Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Turning off the CDE
Top Forums UNIX for Advanced & Expert Users Turning off the CDE Post 42254 by meyersp on Friday 24th of October 2003 01:12:10 PM
Old 10-24-2003
Turning off the CDE
I am running Solaris 9 and wanted the CDE stopped when my users login. Can this be done by adding something to the .profile? Basically when they login they should be at the command line and have to start the CDE themselves.

Thanks
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

turning off certain http requests

On a sparc solaris 8 host running sunone webserver 6 I would like to limit the http requests that can be used when port 80 is accessed. We currently have http/1.0 enabled. For example I would like to remove the http request DELETE. Regards, BLP (1 Reply)
Discussion started by: blp001
1 Replies

2. UNIX for Dummies Questions & Answers

Turning Echo off

Hi, Is there any way like in dos to turn the echo off in a script? i have some lines popping up that i dont wish to be viewed when i am unziping a file it brings up the message updating: log.txt (deflated 72%) and extracting: log.txt i dont want these be viewed. Andy (4 Replies)
Discussion started by: chapmana
4 Replies

3. AIX

turning auditing on AIX 4.3

Hi, What's the best way to turn on the auditing in AIX 4.3? I'm in an environment where root password are shared with many users. Can sudoers member be audited properly? Thanks (1 Reply)
Discussion started by: itik
1 Replies

4. Solaris

Turning in.ftpd on and off

For two straight days someone was running in.ftpd in my server (apparently looking to break in) and when I would do "top" almost every line would read "in.ftpd". I had a unix sysadmin friend of mine shut it down and then start it back up in a day and a half and all seems OK for now. Here's what I... (1 Reply)
Discussion started by: thomi39
1 Replies

5. UNIX for Advanced & Expert Users

turning CIO on and how to monitor

Hi Guys, I have a database server where we run AIX 5.3 on a power5 box and we just turned on CIO (concurrent I/O) for the database filesystems. Now my assumption is that enabling CIO the database basically will bypass the filesystem cache releasing some extra memory that can be allocated... (1 Reply)
Discussion started by: hariza
1 Replies

6. AIX

turning CIO on and how to monitor

Hi Guys, I have a database server where we run AIX 5.3 on a power5 box and we just turned on CIO (concurrent I/O) for the database filesystems. Now my assumption is that enabling CIO the database basically will bypass the filesystem cache releasing some extra memory that can be allocated... (1 Reply)
Discussion started by: hariza
1 Replies

7. UNIX Desktop Questions & Answers

How to migrate Solaris 10 CDE config to HP-UX CDE.

Hello, Do you guys by any chance know what is the best (if any ) way to move CDE configuration from a SOLARIS 10 machine to HP-UX? Just the config (actions, text files etc). Thanks in advance! (0 Replies)
Discussion started by: binary0x01
0 Replies

8. Solaris

Connect to SunOS CDE from another CDE

I have two CDE desktop accounts on different server (called this CDE#1, CDE#2) on the same network. However, my current setup is connecting to the Solaris CDE#1,CDE#2 via Citrix. My plan is to connect to CD#1 and then somehow connect to CDE#2. How do I do this? I am just a regular user... (0 Replies)
Discussion started by: tthach830
0 Replies

9. SCO

Need help turning off bootpd

OSR 5.0.7 patched with MP 5 The syslog is flooded with messages: May 9 13:42:12 asiwc bootpd: IP address not found: 192.168.230.215 May 9 13:42:13 asiwc bootpd: IP address not found: 192.168.230.142 May 9 13:42:50 asiwc bootpd: IP address not found: 192.168.230.202 The system... (4 Replies)
Discussion started by: migurus
4 Replies

10. Shell Programming and Scripting

Turning given date to epoch

i can probably script this in bash, but, i was wondering, does anyone know of a simple way to translate a given time to epoch? date -d@"29/Oct/2013:17:53:11" the user would specify the date: 29/Oct/2013:17:53:11 and the script will simply interpret that to epoch: 1348838383 (this is just... (4 Replies)
Discussion started by: SkySmart
4 Replies

LEARN ABOUT OPENSOLARIS

exec_attr

exec_attr(4)							   File Formats 						      exec_attr(4)

NAME

       exec_attr - execution profiles database

SYNOPSIS

       /etc/security/exec_attr

DESCRIPTION

       /etc/security/exec_attr	is  a  local  database that specifies the execution attributes associated with profiles. The exec_attr file can be
       used with other sources for execution profiles, including the exec_attr NIS map and NIS+ table. Programs use the  getexecattr(3SECDB)  rou-
       tines to access this information.

       The  search  order for multiple execution profile sources is specified in the /etc/nsswitch.conf file, as described in the nsswitch.conf(4)
       man page. The search order follows the entry for prof_attr(4).

       A profile is a logical grouping of authorizations and commands that is interpreted by a profile shell to form a secure  execution  environ-
       ment. The shells that interpret profiles are pfcsh, pfksh, and pfsh. See the pfsh(1) man page. Each user's account is assigned zero or more
       profiles in the user_attr(4) database file.

       Each entry in the exec_attr database consists of one line of text containing seven fields separated by colons (:). Line continuations using
       the backslash (fR) character are permitted. The basic format of each entry is:

       name:policy:type:res1:res2:id:attr

       name	 The name of the profile. Profile names are case-sensitive.

       policy	 The  security	policy	that  is  associated with the profile entry. The valid policies are suser (standard Solaris superuser) and
		 solaris. The solaris policy recognizes privileges (see privileges(5)); the suser policy does not.

		 The solaris and suser policies can coexist in the same exec_attr database, so that Solaris releases prior to the current  release
		 can  use the suser policy and the current Solaris release can use a solaris policy. solaris is a superset of suser; it allows you
		 to specify privileges in addition to UIDs. Policies that are specific to the current release of Solaris or  that  contain  privi-
		 leges should use solaris. Policies that use UIDs only or that are not specific to the current Solaris release should use suser.

       type	 The  type of object defined in the profile. There are two valid types: cmd and act. The cmd type specifies that the ID field is a
		 command that would be executed by a shell. The act type is available only if the system is configured with Trusted Extensions. It
		 specifies that the ID field is a CDE action that should be executed by the Trusted Extensions CDE action mechanism.

       res1	 Reserved for future use.

       res2	 Reserved for future use.

       id	 A  string that uniquely identifies the object described by the profile. For a profile of type cmd, the id is either the full path
		 to the command or the asterisk (*) symbol, which is used to allow all commands. An asterisk that replaces the filename  component
		 in a pathname indicates all files in a particular directory.

		 To  specify  arguments, the pathname should point to a shell script that is written to execute the command with the desired argu-
		 ment. In a Bourne shell, the effective UID is reset to the real UID of the process when the effective UID is less  than  100  and
		 not equal to the real UID. Depending on the euid and egid values, Bourne shell limitations might make other shells preferable. To
		 prevent the effective UIDs from being reset to real UIDs, you can start the script with the -p option.

		   #!/bin/sh -p

		 If the Trusted Extensions feature is configured and the profile entry type is act, the id is either the fully qualified name of a
		 CDE  action, or an asterisk (*) representing a wildcard. A fully qualified CDE action is specified using the action name and four
		 additional semicolon-separated fields. These fields can be empty but the semicolons are required. The fields in a CDE action  are
		 as follows:

		 argclass    Specifies the argument class (for example, FILE or SESSION.) Corresponds to ARG_CLASS for CDE actions.

		 argtype     Specifies the data type for the argument. Corresponds to ARG_TYPE for CDE actions.

		 argmode     Specifies the read or write mode for the argument. Corresponds to ARG_MODE for CDE actions.

		 argcount    Specifies the number of arguments that the action can accept. Corresponds to ARG_COUNT for CDE actions.

       attr	 An  optional  list  of  semicolon-separated (;) key-value pairs that describe the security attributes to apply to the object upon
		 execution. Zero or more keys may be specified. The list of valid key words depends on the  policy  enforced.  The  following  key
		 words are valid: euid, uid, egid, gid, privs, and limitprivs.

		 euid and uid contain a single user name or a numeric user ID. Commands designated with euid run with the effective UID indicated,
		 which is similar to setting the setuid bit on an executable file. Commands designated with uid run with both the real and  effec-
		 tive UIDs. Setting uid may be more appropriate than setting the euid on privileged shell scripts.

		 egid  and  gid  contain a single group name or a numeric group ID. Commands designated with egid run with the effective GID indi-
		 cated, which is similar to setting the setgid bit on a file. Commands designated with gid run with both the  real  and  effective
		 GIDs. Setting gid may be more appropriate than setting guid on privileged shell scripts.

		 privs contains a privilege set which will be added to the inheritable set prior to running the command.

		 limitprivs contains a privilege set which will be assigned to the limit set prior to running the command.

		 privs and limitprivs are only valid for the solaris policy.

EXAMPLES

       Example 1 Using Effective User ID

       The following example shows the audit command specified in the Audit Control profile to execute with an effective user ID of root(0):

	 Audit Control:suser:cmd:::/usr/sbin/audit:euid=0

FILES

       /etc/nsswitch.conf

       /etc/user_attr

       /etc/security/exec_attr

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availibility		     |SUNWcsr			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |See below.		   |
       +-----------------------------+-----------------------------+

       The command-line syntax is Committed. The output is Uncommitted.

CAVEATS

       When deciding which authorization source to use (see DESCRIPTION), keep in mind that NIS+ provides stronger authentication than NIS.

       Because	the  list  of legal keys is likely to expand, any code that parses this database must be written to ignore unknown key-value pairs
       without error. When any new keywords are created, the names should be prefixed with a unique string, such as the company's stock symbol, to
       avoid potential naming conflicts.

       The  following characters are used in describing the database format and must be escaped with a backslash if used as data: colon (:), semi-
       colon (;), equals (=), and backslash (fR).

SEE ALSO

       auths(1), dtaction(1), profiles(1), roles(1), sh(1), makedbm(1M),  getauthattr(3SECDB),	getauusernam(3BSM),  getexecattr(3SECDB),  getpro-
       fattr(3SECDB), getuserattr(3SECDB), kva_match(3SECDB), auth_attr(4), prof_attr(4), user_attr(4), attributes(5), privileges(5)

SunOS 5.11							    30 Mar 2006 						      exec_attr(4)
All times are GMT -4. The time now is 01:51 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy