09-16-2011
Admin user command usage restrictions
Hi,
I need to work on restricting the Linux commands to the ADMIN user to some extent. It means for example, Admin users should not use passwd command to change the password of "root" or other important accounts like oracle, etc.,
So, I want to know which commands should be restricted upto which extent to the Admin user.
The main important commands I want to restrict are below:
passwd, authconfig, shutdown, reboot, ksu, su, killall, mount, umount, poweroff, nice, htpasswd, renice, fdisk, chsh, touch, umask, poweroff, halt...
Need to restrict these in the sudoers file.
plz help me in this....
10 More Discussions You Might Find Interesting
1. Solaris
Hello,
I would to create a new user with some restriction: Example "Toto"
I am a newer in unix please tell me how to do
1. The user will will have only remote access via FTP ( not telnet, ssh etc ...)
2. The user will not be able to access via FTP to other directory
4) He will access only... (1 Reply)
Discussion started by: fedeboubou
1 Replies
2. Shell Programming and Scripting
Hi All,
Can anybody knows, how to check the CPU usage in percentage for a particular process along with its user and PID?
Thanks in advance!! (3 Replies)
Discussion started by: AB10
3 Replies
3. UNIX for Dummies Questions & Answers
Hi all,
Can you please tell me the command, with which one can know the amount of space a specific directory has used.
df -k . ---> Displays, the amount of space allocated, and used for a directory.
du -k <dir name> - gives me the memory used of all the files inside <dir>
But i... (2 Replies)
Discussion started by: abhisheksunkari
2 Replies
4. Shell Programming and Scripting
Hi,
I am setting up a new Suse server and I'm very happy with it :). So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (0 Replies)
Discussion started by: kever
0 Replies
5. UNIX for Dummies Questions & Answers
Hi,
I am setting up a new Suse server and I'm very happy with it . So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (1 Reply)
Discussion started by: kever
1 Replies
6. Shell Programming and Scripting
Folks,
I have written one script for following condition by referring some of online post in this forum. Please correct it if I'm missing something in it. (OS: AIX 5.3)
List the idle user. (I used whoidle command to list first 15 user and get username, idle time, pid and login time).... (4 Replies)
Discussion started by: sumit30
4 Replies
7. Linux
How to create a user account on a Linux desktop machine with restrictions on connecting to the LAN, WAN, PCMCIA ports, Firewire, CDROM and generally any user controllable output options?
I have the task to set up a machine for users working with sensitive data that should not be leaving the... (1 Reply)
Discussion started by: netfreighter
1 Replies
8. UNIX for Dummies Questions & Answers
This is a quote from the Apple security configuration (you can download it from Apple)
" Using ACLs to Restrict Usage of Setuid Programs
The ACL feature of Mac OS X can also be used to restrict the execution of setuid
programs. Restricting the execution of setuid programs to administrators... (3 Replies)
Discussion started by: Vera
3 Replies
9. UNIX for Dummies Questions & Answers
I was wondering if there was a way to set resource usage per user. For example, if I use "grep -f <file1> <file2>" and the two files are very big it consumes a lot of resources. Onetime someone pinged me and asked what the hell I was doing and to kill it. Is there any way an SA can restrict... (7 Replies)
Discussion started by: MaindotC
7 Replies
10. UNIX for Dummies Questions & Answers
Let's say i have 20 users logged on Server. How can I know how much memory percent used each of them is using with system time in each user? (2 Replies)
Discussion started by: roy1912
2 Replies
newgrp(1) General Commands Manual newgrp(1)
NAME
newgrp - change effective group ID sg - execute command with different group ID
SYNOPSIS
newgrp [-l] [group]
sg group -c command
DESCRIPTION
The newgrp command changes the user's real and effetive group ID by replacing the current shell with a new shell. A new shell is launched
even if an error occours.
A password is requested if the group has a password and the user is not listed in the group file as being a member of that group. The pass-
word can be changed with the gpasswd(1) command.
If the new effective group ID is not in the supplementary group list, newgrp will add the new group ID to the supplementary list, too.
With no operands and options, newgrp changes the user's group IDs (real and effective) back to the group specified in password and group
file.
The sg command works like the newgrp command, except that it executes the given command with /bin/sh and upon exit the group ID of the cur-
rent shell is not changed.
OPTIONS
-l, --login
reinitialize the environment as if the user logged in.
--help Print a help list.
-u, --usage
Print a short usage message.
-v, --version
Print program version.
SEE ALSO
gpasswd(1), group(5), passwd(1), passwd(5), su(1)
AUTHOR
Thorsten Kukuk <kukuk@suse.de>
pwdutils April 2004 newgrp(1)