Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: root/admin commands in LINUX
Top Forums UNIX for Dummies Questions & Answers root/admin commands in LINUX Post 93834 by linuxpenguin on Thursday 22nd of December 2005 11:58:21 AM
Old 12-22-2005
NO.
Naina, adding it to /etc/profile is like giving access to all users to these commands inherently. Well its not that users cant add it themselves. But why would you want a regular user to run a useradd command ( he wouldnt be able to run it anyway unless he has root priveleges). But not only useradd, there are other commands in sbin dir which if possible should be hidden from a normal user. As I said earlier a normal user can always add the sbin to his directory, but if he wants to, let him do it, I suggest you should not do that for him. By adding it in /etc/profile you are doing that for him.
Well that is my way of looking at it. I agree there is nothing that can stop this to be more secure, but when you know that the burglars can break the door and come in your house, you still latch the door in the night, right ?
 

10 More Discussions You Might Find Interesting

1. OS X (Apple)

root/admin authorization and PackageMaker

I am building an installable package (.pkg) with PackageMaker 1.1.11 (that's the one that comes with Panther). The package is for installing things both to /Applications and to some folders in /Library (/Library/StartupItems and a new folder that I'm putting in /Library). I do (obviously) not... (4 Replies)
Discussion started by: ropers
4 Replies

2. UNIX for Dummies Questions & Answers

Name 10 commands every Linux and Unix admin should know

I'm working on further developing my Unix skills and I'm just curious what some of the experienced admins out there would consider to be 10 essential commands every admin should know. (12 Replies)
Discussion started by: Arkitech
12 Replies

3. HP-UX

Need HPUX admin commands lost

Hi All Please somebody send me list of admin commands used for HPUX. Thanks Sunanda (2 Replies)
Discussion started by: sunanda
2 Replies

4. UNIX for Dummies Questions & Answers

Root admin info

(Very New to UNIX- Solaris world) I have my Solaris 10 system built, and can login using root. This root user is a super type of admin user as I understand it. 1.My question is do UNIX admins usually use this account for all admin tasks or do they use another account similar to this... (2 Replies)
Discussion started by: deedaz
2 Replies

5. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

6. Gentoo

help|how to rest my password admin(root)

i have gentoo and i dont know what is my password user admin(root) how i can to rest my passord? thanks. (2 Replies)
Discussion started by: turivnkl
2 Replies

7. Linux

Linux admin

Hi, Please give some important admin command document . which is helpful in my role. THanks, Mani (8 Replies)
Discussion started by: Mani_apr08
8 Replies

8. Red Hat

I want to become a Linux admin..

Hi , I have skill set in unix/shell scripting. But I would like to become a linux admin..So could you please help on this.. 1) what are the things need to be learn, 2) any reference should be appreciable. 3) or any website.. THanks, Mani (2 Replies)
Discussion started by: Mani_apr08
2 Replies

9. What is on Your Mind?

Regarding Admin life either as DBA or UNIX Linux admin

I am planning to choose my career as Unix/Linux Admin or a DBA. But I have come to know from forums and few admins like the job will be 24/7. I have few questions on that. Can we get "DAY" shifts in any one of the admin Job ? Can't we have shift timings in any company ? Eventhough the... (7 Replies)
Discussion started by: Jacktts
7 Replies

10. AIX

Change "root" to "root.admin" in outgoing e-mails

Our AIX servers send e-mails which have the "from" address set to "root@company.com" for our root user ("C{M}company.com" in /etc/sendmail.cf). The problem is that when bad e-mails are sent out or rejected by remote servers, they are being returned and delivered to e-mail box of "Mary Root". ... (2 Replies)
Discussion started by: kah00na
2 Replies

LEARN ABOUT OSF1

dop

dop(8)							      System Manager's Manual							    dop(8)

NAME

       dop - Allows a user to execute a privileged program without knowing the root password. The dop command also modifies the action database.

SYNOPSIS

       /usr/sbin/dop [-n  | -N] [ui:] action [args]

       /usr/sbin/dop -a priv[,priv]... action [ui:]pathspec[,[ui:]pathspec]...

       /usr/sbin/dop -a priv[,priv]... [ui:]pathspec

       /usr/sbin/dop -d  action

       /usr/sbin/dop [-w  | -W]

OPTIONS

       Invokes	a  prompt  asking  the	user  if  they want to run the command as a user or as root. The root password is required to run as root.
       Attempts to run the action with the user privileges.  Adds new actions to the dop database.  Deletes an existing action from the dop  data-
       base.  Writes a binary image without changing the source.  Updates the actionlist from the dop action file and then executes the -w option,
       which writes the binary image.

OPERANDS

       Name of privileged program to invoke Arguments to pass to the application guarded by the privilege.  Comma separated  privilege	list  (see
       sysman dopconfig) The fully qualified path name and arguments for the associated action.

	      When  specified by a comma separated pathlist and arguments for multiple user interface domains (ui:), the first ui: argument speci-
	      fied is used as the default. If no action is specified, then the path base name is used. A  run-time  argument  replaces	the  first
	      occurrence of asterisk as a word (for example *) in a string, or else they are ignored. Path arguments should be quoted per the cur-
	      rent shell.  Optional.  A user interface domain, typically one of X11, suit, java, menu, cui, or cli.

DESCRIPTION

       The dop (Division of Privileges) command can execute an action after proper authentication from	the  privilege	database  file.  For  more
       information, see the Security guide.

RESTRICTIONS

       You must have root privileges to modify the privileges database.

EXAMPLES

       The following example will add an action to the AccountManagement privilege.  dop -a AccountManagement adduser_script /usr/sbin/adduser

       The following example runs the action adduser_script for the AccountManagement privilege.  dop adduser_script

       The following example deletes the adduser_script action from the action database.  dop -d adduser_script

FILES

       Executable file.  Executable file for adding or deleting permissions for users and or groups.  dop database.

SEE ALSO

       Commands: sysman(8)

																	    dop(8)
All times are GMT -4. The time now is 09:26 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy