Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Assigning proc_owner privilege to particular user in RBAC
Operating Systems Solaris Assigning proc_owner privilege to particular user in RBAC Post 303036163 by sb200 on Monday 17th of June 2019 04:15:10 PM
Old 06-17-2019
Hi

Thanks for your input. Yes I need help in assigning this proc_owner privilege to user along with command. I would ne nice if you can provide help on this . Further I need to understand that whether user will only get the read access or it will also have write access to kill the process or get the power to switch the process id to uid 0. Further when I am going through the link provide by you, which said that "You should have overriding security reasons for placing such powerful privilege in the inheritable set of privileges for any user,role" . Will it create any security risk if this privilege is giving only read access to all the processes in the system.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Write privilege for user

Is it possible to grant write privileges to a user on a directory with out having to add the user to a group or make the user the owner of the directory? My background is in Windows and in Windows you can grant specific privileges to a user without having to put the user in a group or making the... (3 Replies)
Discussion started by: here2learn
3 Replies

2. UNIX for Advanced & Expert Users

RBAC: create a user to shut the server

Hi, I have created a user to shutdown the server using RBAC. Here are my steps: 1. roleadd -u 1000 -g 10 -d /home/stopsys -m stopsys 2. passwd stopsys 3. edit /etc/security/prof_attr to include: Shut:::able to shut the server: 4. modrole -P Shut stopsys 5. useradd -u 1001 -g 10 -d... (2 Replies)
Discussion started by: chaandana
2 Replies

3. AIX

[Help] Give privilege to an ordinary user

I'm trying to give a non-root user the right to start IBM HTTP Server, the web server is listening on port 80, but for AIX, ports under 1024 are privilege ports which can be used only by root. /usr/IBMIHS/bin# ./apachectl start (13)Permission denied: make_sock: could not bind to address :::80... (1 Reply)
Discussion started by: ibmer414
1 Replies

4. Linux

Sudo user vs RBAC

Hi all, What the difference between the sudo users & RBAC when the talk of effects after doing the above comes??? any differences between them ,kindly list ?? (1 Reply)
Discussion started by: saurabh84g
1 Replies

5. Solaris

Root privilege for user

Can anyone please tell how to give root privilege to a normal user in solaris 10? (5 Replies)
Discussion started by: nicktrix
5 Replies

6. UNIX for Dummies Questions & Answers

How to create/restrict a user with to have no privilege from other group

Hello experts I am new to Unix. Env : HPUX I need to create a user say testuser such that it does not have access to file/directories from the other group i.e the last 3 digits . How do I do that. Reason for such a request :- I have an existing user oracle which has default umask... (3 Replies)
Discussion started by: simonsimon
3 Replies

7. AIX

User Privilege

How to assign superuser privilege to an ordinary user temporarily (1 Reply)
Discussion started by: udtyuvaraj
1 Replies

8. AIX

sudo - User privilege specification

I am planning to implement sudo for users. Under , it looks I have to put the users who need to have sudo access: What are the recommended for users? I don't think I need to give the ALL privilege (i.e ) to AIX users. I'd like to know the commonly used privilege specification for sudo... (9 Replies)
Discussion started by: Daniel Gate
9 Replies

9. Shell Programming and Scripting

Create user with different privilege

Hi , I want to create 3 different user with below privilege in Solaris and Linux. 1) Read Only 2)Read and Write Only 3) Admin user Can you guys help me on this . (3 Replies)
Discussion started by: Naveen Pathak
3 Replies

LEARN ABOUT HPUX

setgroups

setgroups(2)							System Calls Manual						      setgroups(2)

NAME

       setgroups - set group access list

SYNOPSIS

DESCRIPTION

       sets  the  group  access  list  of  the	current user process according to the array gidset.  The parameter ngroups indicates the number of
       entries in the array and must be no more than

       Only a user with the privilege can set new groups by adding to the group access list of the current  user  process;  any  user  can  delete
       groups from it.

   Security Restrictions
       Some  or  all of the actions associated with this system call require the privilege.  Processes owned by the superuser have this privilege.
       Processes owned by other users may have this privilege, depending on system configuration.  See privileges(5) for  more	information  about
       privileged access on systems that support fine-grained privileges.

RETURN VALUE

       Upon successful completion, returns 0; otherwise it returns -1 and sets to indicate the error.

ERRORS

       fails if any of the following conditions are encountered:

	      The caller     is not a user with the privilege and has attempted to set new groups.

	      The address specified for
			     gidset is outside the process address space.  The reliable detection of this error is implementation dependent.

	      ngroups	     is greater than or not positive.

	      An entry in    gidset is not a valid group ID.

AUTHOR

       was developed by the University of California, Berkeley.

SEE ALSO

       getgroups(2), initgroups(3C), privileges(5).

STANDARDS CONFORMANCE

																      setgroups(2)
All times are GMT -4. The time now is 12:54 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy