12-06-2005
Some products, such as CA's Etrust Access Control will allow you to configure this. I don't know of any freeware that does the same.
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi
How can I prevent anyone from logging in as root directly? I have added the line
console=/dev/null
to the file /etc/default/login
I was still able to login as root from the console. Please advice.
Thanks
Srini (4 Replies)
Discussion started by: skotapal
4 Replies
2. AIX
At the office, we often have to edit one file with VI. We are 4-6 workers doing it and sometimes can be done at the same time.
We have found a problem and want to prevent it with a file lock. Is it possible and how ?
problem :
Worker-a starts edit VI session on File-A at 1PM
Worker-b... (14 Replies)
Discussion started by: Browser_ice
14 Replies
3. UNIX for Advanced & Expert Users
We have a shared development box, running Solaris 10 that is an NIS client, all the developers have local root password. If they know the NIS uid of another user, they can just do
% useradd -u <uid> login
And then log in as that user and have full access to his files in his home directory. ... (3 Replies)
Discussion started by: nfw
3 Replies
4. Solaris
I would like to know how to prevent users connecting to a server using SSH as root.
I would still like them to be able to login with their username and then change to su.
But I would like to prevent them logging in directly as root.
I have searched the forum and read that I should set... (3 Replies)
Discussion started by: Sepia
3 Replies
5. UNIX for Dummies Questions & Answers
Hi All,
Ref: "build crontab from a text file" in same forum. (I am not allowed to post URL's in the first post)
We are reorganizing our UNIX Crontab file by first making changes in a word pad text file. The intent is to then copy it back to Crontab. Will this work? Copy and Paste does not... (6 Replies)
Discussion started by: nivedhitha
6 Replies
6. UNIX for Dummies Questions & Answers
Hi,
when 2 users are logged as root , how can i find witch one had perform witch command?
Thanks, (1 Reply)
Discussion started by: prpkrk
1 Replies
7. Shell Programming and Scripting
So I have a script that runs as a non-root user, lets say the username is 'xymon' .
This script needs to log on to a remote system as a non-root user also and call up a bash script that runs another bash script as root.
in short: user xymon on system A needs to run a file as root user and have... (2 Replies)
Discussion started by: damang111
2 Replies
8. Shell Programming and Scripting
I have a script which do validation check and perform code migration from one env. to another, this is built for users/developers.
How can I prevent this shell script from copy or read from users, as they can modify it and run it as per their requirement where as this has to be standard script and... (1 Reply)
Discussion started by: pramendra
1 Replies
9. Shell Programming and Scripting
I need to list users in /etc/passwd with root's GID or UID or /root as home directory
If we have these entries in /etc/passwd
root:x:0:0:root:/root:/bin/bash
rootgooduser1:x:100:100::/home/gooduser1:/bin/bash
baduser1:x:0:300::/home/baduser1:/bin/bash... (6 Replies)
Discussion started by: anil510
6 Replies
LEARN ABOUT DEBIAN
tomoyo-auditd
TOMOYO-AUDITD(8) System Administration Utilities TOMOYO-AUDITD(8)
NAME
tomoyo-auditd - access request log recording daemon for TOMOYO Linux
SYNOPSIS
tomoyo-auditd
tomoyo-auditd [remote_ip:remote_port]
DESCRIPTION
This program reads access request logs from the kernel and writes to the locations specified in the configuration file. By running this
program at startup, access request logs for either all domains or selected domains can be stored.
The format of the stored logs is similar to domain policy, so they can be used to help develop policy.
Configure this daemon in /etc/tomoyo/tools/auditd.conf. If an access request matches a rule, it will be written to the specified log file.
This can be used to split access request logs into multiple files. Only the first matching rule is used, so any single access request log
will be written to a maximum of one output file. If an access request log does not match any rules, it will be discarded.
Start this program from an appropriate stage during startup (e.g. /etc/rc.local).
OPTIONS
remote_ip:remote_port
Retrieve access request logs from a remote system via an agent, connecting to the specified IP address and port number.
BUGS
If you find any bugs, send an email to <tomoyo-users-en@lists.sourceforge.jp>.
AUTHORS
Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Main author.
Jamie Nguyen <jamie@tomoyolinux.co.uk>
Documentation and website.
SEE ALSO
tomoyo-editpolicy-agent(8)
See <http://tomoyo.sourceforge.jp> for more information.
tomoyo-tools 2.5.0 2012-04-14 TOMOYO-AUDITD(8)