Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Restrict user access
Operating Systems Linux Red Hat Restrict user access Post 302583128 by verdepollo on Monday 19th of December 2011 03:53:24 PM
Old 12-19-2011
From the looks of the list, it seems everybody has access (read access at least) to those files, not just "ZODCIFUSR".

Anyway, you can remove that user from GID 0 and it should still work fine since most of the folders also belong to GID 200.

The only "problem" I see is with /usr/sap. Either you take away permissions from the whole group and make ZODCIFUSR a member of secondary group "sapsys", or you use ACLs.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

restrict tcp-port access

Hi Is there any way to restrict the TCP-IP port usage. I want to restrict TCP-IP port 1500/1550 to the oracle osuser. Tanks in advance. Remi (2 Replies)
Discussion started by: remivisser
2 Replies

2. HP-UX

How to restrict a user group to access the kernel

Hi, Please any one can help me to know that how we can restrict a user group to access the kernel at all. (0 Replies)
Discussion started by: harishankar
0 Replies

3. Red Hat

restrict access of a user to two directories only

Hi all, I am using RHEL 5.0 I need a user say test to have full access to two directories, say /tmp1 & /tmp2 only other than his home directory. I do not want to change his login shell which is ksh or bash by default. Moreover, he should not even have read access of other directories. ... (10 Replies)
Discussion started by: vikas027
10 Replies

4. UNIX for Advanced & Expert Users

Restrict FTP access to a single directory for only one user.

Hi All, It will be very great if you can help me in this issue. Thanks in advance. I need to enable FTP on a solaris9 server. I need to create a new user some "xxxxxx" and he can only FTP the files to and from between /tftpboot directory and network devices. Other users should not... (8 Replies)
Discussion started by: santhoshkumar_d
8 Replies

5. UNIX for Dummies Questions & Answers

Restrict user access to their home dir

Hi! i'm using FreeBSD 6.2 and hosting my pc to frens in particular of sensitive information being saved to the PC, i would like to know is it possible for me to restrict user access to their /home dir. only? and also, i wanted to restrict them listing files under /etc thanks all! (10 Replies)
Discussion started by: rdns
10 Replies

6. UNIX for Advanced & Expert Users

Restrict access to specific users.

Hi All! I would like to know if there is any specific way by which I can restrict access to apecific users (ip addresses). OS : Red hat linux Thanks! nua7 (6 Replies)
Discussion started by: nua7
6 Replies

7. UNIX for Advanced & Expert Users

Restrict Access to the folder

Hi I have requirement to create 3 new users on my server but to restrict their access to a set of particular folders. /export/home/kapil/shared, /export/home/kapil/shared/Folder1 /export/home/kapil/shared/Folder2 These folders should be accessible to all the 3 users and to me too.... (1 Reply)
Discussion started by: kapilk
1 Replies

8. UNIX for Dummies Questions & Answers

Restrict user access.

Hi All, How can we restrict a particular user access to a particular shell in solaris 10. Thanks in Advance. (5 Replies)
Discussion started by: rama krishna
5 Replies

9. Ubuntu

Restrict SUDO Access

Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux Hi Folks, Please help me. I am bit struck here. Here is the OS info. Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux I have a... (17 Replies)
Discussion started by: explorer007
17 Replies

10. UNIX for Dummies Questions & Answers

Restrict access

I'm trying to use squid to restrict elinks' access to certain websites(only http traffic). I have tried some configs in squid.conf but no luck. Hope someone has a bit of time to explain me how can you make these config's :) ---------- Post updated at 05:40 PM ---------- Previous update was at... (1 Reply)
Discussion started by: Birnbacher
1 Replies

LEARN ABOUT OSX

pts_delete

PTS_DELETE(1)						       AFS Command Reference						     PTS_DELETE(1)

NAME

       pts_delete - Deletes a Protection Database entry

SYNOPSIS

       pts delete -nameorid <user or group name or id>+
	   [-cell <cell name>] [-noauth] [-localauth]
	   [-force] [-help]

       pts d -na <user or group name or id>+
	   [-c <cell name>] [-no] [-l] [-f] [-h]

DESCRIPTION

       The pts delete command removes each entry specified by the -nameorid argument from the Protection Database. Deleting entries affects other
       parts of the system in various ways:

       o   Deleted users and groups still appear on access control lists (ACLs), but are listed by AFS UID or GID rather than by name, because
	   there is no longer an associated name to which to translate the ID. To remove these obsolete entries from ACLs, use the fs cleanacl
	   command.

       o   Deleting a user or machine's entry removes it from the membership list of any group to which it belonged.

       o   Deleting a group entry removes it from the membership list of any user or machine entry that belonged to the group, and also increments
	   the group-creation quota of the group's creator by one, even if the creator no longer owns the group.

       To remove a user or machine from a group without actually deleting the entry, use the pts removeuser command.

OPTIONS

       -nameorid <user or group name or ID>+
	   Specifies the name or AFS UID of each user, the name or AFS GID of each group, or the IP address (complete or wildcard-style) or AFS
	   UID of each machine entry to delete. It is acceptable to mix users, machines, and groups on the same command line, as well as names (IP
	   addresses for machines) and IDs. Precede the GID of each group with a hyphen to indicate that it is negative.

       -cell <cell name>
	   Names the cell in which to run the command. For more details, see pts(1).

       -force
	   Enables the command to continue executing as far as possible when errors or other problems occur, rather than halting execution at the
	   first error.

       -help
	   Prints the online help for this command. All other valid options are ignored.

       -localauth
	   Constructs a server ticket using a key from the local /etc/openafs/server/KeyFile file. Do not combine this flag with the -cell or
	   -noauth options. For more details, see pts(1).

       -noauth
	   Assigns the unprivileged identity anonymous to the issuer. For more details, see pts(1).

EXAMPLES

       The following example deletes the user entries "pat" and "terry":

	  % pts delete pat terry

       The following example deletes the Protection Database entry of the group with AFS GID -215.

	  % pts delete -215

PRIVILEGE REQUIRED

       The issuer must belong to the system:administrators group to delete user and machine entries. To delete group entries, the issuer must
       either own the group or belong to the system:administrators group.

SEE ALSO

       fs_cleanacl(1), pts(1), pts_removeuser(1)

COPYRIGHT

       IBM Corporation 2000. <http://www.ibm.com/> All Rights Reserved.

       This documentation is covered by the IBM Public License Version 1.0.  It was converted from HTML to POD by software written by Chas
       Williams and Russ Allbery, based on work by Alf Wachsmann and Elizabeth Cassell.

OpenAFS 							    2014-04-08							     PTS_DELETE(1)
All times are GMT -4. The time now is 11:39 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy