09-16-2011
Admin user command usage restrictions
Hi,
I need to work on restricting the Linux commands to the ADMIN user to some extent. It means for example, Admin users should not use passwd command to change the password of "root" or other important accounts like oracle, etc.,
So, I want to know which commands should be restricted upto which extent to the Admin user.
The main important commands I want to restrict are below:
passwd, authconfig, shutdown, reboot, ksu, su, killall, mount, umount, poweroff, nice, htpasswd, renice, fdisk, chsh, touch, umask, poweroff, halt...
Need to restrict these in the sudoers file.
plz help me in this....
10 More Discussions You Might Find Interesting
1. Solaris
Hello,
I would to create a new user with some restriction: Example "Toto"
I am a newer in unix please tell me how to do
1. The user will will have only remote access via FTP ( not telnet, ssh etc ...)
2. The user will not be able to access via FTP to other directory
4) He will access only... (1 Reply)
Discussion started by: fedeboubou
1 Replies
2. Shell Programming and Scripting
Hi All,
Can anybody knows, how to check the CPU usage in percentage for a particular process along with its user and PID?
Thanks in advance!! (3 Replies)
Discussion started by: AB10
3 Replies
3. UNIX for Dummies Questions & Answers
Hi all,
Can you please tell me the command, with which one can know the amount of space a specific directory has used.
df -k . ---> Displays, the amount of space allocated, and used for a directory.
du -k <dir name> - gives me the memory used of all the files inside <dir>
But i... (2 Replies)
Discussion started by: abhisheksunkari
2 Replies
4. Shell Programming and Scripting
Hi,
I am setting up a new Suse server and I'm very happy with it :). So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (0 Replies)
Discussion started by: kever
0 Replies
5. UNIX for Dummies Questions & Answers
Hi,
I am setting up a new Suse server and I'm very happy with it . So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (1 Reply)
Discussion started by: kever
1 Replies
6. Shell Programming and Scripting
Folks,
I have written one script for following condition by referring some of online post in this forum. Please correct it if I'm missing something in it. (OS: AIX 5.3)
List the idle user. (I used whoidle command to list first 15 user and get username, idle time, pid and login time).... (4 Replies)
Discussion started by: sumit30
4 Replies
7. Linux
How to create a user account on a Linux desktop machine with restrictions on connecting to the LAN, WAN, PCMCIA ports, Firewire, CDROM and generally any user controllable output options?
I have the task to set up a machine for users working with sensitive data that should not be leaving the... (1 Reply)
Discussion started by: netfreighter
1 Replies
8. UNIX for Dummies Questions & Answers
This is a quote from the Apple security configuration (you can download it from Apple)
" Using ACLs to Restrict Usage of Setuid Programs
The ACL feature of Mac OS X can also be used to restrict the execution of setuid
programs. Restricting the execution of setuid programs to administrators... (3 Replies)
Discussion started by: Vera
3 Replies
9. UNIX for Dummies Questions & Answers
I was wondering if there was a way to set resource usage per user. For example, if I use "grep -f <file1> <file2>" and the two files are very big it consumes a lot of resources. Onetime someone pinged me and asked what the hell I was doing and to kill it. Is there any way an SA can restrict... (7 Replies)
Discussion started by: MaindotC
7 Replies
10. UNIX for Dummies Questions & Answers
Let's say i have 20 users logged on Server. How can I know how much memory percent used each of them is using with system time in each user? (2 Replies)
Discussion started by: roy1912
2 Replies
LEARN ABOUT DEBIAN
cvsd-passwd
cvsd-passwd(8) System Manager's Manual cvsd-passwd(8)
NAME
cvsd-passwd - generate password entries for repositories
SYNOPSIS
cvsd-passwd REPOS [+|-]NAME...
DESCRIPTION
cvsd-passwd adds, updates or deletes users from repository passwd files for use with cvsd.
OPTIONS
REPOS Specify the directory in which the repository is located. This argument can be the top of the repository, the CVSROOT directory or
even the passwd file in the CVSROOT directory.
[+]USER[:SUSER]
Add or update the user to the CVSROOT/passwd file. If the user does not exist a password for the user is asked and the user is
added for use with cvsd. If the user already exists a password for is asked and the password field is modified.
The :SUSER part can be user to change or set mapping to a system user. If you do not specify anything, a reasonable default is used
based upon your cvsd configuration. If you don't want to map the user to any specified system user you can specify an empty SUSER
and use 'USER:'.
-USER Remove the user from the CVSROOT/passwd file.
EXAMPLES
Add an anoncvs user to access the given repository:
cvsd-passwd /var/lib/cvsd/myrepos +anoncvs
If the user already exists, change the password.
Remove a user from the repository passwd list:
cvsd-passwd /var/lib/cvsd/myrepos -foo
Add a user and specify that cvs should remap this user to the joe system user:
cvsd-passwd /var/lib/cvsd/myrepos joecvs:joe
Note that the user joe should be known in the system passwd file and that cvsd should be run as root or user joe for this to work.
SEE ALSO
cvsd(8)
AUTHOR
Arthur de Jong <arthur@arthurdejong.org>.
Version 1.0.24 Jun 2012 cvsd-passwd(8)