pub files -rw-rw-r-- joostvb joostvb /home/joostvb/.ssh/id_rsa.pub -rw-r--r-- joostvb joostvb /home/joostvb/.ssh/authorized_keys ENVIRONMENT
ST_OPHOMES - non-empty in case permissions on all homedirectories should be printed ST_SUM - command for calculating file checksums. E.g. sha256sum, sha512sum, sha384sum, sha224sum or sha1sum. SEE ALSO
The systraq manual. VERSION
This manpage: $Id: st_snapshot.pod 374 2008-12-14 08:47:32Z joostvb $ COPYRIGHT
Copyright (C) 2001, 2002, 2003, 2004, 2008 Joost van Baal This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program (see COPYING); if not, check with http://www.gnu.org/copyleft/gpl.html or write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111, USA. AUTHOR
Joost van Baal <joostvb-systraq-20041015@mdcc.cx> 20081217 2008-12-15 ST_SNAPSHOT(1)