Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Need help with user rights (Permission denied)
Top Forums Shell Programming and Scripting Need help with user rights (Permission denied) Post 302730067 by Don Cragun on Monday 12th of November 2012 06:20:34 AM
Old 11-12-2012
Blade Be VERY VERY careful when making log data public.
If and only if there is no sensitive data in the file, then:
Code:
chmod o+r /var/log/iptraf/tcp_udp_services-eth0.log

will grant read permission for that file to everyone who is not the file's owner and is not a member of the file's group (which fits the intended use for user nobody).

The command:
Code:
chmod -R o+r /var/log/iptraf

will change the directory named and all files in the file hierarchy below that directory. But, again, log files in an iptraf directory may well show details about users on your system, the sites to which they connect, and data sent to and received from those sites that should be considered PRIVATE data and not made visible to everyone who wants to snoop around on your system.

If the file is removed and recreated by some process on your system you will either need to run this chmod command in or before running this script or you will need to track down the process(es) that create(s) this log file and either change the umask when creating the file or change its mode immediately after creating it to grant read permission to everyone.

Note that a script running as nobody won't have permission to use the above command to change the mode; chmod will succeed only if it is run by the file's owner or by someone with appropriate privileges (i.e., root on systems that don't have extended privileges mechanisms).
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

permission denied??

i'm trying to set up my internet connection and i was told i need to edit the file /etc/ppp/pap-secrets but i get a permission denied message...why?? (6 Replies)
Discussion started by: justchillin
6 Replies

2. UNIX for Dummies Questions & Answers

./ Permission Denied.

Could someone tell me why I am getting a permission denied message when I attempt to run this on an out file? Thanks! (8 Replies)
Discussion started by: trouscaillon
8 Replies

3. UNIX for Advanced & Expert Users

Permission denied

Hi, I can not execute a .env file $ . /Data/oracle/d03/mydbora/8.0.6/MYDB.env -bash: /Data/oracle/d03/mydbora/8.0.6/MYDB.env: Permission denied Even if : -rwxrwxrwx 1 oracle dba 2903 Mar 5 2007 /Data/oracle/d03/mydbora/8.0.6/MYDB.env Please help. Many thanks. (1 Reply)
Discussion started by: big123456
1 Replies

4. UNIX for Dummies Questions & Answers

Why do I keep getting .:Permission denied?

I'll start off by saying that I know very little about Unix - however, I do know that I have a .profile file in my home directory, and that I should be able to invoke it by typing . profile. However, when I do this for ANY .filename, I get ".: Permission denied". I'm pretty sure that there is... (12 Replies)
Discussion started by: bbersani
12 Replies

5. UNIX for Dummies Questions & Answers

Permission denied

I would like to copy data from local mechine to cluster. Basically, I typed scp -r DVD/ acount@cluster:/ it shows Permission denied. Could anyone please give me a clue to write permission on cluster, please? The poperty of where on cluster I'd like to put is drwxr-xr-x Any idea would... (1 Reply)
Discussion started by: su_in99
1 Replies

6. UNIX for Advanced & Expert Users

Permission denied, but user is owner and has group ownership too

Folks, I have a problem with a particular file, that seems to have some kind of lock on it, that takes around 1 hour approx to timeout. I have used lsof and nothing has an open file handle on it, yet I cannot open it. My user/group owns the file and I can create edit/delete files in... (6 Replies)
Discussion started by: scottrus
6 Replies

7. UNIX for Dummies Questions & Answers

changing password with sudo user " permission denied"

HI All, I am using solaris i created a user adam and updated his permissions in vi sudoers file as follows adam ALL=(ALL) NOPASSWORD: ALL ........... when i create user by logging as sudo user . $ sudo useradd -d /home/kalyan -m -s /bin/sh kalyan sudo: not found ... (6 Replies)
Discussion started by: kalyankalyan
6 Replies

8. Red Hat

Permission denied

Hi guys im new to this db i have a small prob while installing websphereportal6.1i think i was installed succesfully but the error im getting is while starting server. check this out # ./serverStatus.sh -all Error loading: /usr/wps61/AppServer/java/jre/bin/classic/libjvm.so: cannot... (1 Reply)
Discussion started by: varma917989
1 Replies

9. Shell Programming and Scripting

Permission denied

I created a user so that when he logs in he will be directed to a menu /etc/passwd user1:x:115:1:Support -SysAd:/export/home/user1:/export/home/suppotrmenu/script.sh However when I logged in remotely from another server by ssh user1@1.1.1.1 , it saysexport/home/suppotrmenu/script.sh:... (4 Replies)
Discussion started by: lhareigh890
4 Replies

10. Ubuntu

Permission denied

Trying to get date into the txt file. It says Permission denied. echo $(date +%I:%M:%S_%D) >> /tmp/systemd_suspend_test_err.txt exec 2>> /tmp/systemd_suspend_test_err.txt if ; then # Do the thing you want before suspend here echo "we are suspending $(date +%I:%M:%S_%D)." elif ;... (5 Replies)
Discussion started by: drew77
5 Replies

LEARN ABOUT DEBIAN

iptraf

IPTRAF(8)						      System Manager's Manual							 IPTRAF(8)

NAME

       iptraf - Interactive Colorful IP LAN Monitor

SYNOPSIS

       iptraf { [ -f ] [ -q ] [ -u ] [ { -i iface | -g | -d iface | -s iface | -z iface | -l iface } [ -t timeout ] [ -B [ -L logfile ] ] ] | [ -h
       ] }

DESCRIPTION

       iptraf is an ncurses-based IP LAN monitor that generates various network statistics including TCP info, UDP counts, ICMP and OSPF  informa-
       tion, Ethernet load info, node stats, IP checksum errors, and others.

       If  the	iptraf	command  is issued without any command-line options, the program comes up in interactive mode, with the various facilities
       accessed through the main menu.

OPTIONS

       These options can also be supplied to the command:

       -i iface
	      immediately start the IP traffic monitor on the specified interface, or all interfaces if "-i all" is specified

       -g     immediately start the general interface statistics

       -d iface
	      allows you to immediately start the detailed on the indicated interface (iface)

       -s iface
	      allows you to immediately monitor TCP and UDP traffic on the specified interface (iface)

       -z iface
	      shows packet counts by size on the specified interface

       -l iface
	      start the LAN station monitor on the specified interface, or all LAN interfaces if "-l all" is specified

       -t timeout
	      tells IPTraf to run the specified facility for only timeout minutes.  This option is used only with one of the above parameters.

       -B     redirect standard output to /dev/null, closes standard input, and forks the program into the background.	Can be used only with  one
	      of the facility invocation parameters above.  Send the backgrounded process a USR2 signal to terminate.

       -L logfile
	      allows  you  to  specify	an alternate log file name.  The default log file name is based on either the interface selected (detailed
	      interface statistics, TCP/UDP service statistics, packet size breakdown), or the instance of the facility (IP traffic  monitor,  LAN
	      station monitor).  If a path is not specified, the log file is placed in /var/log/iptraf

       -f     clears  all  locks  and  counters, causing this instance of IPTraf to think it's the first one running.  This should only be used to
	      recover from an abnormal termination or system crash.

       -u     allow use of unsupported interfaces as ethernet devices.	This is needed if you changed the name of an interface (ex:  ip  link  set
	      eth0 name foo0)

       -q     no longer needed, maintained only for compatibility.

       -h     shows a command summary

SIGNALS

	SIGUSR1 - rotates log files while program is running
	SIGUSR2 - terminates an IPTraf process running in the background.

FILES

	/var/log/iptraf/*.log - log file
	/var/lib/iptraf/* - important IPTraf data files

SEE ALSO

	Documentation/* - complete documentation written by the author

AUTHOR

       Gerard Paul Java (riker@mozcom.com)

MANUAL AUTHOR

       Frederic Peters (fpeters@debian.org), using iptraf -h General manual page modifications by Gerard Paul Java (riker@mozcom.com)

								 IPTraf Help Page							 IPTRAF(8)
All times are GMT -4. The time now is 02:26 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy