Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to identify users that have su'ed to a different account?
Top Forums UNIX for Beginners Questions & Answers How to identify users that have su'ed to a different account? Post 303032015 by bodisha on Saturday 9th of March 2019 12:26:21 PM
Old 03-09-2019
How to identify users that have su'ed to a different account?
Hello and thanks in advance for anyone that can offer me any help with this!

I'm trying to figure out a quick & easy way to see a list of everyone's effective user id... I would have thought 'w' or 'who' would be able to display if someone had switched user accounts... but it's only showing the real user ID they logged in with.

Once against... thanks for any help!
 

7 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

How to know what users are logged in to account

hello all say im logged in to account ar root , but I can't change any thing there ( like username ) if someone is already logged in also . how can I know who is ( user name ) also connected to the user im using ? (2 Replies)
Discussion started by: umen
2 Replies

2. Shell Programming and Scripting

Script to identify logged users & commands executed

Hi All, I am trying to write a script to get the user information & the command executed. I tried something like this : w | sort | awk '{print$5$6$7}' My requirement is to identify the users who execute the same command at same time. I need the user name & the... (2 Replies)
Discussion started by: vijayarajvp
2 Replies

3. UNIX for Advanced & Expert Users

audit user commands of different users under root account

Hi, I would like to know if there is anyway that I can pinpoint the user before/after he connects to the root? Also, I'm trying to find out what are the commands he inputs under root access. (6 Replies)
Discussion started by: pointgetter0
6 Replies

4. Cybersecurity

Private account for administration users

Hello, My DBAs are connecting to the unix servers with ORACLE account. I would like to create for each one of them a private user . Only after connecting in ther private user allow them to su -oracle . My problem is that i need to prevent them from connecting remothly with SSH as oracle user.... (1 Reply)
Discussion started by: yoavbe
1 Replies

5. Cybersecurity

Please help identify these user account

Please help me identify these user accounts.. bin, lp, nuucp, smbnull, mysql, tftp Can we remove these user or disable these users?We have to apply the security policy about the user identification.Since it was settup by our vendor long time ago. We do not have these informations about these... (3 Replies)
Discussion started by: rdstkg
3 Replies

6. Red Hat

how to setup An extra account with name 'unixuser' who can have the previlege to reset other users?

Hi I want to setup an extra account with name 'unixuser' who has the previlege to reset the passwords of other users like eng or myuser (other user). Please help me.. Waiting for a reply.. Thanks, MJavalkar (1 Reply)
Discussion started by: mjavalkar
1 Replies

7. Solaris

Remove a given profile from a users account

Hi Guys, I was studying RBAC and I gave a profile to a user . I have not seen anywhere that shows how to remove the profile from the users account. Can anyone show me how to remove a given profile from a users account? Thanks alot guys. (2 Replies)
Discussion started by: cjashu
2 Replies

LEARN ABOUT DEBIAN

qmail-getpw

qmail-getpw(8)						      System Manager's Manual						    qmail-getpw(8)

NAME

       qmail-getpw - give addresses to users

SYNOPSIS

       qmail-getpw local

DESCRIPTION

       In  qmail,  each  user controls a vast array of local addresses.  qmail-getpw finds the user that controls a particular address, local.	It
       prints six pieces of information, each terminated by NUL: user; uid; gid; homedir; dash; and ext.  The user's account  name  is	user;  the
       user's  uid  and  gid  in  decimal  are	uid  and gid; the user's home directory is homedir; and messages to local will be handled by home-
       dir/.qmaildashext.

       In case of trouble, qmail-getpw exits nonzero without printing anything.

       WARNING: The operating system's getpwnam function, which is at the heart of qmail-getpw, is inherently unreliable: it fails to  distinguish
       between	temporary  errors and nonexistent users.  Future versions of getpwnam should return ETXTBSY to indicate temporary errors and ESRCH
       to indicate nonexistent users.

RULES

       qmail-getpw considers an account in /etc/passwd to be a user if (1) the account has a nonzero uid, (2) the account's home directory  exists
       (and  is visible to qmail-getpw), and (3) the account owns its home directory.  qmail-getpw ignores account names containing uppercase let-
       ters.  qmail-getpw also assumes that all account names are shorter than 32 characters.

       qmail-getpw gives each user control over the basic user address and all addresses of the form user-anything.  When local is user, dash  and
       ext  are  both  empty.  When local is user-anything, dash is a hyphen and ext is anything.  user may appear in any combination of uppercase
       and lowercase letters at the front of local.

       A catch-all user, alias, controls all other addresses.  In this case ext is local and dash is a hyphen.

       You can override all of qmail-getpw's decisions with the qmail-users mechanism, which is reliable, highly  configurable,  and  much  faster
       than qmail-getpw.

SEE ALSO

       qmail-users(5), qmail-lspawn(8)

																    qmail-getpw(8)
All times are GMT -4. The time now is 10:41 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy