Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to prevent root users from editing files (logs)
Top Forums UNIX for Dummies Questions & Answers How to prevent root users from editing files (logs) Post 91749 by ppierald on Monday 5th of December 2005 10:40:49 AM
Old 12-05-2005
man 1 chflags

I believe that 'schg' is what you may be looking for. Use carefully.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Prevent root login directly

Hi How can I prevent anyone from logging in as root directly? I have added the line console=/dev/null to the file /etc/default/login I was still able to login as root from the console. Please advice. Thanks Srini (4 Replies)
Discussion started by: skotapal
4 Replies

2. AIX

Locking a file when using VI to prevent multiple-edit sessions by diff users

At the office, we often have to edit one file with VI. We are 4-6 workers doing it and sometimes can be done at the same time. We have found a problem and want to prevent it with a file lock. Is it possible and how ? problem : Worker-a starts edit VI session on File-A at 1PM Worker-b... (14 Replies)
Discussion started by: Browser_ice
14 Replies

3. UNIX for Advanced & Expert Users

How to prevent local root from su to an NIS user?

We have a shared development box, running Solaris 10 that is an NIS client, all the developers have local root password. If they know the NIS uid of another user, they can just do % useradd -u <uid> login And then log in as that user and have full access to his files in his home directory. ... (3 Replies)
Discussion started by: nfw
3 Replies

4. Solaris

Prevent users logging in as root

I would like to know how to prevent users connecting to a server using SSH as root. I would still like them to be able to login with their username and then change to su. But I would like to prevent them logging in directly as root. I have searched the forum and read that I should set... (3 Replies)
Discussion started by: Sepia
3 Replies

5. UNIX for Dummies Questions & Answers

Editing crontab of non-root user from file

Hi All, Ref: "build crontab from a text file" in same forum. (I am not allowed to post URL's in the first post) We are reorganizing our UNIX Crontab file by first making changes in a word pad text file. The intent is to then copy it back to Crontab. Will this work? Copy and Paste does not... (6 Replies)
Discussion started by: nivedhitha
6 Replies

6. UNIX for Dummies Questions & Answers

logs of commands performed by users

Hi, when 2 users are logged as root , how can i find witch one had perform witch command? Thanks, (1 Reply)
Discussion started by: prpkrk
1 Replies

7. Shell Programming and Scripting

Need to run a bash script that logs on as a non-root user and runs script as root

So I have a script that runs as a non-root user, lets say the username is 'xymon' . This script needs to log on to a remote system as a non-root user also and call up a bash script that runs another bash script as root. in short: user xymon on system A needs to run a file as root user and have... (2 Replies)
Discussion started by: damang111
2 Replies

8. Shell Programming and Scripting

How to prevent a shell script from copy or read from Users

I have a script which do validation check and perform code migration from one env. to another, this is built for users/developers. How can I prevent this shell script from copy or read from users, as they can modify it and run it as per their requirement where as this has to be standard script and... (1 Reply)
Discussion started by: pramendra
1 Replies

9. Shell Programming and Scripting

Find users with root UID or GID or root home

I need to list users in /etc/passwd with root's GID or UID or /root as home directory If we have these entries in /etc/passwd root:x:0:0:root:/root:/bin/bash rootgooduser1:x:100:100::/home/gooduser1:/bin/bash baduser1:x:0:300::/home/baduser1:/bin/bash... (6 Replies)
Discussion started by: anil510
6 Replies

LEARN ABOUT MOJAVE

chflags

CHFLAGS(1)						    BSD General Commands Manual 						CHFLAGS(1)

NAME

     chflags -- change file flags

SYNOPSIS

     chflags [-fhv] [-R [-H | -L | -P]] flags file ...

DESCRIPTION

     The chflags utility modifies the file flags of the listed files as specified by the flags operand.

     The options are as follows:

     -f      Do not display a diagnostic message if chflags could not modify the flags for file, nor modify the exit status to reflect such fail-
	     ures.

     -H      If the -R option is specified, symbolic links on the command line are followed.  (Symbolic links encountered in the tree traversal
	     are not followed.)

     -h      If the file is a symbolic link, change the file flags of the link itself rather than the file to which it points.

     -L      If the -R option is specified, all symbolic links are followed.

     -P      If the -R option is specified, no symbolic links are followed.  This is the default.

     -R      Change the file flags for the file hierarchies rooted in the files instead of just the files themselves.

     -v      Cause chflags to be verbose, showing filenames as the flags are modified.	If the -v option is specified more than once, the old and
	     new flags of the file will also be printed, in octal notation.

     The flags are specified as an octal number or a comma separated list of keywords.	The following keywords are currently defined:

	   arch, archived
		   set the archived flag (super-user only)

	   opaque  set the opaque flag (owner or super-user only).  [Directory is opaque when viewed through a union mount]

	   nodump  set the nodump flag (owner or super-user only)

	   sappnd, sappend
		   set the system append-only flag (super-user only)

	   schg, schange, simmutable
		   set the system immutable flag (super-user only)

	   uappnd, uappend
		   set the user append-only flag (owner or super-user only)

	   uchg, uchange, uimmutable
		   set the user immutable flag (owner or super-user only)

	   hidden  set the hidden flag [Hide item from GUI]

     As discussed in chflags(2), the sappnd and schg flags may only be unset when the system is in single-user mode.

     Putting the letters ``no'' before or removing the letters ``no'' from a keyword causes the flag to be cleared.  For example:

	   nouchg  clear the user immutable flag (owner or super-user only)
	   dump    clear the nodump flag (owner or super-user only)

     Unless the -H or -L options are given, chflags on a symbolic link always succeeds and has no effect.  The -H, -L and -P options are ignored
     unless the -R option is specified.  In addition, these options override each other and the command's actions are determined by the last one
     specified.

     You can use "ls -lO" to see the flags of existing files.

EXIT STATUS

     The chflags utility exits 0 on success, and >0 if an error occurs.

SEE ALSO

     ls(1), chflags(2), stat(2), fts(3), symlink(7)

HISTORY

     The chflags command first appeared in 4.4BSD.

BUGS

     Only a limited number of utilities are chflags aware.  Some of these tools include ls(1), cp(1), find(1), install(1), dump(8), and
     restore(8).  In particular a tool which is not currently chflags aware is the pax(1) utility.

BSD
								   March 3, 2006							       BSD
All times are GMT -4. The time now is 08:09 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy