Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Role based access and security
Special Forums Cybersecurity Role based access and security Post 302968520 by sunnysthakur on Thursday 10th of March 2016 07:52:55 AM
Old 03-10-2016
Role based access and security
Hello,

We are planning to setup a Role based access and security to our Linux servers. We can use mostly use sudo for providing the limited access to service and files.
My query is that how can we manage that members can edit/access only specific files (it would be 1 or multiple files or placed on multi location), This seems to be very hectic if can manage from sudo to add all the entries there.

Can you please let me know the better solution for this as we have a sub teams and that team would have multiple members working for various areas.

Is ACL would be a better option somehow ?
 

6 More Discussions You Might Find Interesting

1. Solaris

Security of root access

Hi, The security auditor give a this statement , what to do ? On my solaris system (S10) "The User ID "root" should not be used on the system - the su and the priviledged account should be used from each administrator for accountability purposes" What to do ? (3 Replies)
Discussion started by: falcon16
3 Replies

2. SuSE

"scp" access denied:/etc/security/access.conf

Guys i have 2 SUSE Linux Enterprise Server 10 SP1 (i586) boxes.if i take a look into /etc/security/access.conf ,i see following lines at the eof # All other users should be denied to get access from all sources. #- : ALL : ALL - : myID : ALL now earlier i had written scripts where files... (1 Reply)
Discussion started by: ak835
1 Replies

3. AIX

role based user

Hi .. I need to assign role based permission to users... How to assign role based permission in aix... Thanks.. (4 Replies)
Discussion started by: sumathi.k
4 Replies

4. Linux

Web based X11 access

Hi guys ;) I'm new here. I had been reading a long time here on the forums but now I registered finally. And got a question for you. Since yesterday I've got successfully installed a X11-connection from my WinXP to a RedHat EL 5 - Box. Now there's a web portal needed. So I have to make a... (2 Replies)
Discussion started by: supermaRiio
2 Replies

5. Homework & Coursework Questions

Security issues with universal access of file

Use and complete the template provided. The entire template must be completed. If you don't, your post may be deleted! 1. The problem statement, all variables and given/known data: If you look at the permissions associated with a symbolic link, it has universal access. Does this lead to... (0 Replies)
Discussion started by: linux17
0 Replies

6. Red Hat

How do I install security patches with no internet access?

Hi, I'm pretty new to Linux and I want to download security patches and install them on RHEL 5.4. I've searched the red hat web site but cant seem to find where the download link is. (5 Replies)
Discussion started by: Jardoo
5 Replies

LEARN ABOUT CENTOS

acl_extended_fd

ACL_EXTENDED_FD(3)					   BSD Library Functions Manual 					ACL_EXTENDED_FD(3)

NAME

     acl_extended_fd -- test for information in the ACL by file descriptor

LIBRARY

     Linux Access Control Lists library (libacl, -lacl).

SYNOPSIS

     #include <sys/types.h>
     #include <acl/libacl.h>

     int
     acl_extended_fd(int fd);

DESCRIPTION

     The acl_extended_fd() function returns 1 if the file identified by the argument fd is associated with an extended access ACL. The function
     returns 0 if the file does not have an extended access ACL.

     An extended ACL is an ACL that contains entries other than the three required entries of tag types ACL_USER_OBJ, ACL_GROUP_OBJ and ACL_OTHER.
     If the result of the acl_extended_fd() function for a file object is 0, then the ACL defines no discretionary access rights other than those
     already defined by the traditional file permission bits.

     Access to the file object may be further restricted by other mechanisms, such as Mandatory Access Control schemes. The access(2) system call
     can be used to check whether a given type of access to a file object would be granted.

RETURN VALUE

     If successful, the acl_extended_fd() function returns 1 if the file object identified by fd has an extended access ACL, and 0 if the file
     object identified by fd does not have an extended access ACL. Otherwise, the value -1 is returned and the global variable errno is set to
     indicate the error.

ERRORS

     If any of the following conditions occur, the acl_extended_fd() function returns -1 and sets errno to the corresponding value:

     [EBADF]		The fd argument is not a valid file descriptor.

     [ENOTSUP]		The file system on which the file identified by fd is located does not support ACLs, or ACLs are disabled.

STANDARDS

     This is a non-portable, Linux specific extension to the ACL manipulation functions defined in IEEE Std 1003.1e draft 17 ("POSIX.1e", aban-
     doned).

SEE ALSO

     access(2), acl_get_fd(3), acl(5)

AUTHOR

     Written by Andreas Gruenbacher <a.gruenbacher@bestbits.at>.

Linux ACL							  March 23, 2002							 Linux ACL
All times are GMT -4. The time now is 12:26 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy