Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: script to remotely start several applications and instances
Top Forums UNIX for Advanced & Expert Users script to remotely start several applications and instances Post 302492284 by aix-guy on Sunday 30th of January 2011 10:44:15 PM
Old 01-30-2011
Yes it can be done and be secure. I done a couple and basically here was my approach.
1. Create the central users script. If needed the make menu driven. We created a base user not a super user for this account. In out case the home dir is a NFS mount to all the servers. So a script to send commands to another server wasn't needed. A NAS mounted device would work for this also.
2. So since in most cases root needs to be the user to do the work.
I have a local root script that is looping and looking for a file to show up in a defined directory on the global mount. Now this is were it depends on what you are trying to do on the server. So the dropped file
could contain the objective to be bounce. So if you would bounce oracle and refresh sendmail lets say. the file would be named <server name>_???.trg and contain oracle|sendmail. The local script would see the file then consume the file and create a results file.
3. the master script would look for the files to be consumed and the results being created.

There are a lot more steps to all this...

Security wise - since the user login into the server as the service user. They don't know or have ability to be root. That is all controlled by the scripts and your programs. And the service account when it logs in will only run the menu to do your application. And you will also do the trap command in the login control so they can't ctl c or anything out to a shell.

This may sound worse than what the work really is. You could have the whole thing done in a day or so.
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

How to limit the number of running instances of a script?

I would like to allow only one instance of a script to run at any moment. I've tried the following solution to count the instances but the result is always the number of running instances plus one and I can't find the problem ps -ef | grep $0 | sed '/^$/ d' | sed '/grep/ d' | wc -l Please... (2 Replies)
Discussion started by: oti
2 Replies

2. UNIX for Advanced & Expert Users

reg no of instances of a script run using cron

I have the below code in a file called test.ksh and it is scheduled using cron forevery 5 min. when i see the cron out file for every 5 min it showing the no of process running are 2. same thing when i implement in another script which contains other code along with the below code , it showing as... (1 Reply)
Discussion started by: kamesh83
1 Replies

3. Shell Programming and Scripting

Script that checks for previous instances running

Hello, I'm trying to write a script that checks for previous instances of the same script which may still be running (this script is scheduled to run every 30 minutes). I want to somehow use the pid from each instance to make sure the previous one isn't running before continuing with my... (5 Replies)
Discussion started by: bd_joy
5 Replies

4. Shell Programming and Scripting

Multiple instances of the job in shell script.

Hi, Please let us know how to create a multiple instances of a job in the shell script. Thanks. Gangegowda K.G (1 Reply)
Discussion started by: Gangegowda
1 Replies

5. Shell Programming and Scripting

Get the STATE of the weblogic instances via shell script.

Can I get the STATE(instance are RUNNING or not and HEALTH is OK or not) of the weblogic instances(Admin and Managed) running on my unix machine via shell script. Someone told me that it can be done via "weblogic.Admin GETSTATE"....but it is not working for me(might be I am doing something wrong)... (2 Replies)
Discussion started by: joshilalit2004
2 Replies

6. Shell Programming and Scripting

Want to have delay in multiple instances of the same shell script

Hello, My goal is to run the same Shell script in a parallel mode. This script will get triggered from different machines and different application teams by some job scheduling tool. They may trigger the process at the same time. so I want to have them in QUEUE ..and release them for execution on... (3 Replies)
Discussion started by: chetan_sonar
3 Replies

7. UNIX for Advanced & Expert Users

script to remotely start an application instance

just wanted to ask if anybody have script template for the subject above so I can make ti as my guide? example a. server 1.1.1.1: restart script located at /etc/init.d/glassfish.sh b. server 2.2.2.2: central script that support admin will use to execute to restart the /etc/init.d/glassfish.sh... (0 Replies)
Discussion started by: lhareigh890
0 Replies

8. Shell Programming and Scripting

How to run multiple instances of shell script in linux?

How we can run the multiple instances of the script? I need to run the script which I am calling from the below function.I can doit with cron but I don't want to put it in the cron.This cript dploy the build and here I want when the build stage then it should run with multilpe instances of... (6 Replies)
Discussion started by: anuragpgtgerman
6 Replies

9. Solaris

How to remotely start ssh on Solaris?

Hi everyone, I have a Solaris machine: SunOS 5.10 Generic_127127-11 sun4v sparc SUNW,SPARC-Enterprise-T5220 After reboot, I can't ssh to this machine. Error message: ssh: connect to host xxxx port 22: Connection refused It seems ssh daemon is not running, but I don't have... (5 Replies)
Discussion started by: Zaiwen Gong
5 Replies

10. Shell Programming and Scripting

Display status of instances in apache - Where to start

Hello, I know this is not a simple question so I just need to know where to start for below project: I am running under Ubuntu 18.04 What I'd like to see in apache page is to display status of particular process pids. ps aux | grep keywords.txt keywords.txt word1 word2 word3 word4... (9 Replies)
Discussion started by: baris35
9 Replies

LEARN ABOUT OSX

mnthome

mnthome(1)						    BSD General Commands Manual 						mnthome(1)

NAME

     mnthome -- mount an AFP (AppleShare) home directory with the correct privileges

SYNOPSIS

     mnthome [-v] [-d] [-m mntpath] [-n] [-b] [-p password] [-i] [-x mount point] [-u] [-s]

DESCRIPTION

     The mnthome command unmounts the AFP (AppleShare) home directory that was automounted as guest, and remounts it with the correct privileges
     by logging into the AFP server using the current username and password.  This command also allows you to have guest access turned off on your
     AFP server too and still have AFP home directories work with "su".

     When you ssh into another computer using an account that has an AFP home directory or you "su <netuser>" where <netuser> is an AFP home
     directory user, then the resulting home directory will not have the correct access privileges.

     This is because automount is assuming NFS behavior which assumes that all computers share the same user/group privileges and mounts volumes
     using "no security" and lets the client enforce privileges based on the current user.

     AFP is different since the privileges are based on the user that logged into the server.  Since automount does not put up an authentication
     dialog asking for an user name and password, automount mounts the fileserver using guest login.  Thus you end up with getting the world
     access privileges and the privileges are shown via "mapping".  You also would have to allow guest access to the server to that sharepoint.

     Mapping makes all the files/folders appear like they are owned by the current user.  Even those items not really owned by the current user
     show up as being owned by the current user.  The server provides user access rights (UARights) which is a summary of what the access rights
     are regardless of the category (owner, group, world) from which they were obtained.  When doing "mapping", the AppleShare client will take
     these UARights and show them as the owner rights.	So, everything looks like it is owned by the current user and the owner rights are set to
     the UARights.  Thus if you had access to that file/folder before, then you still do.

     The options are:

     -v      Display version number.

     -d      Print debugging information.

     -m      Alternative mount point is specified with the -m option followed by a path to an existing directory.  Normally, the volume is mounted
	     in /Network/Servers/ or /var/automount/Network/Servers/.

     -n      Do not force the unmount of the previous mount point.

     -b      Exec the user's shell after mount of home.

     -p      A password may be specified with the -p option followed by a password.  If this option is not used, then the user will be prompted to
	     enter in a password.

     -i      Display information about the AFP home mount point.

     -u      Attempt to unmount the current home directory mount.

     -x      This option must be followed by a path to an existing AFP mount point.  Display information about the mount point.

     -s      Skip preflight check to see if the currently mounted home directory is already correctly mounted for the user.

EXAMPLES

     The following example illustrates how to mount an AFP home directory:

	   mnthome

     This example shows how to print the debugging information and provide a password:

	   mnthome -d -p foobar

SEE ALSO

     mount(2), unmount(2), mount(8) mount_afp(8)

BUGS

     I get the mounting url from the "home_loc" attribute and the mountpath from the "home" attribute (with the path from home_loc subtracted
     out).  If your AFP home directory automounts in a different location, then you need to use the -m option to specify an alternative mount
     point.

     I cant figure out how to cd out of the current home dir so I can do the unmount and then restore the user back into the new home dir.  If you
     are in the AFP home directory when you use mnthome, you automatically get put back into that same directory when mnthome leaves.  If mnthome
     works, then your current directory is a dead directory and you need to "cd ~" to get to your new home directory.

     If the server with the home directory was already mounted by another user, you will not be able to replace it with a mount made by your user
     id.  The original mount must be first unmounted by the mounting user or root.

HISTORY

     The mnthome command first appeared Mac OS X version 10.3.

RETURN VALUES

     0			mnthome successfully remounted the AFP home directory.

     [EINVAL]		Invalid arguements were passed in.

     [EPERM]		The current AFP home directory could not be unmounted by mnthome because the current user does not have the correct
			access.  The current AFP home directory was probably mounted by another user first.

     [EAUTH]		Incorrect password.

Mac OS X							  August 4, 2004							  Mac OS X
All times are GMT -4. The time now is 03:10 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy