10-05-2010
Gid=0 and 7 + admin=FALSE
Checking configuration access files for an AIX server, left me wondering about this
:
- If a user is added to system group, it gets gid=0 with some security risks because it gets some root kind of file access level.
- Is this insecure condition kept if the user has admin variable equal to FALSE in /etc/security/user file?
- What happen if the user is also part of security group (gid=7).
What is the resultant combination of having gid=0,7 and ADMIN=FALSE?
8 More Discussions You Might Find Interesting
1. Linux
We have requirments to not allow a userid login abilities but allow users to 'su' to it. In solaris I normally set the shell in /etc/passwd to bin/false. THis does not work on Linux, any suggestions would help. (1 Reply)
Discussion started by: bryanthomas
1 Replies
2. Shell Programming and Scripting
i want to delete every newline and every line which starts with "RECORD......." in a file.
FILE:
Record 61391 in base BROCKHAUS (Timestamp: 2008-04-09 11:38:38)
UNTERTITEL :
Gräfin (seit 1707 Reichsgräfin) von, * Schwerin 4. 2. 1686, + Berlin
21. 10. 1744; wurde
Record 61392 in base BROCKHAUS... (4 Replies)
Discussion started by: trek
4 Replies
3. Shell Programming and Scripting
Hi,
I'm new to UNIX and am trying to learn shell scripting in order to work on an interface that I inherited when a co-worker left. I need to be able to check to see whether a file exists to determine whether the FTP has taken place, but in testing, the if statement always evaluates as false,... (3 Replies)
Discussion started by: JeffR
3 Replies
4. AIX
Hi Friends,
I am trying to write a script for finding all the users with the GID 0 i.e. Admin users. can you please help me on this. (1 Reply)
Discussion started by: anoopraok
1 Replies
5. Shell Programming and Scripting
Hi All,
I am using the below Script to enter a line in the File:
#!/bin/ksh
# To delete the last line if it contains the pattern Redirect permanent / Virgin Atlantic Airways - Popup
echo "Enter the URL that should point to the particular microsite"
read url
# To delete the last line if it... (0 Replies)
Discussion started by: Shazin
0 Replies
6. What is on Your Mind?
I'm currently a Windows admin and have wanted to jump ship to the *nix side for a while now. I've been studying both through an lpic level 1 manual as I have time (focusing on debian), and a solaris 10 cert book. The problem is I only have a handful of hours a week to study, and my current job... (3 Replies)
Discussion started by: bobwilson
3 Replies
7. What is on Your Mind?
I am planning to choose my career as Unix/Linux Admin or a DBA. But I have come to know from forums and few admins like the job will be 24/7. I have few questions on that.
Can we get "DAY" shifts in any one of the admin Job ?
Can't we have shift timings in any company ?
Eventhough the... (7 Replies)
Discussion started by: Jacktts
7 Replies
8. Shell Programming and Scripting
Hi
I have written a script to send email alerts when load of my linux server reaches max point
I keep getting false emails thought the load is normal , looks like same email is generated again and again - called from cron tab
checked if the tempfile is present , no it is not , cleaned... (22 Replies)
Discussion started by: anil529
22 Replies
LEARN ABOUT DEBIAN
rescan-scsi-bus
RESCAN-SCSI-BUS.SH(8) System Manager's Manual RESCAN-SCSI-BUS.SH(8)
NAME
rescan-scsi-bus.sh - rescan the SCSI bus.
SYNOPSIS
rescan-scsi-bus.sh [ -l ] [ -w ] [ -c ] [ -r ] [ host... ]
DESCRIPTION
rescan-scsi-bus.sh is a program that is used to rescan the SCSI bus using the SCSI add-single-device feature of the Linux SCSI layer.
OPTIONS
-l Activates scanning for LUNs 0 .. 7 (default: 0).
-L NUM Activates scanning for LUNs 0 .. LUN (default: 0).
--luns=LIST
Scan only LUNs in LIST.
-w Enables scanning for device IDs 0 .. 15 (default: 0 .. 7).
--ids=LIST
Scan only device IDs in LIST.
-i, --issue-lip
Issue a FibreChannel LIP reset (default: disabled).
-r, --remove
Enables removing of devices (default: disabled).
--forceremove
Remove and readd every device (dangerous).
-c Enables scanning of channels 0 1 (default: 0).
--channels=LIST
Scan only channels in LIST.
host, --hosts=LIST
If host adapters are given, only these are scanned (default: all).
--nooptscan
Don't stop looking for LUNs if 0 is not found.
--color
Use coloured prefixes OLD/NEW/DEL.
LIST is a comma separated list of single values and ranges (no spaces allowed), e.g. 0,2-3,8,10-15.
AUTHOR
rescan-scsi-bus.sh was written by Kurt Garloff <garloff@suse.de>.
COPYRIGHT
This program is free software. You can use it under the terms of the GNU GPL (General Public License) Version 2 (or any later version, at
your option). Note, that the GNU GPL implies, that there is NO WARRANTY at all. Full text of the GPL can be found in /usr/share/common-
licenses/GPL file.
AVAILABILITY
rescan-scsi-bus.sh is available from
http://www.garloff.de/kurt/linux/scsidev/
March 1998 RESCAN-SCSI-BUS.SH(8)