09-12-2013
The security model is changed quite a bit in Solaris 11. Perhaps a dev environment would provide you a suitable testing ground to determine how these changes will impact your users?
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
I have a new server ( host A ) and a existing server ( host B ) , I will move all data from host A to host B , could suggest what is the best method to move all the user data including /etc/passwd . /etc/shadow , /etc/group , ~userid/.bash_profile , /home , how to make the user can use the same... (4 Replies)
Discussion started by: ust
4 Replies
2. Solaris
Hi.........
I'm trying to set a group of users to login to do a required super-user tasks without knowing the super-user passwd.
For example...a user popodude logs in as self with passwd..system accepts the password & then automatically asks for the super-user account passwd.
My goal is... (1 Reply)
Discussion started by: Remi
1 Replies
3. UNIX for Advanced & Expert Users
hi all
i am writing a script to create user and group from the input given to script
for eg. script needs to values
1. mode - 1 or 2
2. id - if mode is 1 then id should be 2 char like x1 / v1 / v2
if mode is 2 then id should be 1 char like x / v / e
from these to values group is... (1 Reply)
Discussion started by: zedex
1 Replies
4. UNIX and Linux Applications
I am seeking help on this issue.
When I installed Oracle 10g on Solaris 9 sparc box, I created user oracle and assigned oracle user to primary group Oinstall and second group dba. Then installation went successful. After that, I created another user ccmm and assigned ccmm to dba group. Then I... (1 Reply)
Discussion started by: duke0001
1 Replies
5. UNIX for Advanced & Expert Users
Hi All,
I want trigger a script "abhishektest.sh "whenever a mail come to a user say "abhishek" in my unix server. I dont have root permission.
So, for doing this
i added abhishek : "|/export/abhishek/bin/wr_test.sh in /etc/mail/aliases
in wr_test file : i need to put this line, as i... (2 Replies)
Discussion started by: mindtee_abhi
2 Replies
6. UNIX for Dummies Questions & Answers
Hi.
I have a directory structure built with links. For example: /home/user1 is a link to /var/123/user1
can i set the home variable in the .profile of the user to use a link? or it has to be a "real" directory?
tks (1 Reply)
Discussion started by: mrodrig
1 Replies
7. Shell Programming and Scripting
Hi
i have a user "SYSTEM"
i want to set the below command in his .profile for an alias:
who | awk '{print $1}'| sed '/SYSTEM/d' | sed '/root/d' |xargs -i pkill -u {}
i tried as below:
alias stop = " who | awk '{print $1}'| sed '/SYSTEM/d' | sed '/root/d' |xargs -i pkill -u {}"
... (3 Replies)
Discussion started by: joycesolomon
3 Replies
8. UNIX for Dummies Questions & Answers
How can I modify the path variable of a particular user in all shells? I searched in this forum and as per the advice in some threads created a new file .profile in $HOME directory with the new PATH, but it did not work. (5 Replies)
Discussion started by: JoyceBabu
5 Replies
9. Red Hat
The root user runs the following
ulimit -a | grep open
and gets a result of
open files (-n) 8162
A user runs the same command and gets a result of
open files (-n) 2500
How can you set the ulimit of the user to... (2 Replies)
Discussion started by: jsanders
2 Replies
10. UNIX for Beginners Questions & Answers
Hi All,
We have a scenario in production where we want only one user from a group to modify the file. The file is not set to write permission for application manager.
-r--r--r-- 1 amgr u00 15661716 Aug 30 00:06 DCI.dat
So here amgr will have permission to edit the file. We want a... (10 Replies)
Discussion started by: arunkumar_mca
10 Replies
LEARN ABOUT OPENSOLARIS
pam_nologin
PAM_NOLOGIN(8) Linux-PAM Manual PAM_NOLOGIN(8)
NAME
pam_nologin - Prevent non-root users from login
SYNOPSIS
pam_nologin.so [file=/path/nologin] [successok]
DESCRIPTION
pam_nologin is a PAM module that prevents users from logging into the system when /var/run/nologin or /etc/nologin exists. The contents of
the file are displayed to the user. The pam_nologin module has no effect on the root user's ability to log in.
OPTIONS
file=/path/nologin
Use this file instead the default /var/run/nologin or /etc/nologin.
successok
Return PAM_SUCCESS if no file exists, the default is PAM_IGNORE.
MODULE TYPES PROVIDED
The auth and acct module types are provided.
RETURN VALUES
PAM_AUTH_ERR
The user is not root and /etc/nologin exists, so the user is not permitted to log in.
PAM_BUF_ERR
Memory buffer error.
PAM_IGNORE
This is the default return value.
PAM_SUCCESS
Success: either the user is root or the nologin file does not exist.
PAM_USER_UNKNOWN
User not known to the underlying authentication module.
EXAMPLES
The suggested usage for /etc/pam.d/login is:
auth required pam_nologin.so
NOTES
In order to make this module effective, all login methods should be secured by it. It should be used as a required method listed before any
sufficient methods in order to get standard Unix nologin semantics. Note, the use of successok module argument causes the module to return
PAM_SUCCESS and as such would break such a configuration - failing sufficient modules would lead to a successful login because the nologin
module succeeded.
SEE ALSO
nologin(5), pam.conf(5), pam.d(5), pam(7)
AUTHOR
pam_nologin was written by Michael K. Johnson <johnsonm@redhat.com>.
Linux-PAM Manual 09/19/2013 PAM_NOLOGIN(8)