Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Sudo access of rm to non-root user
Operating Systems Solaris Sudo access of rm to non-root user Post 303002431 by rbatte1 on Thursday 24th of August 2017 05:19:51 AM
Old 08-24-2017
I agree that the process that creates the file needs to be looked at first.
  • What can you tell us about it?
  • Does it write anything useful to the file or is it created empty?
  • Why can the application account not create it?

Do you have write access to the directory that this file is in? If so, can you not remove the file anyway? (or is the sticky bit set?)
If the file has to be removed, your application must be able to create a replacement else


There are certainly several ways to grant a remove privilege, but that's probably not the best way to do it.
These 2 Users Gave Thanks to rbatte1 For This Post:
Don Cragun solaris_1977
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

2. AIX

sudo user access

I have installed sudo on AIX 6100-04 and want to know how do I set it up for a user to be able to run only some commands? I want to give the user the rights to only cd to certain directories and run the ls command to name a few? Are there any issues with running sudo when the user is forced to... (2 Replies)
Discussion started by: daveisme
2 Replies

3. Shell Programming and Scripting

Cron job initiating ssh AND sudo (from user, not root)

I've been bashing my head on the desk for 2 days trying to get this to work, but I've had no luck. I'll try to be as clear as possible in my explanation without dragging out the details. I'm trying to set up a cron job for user "john" which runs a script. This script initiates an ssh connection to... (5 Replies)
Discussion started by: eh3civic
5 Replies

4. UNIX for Dummies Questions & Answers

sudo/root access

I'm actually working with a Ubuntu-System here and have a question about executing a command with 'sudo'. I tried and got a error message like "not allowed". After this I logged in with 'sudo -s' and typed the command without 'sudo'. This worked well. Can please somebody explain me this... (0 Replies)
Discussion started by: daWonderer
0 Replies

5. UNIX for Dummies Questions & Answers

Sudo to delegate permission from non-root user to another non-root user

I've been through many threads before i decide to create a separate thread. I can't really find the solution to my (simple) problem. Here's what I'm trying to achieve: As "canar" user I want to run a command, let's say "/opt/ocaml/bin/ocaml" as "duck" user. The only to achieve this is to... (1 Reply)
Discussion started by: canar
1 Replies

6. AIX

how to remove sudo access from a user ?

Hello Folks, I need help on removing sudo access on one id but first of all, can i confirm that the user below is having sudo access ? if he did have sudo access, how to remove ? thanks alrsprd3:root-/etc> more sudoers | grep fzcx0l fzcx0l ALL=(ALL) ALL alrsprd3:root-/etc> (2 Replies)
Discussion started by: wingcross
2 Replies

7. Shell Programming and Scripting

How to give root access to non root user?

Currently in my system Red Hat is installed. And Many user connect to my machine via SSH Techia Terminal. I want to give some users a root level access. Can anyone please help me how to make it possible. I too searched on the Google but didn't find the correct way Regards ADI (4 Replies)
Discussion started by: adisky123
4 Replies

8. UNIX for Dummies Questions & Answers

Create user with sudo ability to root.

Hi All, I need to give an user sudo ability to root. We have also generated RSA key but unable to proceed further. For example after a user logs into the server normally and when he executes below command $ssh root@server_name This should take you to root prompt # Please help me.... (3 Replies)
Discussion started by: Rockyc3400
3 Replies

9. Red Hat

Sudo to user other than root but do not allow sudo to root

I have a set of RHEL 5 boxes running our ERP software on Oracle databases. I need to allow my DBA's to su to oracle and one other account (banner) without knowing the oracle or banner password. But I need to prevent them from su'ing to any other user especially root. I only want them to be able to... (1 Reply)
Discussion started by: westmoreland
1 Replies

10. UNIX for Advanced & Expert Users

How to provide root access via sudo with restrictions?

Hi, I have a requirement to provide root access but user should not run some specific commands, How it is possible. following is my configuration at sudoers file, Cmnd_Alias MYLIMIT = /usr/bin/passwd /sbin/shutdown /usr/bin/reboot /usr/sbin/visudo /bin/vi /usr/bin/vim test2... (5 Replies)
Discussion started by: anuragr
5 Replies

LEARN ABOUT PLAN9

open

OPEN(5) 							File Formats Manual							   OPEN(5)

NAME

       open, create - prepare a fid for I/O on an existing or new file

SYNOPSIS

       Topen	tag[2] fid[2] mode[1]
       Ropen	tag[2] fid[2] qid[8]

       Tcreate	tag[2] fid[2] name[28] perm[4] mode[1]
       Rcreate	tag[2] fid[2] qid[8]

DESCRIPTION

       The  open  request  asks  the file server to check permissions and prepare a fid for I/O with subsequent read and write messages.  The mode
       field determines the type of I/O: 0, 1, 2, and 3 mean read access, write access, read and write access, and execute access, to  be  checked
       against	the  permissions  for  the  file.  In addition, if mode has the OTRUNC (0x10) bit set, the file is to be truncated, which requires
       write permission (if the file is append-only, and permission is granted, the open succeeds but the file will not be truncated); if the mode
       has  the  ORCLOSE  (0x40) bit set, the file is to be removed when the fid is clunked, which requires permission to remove the file from its
       directory.  If other bits are set in mode they will be ignored.	It is illegal to write a directory, truncate it, or attempt to	remove	it
       on  close.  If the file is marked for exclusive use (see stat(5)), only one client can have the file open at any time.  That is, after such
       a file has been opened, no other open will succeed until fid has been clunked.  All these permissions are checked at the time of  the  open
       request; subsequent changes to the permissions of files do not affect the ability to read, write, or remove an open file.

       The  create  request  asks  the	file  server  to  create a new file with the name supplied, in the directory (dir) represented by fid, and
       requires write permission in the directory.  The owner of the file is the implied user id of the request, the group of the file is the same
       as dir, and the permissions are the value of
						       (perm&(~0777|0111)) | (dir.perm&perm&0666)
       if a regular file is being created and
							   (perm&~0777) | (dir.perm&perm&0777)
       if  a  directory is being created.  This means, for example, that if the create allows read permission to others, but the containing direc-
       tory does not, then the created file will not allow others to read the file.

       Finally, the newly created file is opened according to mode, and fid will represent the newly opened file.  Mode is not checked against the
       permissions in perm.  The qid for the new file is returned with the create reply message.

       Directories are created by setting the CHDIR bit (0x80000000) in the perm.

       The names .  and ..  are special; it is illegal to create files with these names.

       It is an error for either of these messages if the fid is already the product of a successful open or create message.

       An  attempt to create a file in a directory where the given name already exists will be rejected; in this case, the create system call (see
       open(2)) uses open with truncation.  The algorithm used by create is: first walk to the directory to contain  the  file.   If  that  fails,
       return  an  error.   Next  walk	to  the specified file.  If the walk succeeds, send a request to open and truncate the file and return the
       result, successful or not.  If the walk fails, send a create message.  If that fails, it may be because the file  was  created  by  another
       process	after  the  previous  walk  failed,  so  (once) try the walk and open again.  For the behavior of create on a union directory, see
       bind(2).

ENTRY POINTS

       Open and create both generate open messages; only create generates a create message.

																	   OPEN(5)
All times are GMT -4. The time now is 08:31 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy