Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to create a file even root user also cant delete?
Top Forums UNIX for Dummies Questions & Answers How to create a file even root user also cant delete? Post 302891931 by bakunin on Sunday 9th of March 2014 07:11:35 PM
Old 03-09-2014
You can create a DCE (Distributed Computing Environment) domain, where the local root is not the domain root (similar to what is known today as "Active Directory" in Windoze-speak). You can effectively forbid the local root access to files within DCE. I wouldn't suggest such a setup at all, but it is possible.

The most common way of disallowing root to modify a file is to write to a network connection which stores everything at some remote location where the root in question is not root any more - syslog, for instance, can be configured this way. root has the power to switch that mechanism off, but you could at least see that it has been tampered with.

I hope this helps.

bakunin
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

create or modify user account to have same access as root

Is there a way to create or better yet modify a user account so it has the same privs as root? (6 Replies)
Discussion started by: xadamz23
6 Replies

2. Red Hat

How can l create a user that as all the Attribute & Privilages of root

Hi, Is it possible to create a user in Linux 8.0 with all the attribute and the privilages of super user (root). Without using root as the logg in name. Thanx (6 Replies)
Discussion started by: kayode
6 Replies

3. UNIX for Advanced & Expert Users

Other than root user .Normal user is unable to create files

Hi all, I am using Sun Solaris 9 .In this system normal users unable to create files from the command line.I added these users in bin,adm and even root group i found them unable to create a file. (1 Reply)
Discussion started by: mallesh
1 Replies

4. AIX

create user like root

hello I would like to create another user like root With smit user, I have duplicate all the configuration from root to root2 (groupe, secondary group, administrative, etc...) But when I connect with root2, i don't go to all directory: "permission denied !" I don't understand where is the... (10 Replies)
Discussion started by: pascalbout
10 Replies

5. Shell Programming and Scripting

How to create a directory inside root as different user

Hi All, I have directory under /opt/test. The ownership of the test directory is root:root. I have login to the server as test user. I need to have some script to create a directory inside /opt/test. This script will be called as test user. When I try to execute... (4 Replies)
Discussion started by: kalpeer
4 Replies

6. UNIX for Dummies Questions & Answers

user able to delete directory owned by root

I've tried to figure this out. I'm only about 6 mos into my AIX admin duties, but I've got a "security" problem I can't figure out. I've created a sub directory as follows: drwx------ 2 root system 256 Apr 13 16:02 mike I've logged in another session with the following user: $ id... (2 Replies)
Discussion started by: mpheine
2 Replies

7. Solaris

Unable to create or delete a directory in /usr with root user

Hi All, I am trying to uninstall jdk 1.5 from my Solaris 10 64 bit but some how was not successful.so tried to delete the folder of jdk from /usr but its throughing error as: Unable to remove directory jdk: Read-only file system Even I tried to create a dir in /usr but its not allowing me... (4 Replies)
Discussion started by: Pshah
4 Replies

8. AIX

How to create a user as a root

please give me any suggestion, how can i create user as root privilege. (please give me very safest way because i have production servers) (5 Replies)
Discussion started by: reply.ravi
5 Replies

9. UNIX for Advanced & Expert Users

Root and non-root user not able to delete the file

Hi!! one strange problem occurred with my RHEL 5 box. i'm having logs folder with ownership of non-root user. Created some files with root user under logs folder. here is the scene: -rw-r----- 1 root root 1048227 Feb 28 12:34 SystemOut_13.02.28_12.34.10.log -rw-r----- 1 root root ... (6 Replies)
Discussion started by: sukhdip
6 Replies

10. UNIX for Dummies Questions & Answers

Create user with sudo ability to root.

Hi All, I need to give an user sudo ability to root. We have also generated RSA key but unable to proceed further. For example after a user logs into the server normally and when he executes below command $ssh root@server_name This should take you to root prompt # Please help me.... (3 Replies)
Discussion started by: Rockyc3400
3 Replies

LEARN ABOUT OSF1

nisserver

nisserver(1M)						  System Administration Commands					     nisserver(1M)

NAME

       nisserver - set up NIS+ servers

SYNOPSIS

       /usr/lib/nis/nisserver -r [-x] [-f] [-v] [-Y] [ -d NIS+_domain] [ -g NIS+_groupname] [-l network_passwd]

       /usr/lib/nis/nisserver -M [-x] [-f] [-v] [-Y] -d NIS+_domain [ -g NIS+_groupname] [ -h NIS+_server_host]

       /usr/lib/nis/nisserver -R [-x] [-f] [-v] [-Y] [ -d NIS+_domain] [ -h NIS+_server_host]

DESCRIPTION

       The   nisserver shell script can be used to set up  a root master, non-root master, and replica NIS+ server with level 2 security (DES). If
       other authentication mechanisms are configured with nisauthconf(1M), nisserver will set up a NIS+ server using those  mechanisms.  nisauth-
       conf(1M) should be used before nisserver.

       When  setting up a new domain, this script creates the NIS+ directories (including groups_dir and org_dir) and system table objects for the
       domain specified. It does not populate the tables. nispopulate(1M) must be used to populate the tables.

OPTIONS

       -d NIS+_domain	       Specifies the name for the NIS+ domain.	The default is your  local domain.

       -f		       Forces the  NIS+ server setup without prompting for confirmation.

       -g NIS+_groupname       Specifies the  NIS+ group name for the new domain.  This option is not valid with -R option.  The default group	is
			       admin.<domain>.

       -h NIS+_server_host     Specifies  the  hostname  for the NIS+ server.  It must be a valid host in the local domain.  Use a fully qualified
			       hostname (for example, hostx.xyz.sun.com.) to specify a host outside of your local domain.  This  option  is   only
			       used  for setting up non-root master or replica servers. The default for non-root master server setup is to use the
			       same list of servers as the parent domain. The default for replica server setup is the local hostname.

       -l network_password     Specifies the network password with which to create the credentials for the root master	server.   This	option	is
			       only  used  for	master root server setup (-r option).  If this option is not specified, the script prompts you for
			       the login password.

       -M		       Sets up the specified host as a master server. Make sure that rpc.nisd(1M) is running  on  the  new  master  server
			       before this command is executed.

       -R		       Sets up the specified host as a replica server.	Make sure that rpc.nisd is running on the new replica server.

       -r		       Sets up the server as a root master server.  Use the -R option to set up a root replica server.

       -v		       Runs the script in verbose mode.

       -x		       Turns  the  echo mode on.  The script just prints the commands that it would have executed.  Note that the commands
			       are not actually executed.  The default is off.

       -Y		       Sets up a NIS+ server with NIS-compatibility mode.  The default is to set up the server	without  NIS-compatibility
			       mode.

USAGE

       Use  the first synopsis of the command (-r) to set up a root master server. To run the command,	you must be logged in as super-user on the
       server machine.

       Use the second synopsis of the command (-M) to set up a non-root master server for the specified domain. To run the command,  you  must	be
       logged  in  as  a NIS+ principal on a NIS+ machine and have write permission to the parent directory of the domain that you are setting up.
       The new non-root master server machine must already be an  NIS+ client (see nisclient(1M)) and have the	rpc.nisd(1M) daemon running.

       Use the third synopsis of the command (-R) to set up a replica server for both root and non-root domains. To run the command, you  must	be
       logged  in  as a NIS+ principal on a NIS+ machine and have write permission to the parent directory of the domain that you are replicating.
       The new non-root replica server machine must already be an  NIS+ client and have the  rpc.nisd daemon running.

EXAMPLES

       Example 1: Setting up Servers

       To set up a root master server for domain  sun.com.:

       root_server# /usr/lib/nis/nisserver -r -d sun.com.

       For the following examples make sure that  the new servers are  NIS+ clients and that rpc.nisd is running on these hosts  before  executing
       nisserver. To set up a replica server for the sun.com. domain on host sunreplica:

       root_server# /usr/lib/nis/nisserver -R -d sun.com. -h sunrep

       To set up a non-root master server for domain xyz.sun.com. on host sunxyz with the  NIS+ groupname as admin-mgr.xyz.sun.com.:

       root_server# /usr/lib/nis/nisserver -M -d xyz.sun.com. -h sunxyz 
       -g admin-mgr.xyz.sun.com.

       To set up a non-root replica server for domain xyz.sun.com. on host sunabc:

       sunxyz# /usr/lib/nis/nisserver -R -d xyz.sun.com. -h sunabc

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       nis+(1),  nisgrpadm(1),	nismkdir(1),  nisaddcred(1M),  nisauthconf(1M), nisclient(1M), nisinit(1M), nispopulate(1M), nisprefadm(1M), nis-
       setup(1M), rpc.nisd(1M),  attributes(5)

NOTES

       NIS+ might not be supported in future releases of the SolarisTM Operating Environment. Tools to aid the migration from  NIS+  to  LDAP  are
       available in the Solaris 9 operating environment. For more information, visit http://www.sun.com/directory/nisplus/transition.html.

SunOS 5.10							    13 Dec 2001 						     nisserver(1M)
All times are GMT -4. The time now is 03:18 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy