09-19-2011
sudoers file does not restrict the access of a user.
sudoers file is used to allow users to run some commands as root (depending on what rules are specified in it).
10 More Discussions You Might Find Interesting
1. Solaris
Hello,
I would to create a new user with some restriction: Example "Toto"
I am a newer in unix please tell me how to do
1. The user will will have only remote access via FTP ( not telnet, ssh etc ...)
2. The user will not be able to access via FTP to other directory
4) He will access only... (1 Reply)
Discussion started by: fedeboubou
1 Replies
2. Shell Programming and Scripting
Hi All,
Can anybody knows, how to check the CPU usage in percentage for a particular process along with its user and PID?
Thanks in advance!! (3 Replies)
Discussion started by: AB10
3 Replies
3. UNIX for Dummies Questions & Answers
Hi all,
Can you please tell me the command, with which one can know the amount of space a specific directory has used.
df -k . ---> Displays, the amount of space allocated, and used for a directory.
du -k <dir name> - gives me the memory used of all the files inside <dir>
But i... (2 Replies)
Discussion started by: abhisheksunkari
2 Replies
4. Shell Programming and Scripting
Hi,
I am setting up a new Suse server and I'm very happy with it :). So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (0 Replies)
Discussion started by: kever
0 Replies
5. UNIX for Dummies Questions & Answers
Hi,
I am setting up a new Suse server and I'm very happy with it . So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (1 Reply)
Discussion started by: kever
1 Replies
6. Shell Programming and Scripting
Folks,
I have written one script for following condition by referring some of online post in this forum. Please correct it if I'm missing something in it. (OS: AIX 5.3)
List the idle user. (I used whoidle command to list first 15 user and get username, idle time, pid and login time).... (4 Replies)
Discussion started by: sumit30
4 Replies
7. Linux
How to create a user account on a Linux desktop machine with restrictions on connecting to the LAN, WAN, PCMCIA ports, Firewire, CDROM and generally any user controllable output options?
I have the task to set up a machine for users working with sensitive data that should not be leaving the... (1 Reply)
Discussion started by: netfreighter
1 Replies
8. UNIX for Dummies Questions & Answers
This is a quote from the Apple security configuration (you can download it from Apple)
" Using ACLs to Restrict Usage of Setuid Programs
The ACL feature of Mac OS X can also be used to restrict the execution of setuid
programs. Restricting the execution of setuid programs to administrators... (3 Replies)
Discussion started by: Vera
3 Replies
9. UNIX for Dummies Questions & Answers
I was wondering if there was a way to set resource usage per user. For example, if I use "grep -f <file1> <file2>" and the two files are very big it consumes a lot of resources. Onetime someone pinged me and asked what the hell I was doing and to kill it. Is there any way an SA can restrict... (7 Replies)
Discussion started by: MaindotC
7 Replies
10. UNIX for Dummies Questions & Answers
Let's say i have 20 users logged on Server. How can I know how much memory percent used each of them is using with system time in each user? (2 Replies)
Discussion started by: roy1912
2 Replies
passwd(4) Kernel Interfaces Manual passwd(4)
NAME
passwd - Password files
DESCRIPTION
A passwd file is a file consisting of records separated by newline characters, one record per user, containing seven colon (:) separated
fields. These fields are as follows:
User's login name. The default length is 8 characters. User's encrypted password. User's ID User's login group ID General information
about the user User's home directory User's login shell
The name field is the login used to access the computer account, and the uid field is the number associated with it. They should both be
unique across the system (and often across a group of systems) since they control file access.
While it is possible to have multiple entries with identical login names and/or identical user gid's, it is usually a mistake to do so.
Routines that manipulate these files will often return only one of the multiple entries, and that one by random selection.
The login name must never begin with a hyphen (-); also, it is strongly suggested that neither uppercase characters or dots (.) be part of
the name, as this tends to confuse mailers. No field may contain a colon (:) as this has been used historically to separate the fields in
the user database.
The password field is the encrypted form of the password. If the password field is empty, no password is required to gain access to the
machine. Because these files contain the encrypted user passwords, they should not be readable by anyone without appropriate privileges.
Use the command to edit password entries. This ensures that the hashed password database is rebuilt. If you have enhanced security
installed on your system, the password field contains an asterisk (*). The encrypted password is stored in the user's protected password
database.
The gid field is the group that the user will be placed in upon login. Since the operating system supports multiple groups (see the groups
command) this field currently has little special meaning.
The gecos field normally contains comma (,) separated subfields as follows:
User's full name User's office number User's work phone number User's home phone number
This information is used by the finger command.
The user's home directory is the full UNIX pathname where the user will be placed on login.
The shell field is the command interpreter the user prefers. If the shell field is empty, the Bourne shell (/bin/sh) is assumed.
The allowable values for the UID are unsigned numbers from 0 to 65535.
The command pwck can be used to verify the accuracy of data entered in the passwd file.
EXAMPLES
root:TZVtfX5VbS3KY:0:1:System PRIVILEGED Account,,,:/:/bin/sh adm:*:5:16:Admin Login:/usr/adm:/bin/sh operator:HdgoklKwZOlvU:25:28:System
PRIVILEGED Account,,,:/etc/operator: guest:Nologin:-2:-2:anonymous NFS user:/:/bin/date osfuser:If2eoZ6gmghJo:50002:15:Osf
User:/usr/users/osfuser:/bin/csh marcy:*:201:20:Marcy Swanson,dev,x1234:/usr/users/marcy:/bin/sh
RELATED INFORMATION
Functions: getpwent(3)
Commands: login(1), passwd(1), pwck(8), vipw(8)
Files: prpasswd(4) delim off
passwd(4)