05-18-2004
Restriction to User
Dear all,
I am trying to create a new user account that can have the minimum access to the HP-Ux box, as in it only need to perform system info query like bdf and only able to read access system log files but not able to delete any file from any other directory beside it's own user directory "/users/misgrp/misopr"
I have created it thru SAM to get the following into /etc/passwd
Any expert here can advise me on any other restriction that I can add in inorder to retrict this user further. As I tried deleted a file with this user account, it's able to despite that the file is read-only mode.
"misopr:,..:2502:202:MIS operations,,,:/users/misgrp/misopr:/usr/bin/sh"
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
How do l restrict more than one users on a multiple programming environment using the c shell profile. That is if a user is log-on on one terminal the system should be able to prompt a message if the users attempt to log on on another terminal. I user openserver 5.0.4 with dummy terminals, and also... (7 Replies)
Discussion started by: kayode
7 Replies
2. Solaris
I have a senario and i wonder how to do it ? i used NcFTPd and i dont think its applicable using that application or i didnt know how to configure it.
i want to have a user for FTP that user is only restricted to put and get from a certain directory and all sub-directories for that directory,... (0 Replies)
Discussion started by: mduweik
0 Replies
3. AIX
I want to restrict user's loging according to number of session.
example the user named "patrik" can be login concurrently from 12 stations thru telnet the 13th if some body tries to telnet 13th session it should not allow, until any of the 12 sessions are closed.
is it possibel ...i think... (2 Replies)
Discussion started by: pchangba1
2 Replies
4. AIX
hi,
I am facing a problem
from the remote system if i login to my AIX5.3 machine as root (thru telnet) the session does not expire for 2 hours even if the session is kept ideal
But whenever i do the same thing from some other user then the session is lost within 10 minutes (if session is kept... (2 Replies)
Discussion started by: pchangba
2 Replies
5. UNIX for Advanced & Expert Users
Dear All
I had one user called msc. In that i had two folder.xxx and yyy
ex: /home/msc/xxx
ex: /home/msc/yyy
Now i want that msc user only able to access xxx folder only. No other folder should be visible to it.
Kindly let me know. How it possile??
Regards
Jaydeep (3 Replies)
Discussion started by: jaydeep_sadaria
3 Replies
6. AIX
Hi,
I'm at AIX 5.3, I have a print queue named chqprinter, I want to allow access to print only 2 users to that print queue, jobs printed by all other users to above queue should be deleted.
Any idea how to achieve that?
---------- Post updated at 10:33 AM ---------- Previous update was at... (5 Replies)
Discussion started by: tayyabq8
5 Replies
7. UNIX for Dummies Questions & Answers
Hello,
I would to create a new user with some restriction:
1. The user will not be able to CD any directory (I mean he'll login to the defined home directory and that's all).
2. The user will not be able to delete anything in that home directory
Thanks a lot in advance,
Shahar (1 Reply)
Discussion started by: shaharoz
1 Replies
8. Linux
Hi Friends,
I have installed a FTP Server on my Linux machine (Fedora 11).
I want the ftp users to be restricted to their own home dir using sftp.
But the said condition is met when the user logs in using ftp over port 21 and when the user logs in using sftp i.e. protocol 22, he/she has... (4 Replies)
Discussion started by: pashy
4 Replies
9. AIX
Hello,
I am curious that is there a way I can restrict a user or a set of users to execute the C/C++ compiler, basically what I want is to lock it down to a particular user and none of the other users should be able to compile any code.
Thanks in advance. (14 Replies)
Discussion started by: m6248m
14 Replies
10. Solaris
Is there a way to stop users envoking a root shell with sudo on Solaris 10.
I want users to use sudo <cmd> but not sudo -s (5 Replies)
Discussion started by: u20sr
5 Replies
LEARN ABOUT FREEBSD
adding_user
ADDING_USER(8) BSD System Manager's Manual ADDING_USER(8)
NAME
adding_user -- procedure for adding new users
DESCRIPTION
A new user must choose a login name, which must not already appear in /etc/passwd or /etc/mail/aliases. It must also not begin with the
hyphen '-' character. It is strongly recommended that it be all lower-case, and not contain the dot '.' character, as that tends to confuse
mailers. An account can be added by editing a line into the passwd file; this must be done with the password file locked e.g. by using
chpass(1) or vipw(8).
A new user is given a group and user id. Login and user id's should be unique across the system, and often across a group of systems, since
they are used to control file access. Typically, users working on similar projects will be put in the same groups. At the University of
California, Berkeley, we have groups for system staff, faculty, graduate students, and special groups for large projects.
A skeletal account for a new user ``ernie'' might look like:
ernie::25:30::0:0:Ernie Kovacs,508 Evans Hall,x7925,
642-8202:/a/users/ernie:/bin/csh
For a description of each of these fields, see passwd(5).
It is useful to give new users some help in getting started, supplying them with a few skeletal files such as .profile if they use /bin/sh,
or .cshrc and .login if they use /bin/csh. The directory /usr/share/skel contains skeletal definitions of such files. New users should be
given copies of these files which, for instance, use tset(1) automatically at each login.
FILES
/etc/master.passwd user database
/usr/share/skel skeletal login directory
SEE ALSO
chpass(1), finger(1), passwd(1), aliases(5), passwd(5), adduser(8), pwd_mkdb(8), vipw(8)
BSD
January 30, 2009 BSD