Login or Register to Ask a Question and Join Our Community


AIX

Gid=0 and 7 + admin=FALSE

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems AIX Gid=0 and 7 + admin=FALSE
# 1  
Old 10-05-2010
Question Gid=0 and 7 + admin=FALSE
Checking configuration access files for an AIX server, left me wondering about this Smilie:
  • If a user is added to system group, it gets gid=0 with some security risks because it gets some root kind of file access level.
  • Is this insecure condition kept if the user has admin variable equal to FALSE in /etc/security/user file?
  • What happen if the user is also part of security group (gid=7).
What is the resultant combination of having gid=0,7 and ADMIN=FALSE?
Login or Register to Ask a Question

Previous Thread | Next Thread

8 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

False alerts

Hi I have written a script to send email alerts when load of my linux server reaches max point I keep getting false emails thought the load is normal , looks like same email is generated again and again - called from cron tab checked if the tempfile is present , no it is not , cleaned... (22 Replies)
Discussion started by: anil529
22 Replies

2. What is on Your Mind?

Regarding Admin life either as DBA or UNIX Linux admin

I am planning to choose my career as Unix/Linux Admin or a DBA. But I have come to know from forums and few admins like the job will be 24/7. I have few questions on that. Can we get "DAY" shifts in any one of the admin Job ? Can't we have shift timings in any company ? Eventhough the... (7 Replies)
Discussion started by: Jacktts
7 Replies

3. What is on Your Mind?

Windows Admin switching to *nix Admin

I'm currently a Windows admin and have wanted to jump ship to the *nix side for a while now. I've been studying both through an lpic level 1 manual as I have time (focusing on debian), and a solaris 10 cert book. The problem is I only have a handful of hours a week to study, and my current job... (3 Replies)
Discussion started by: bobwilson
3 Replies

4. Shell Programming and Scripting

False Condition

Hi All, I am using the below Script to enter a line in the File: #!/bin/ksh # To delete the last line if it contains the pattern Redirect permanent / Virgin Atlantic Airways - Popup echo "Enter the URL that should point to the particular microsite" read url # To delete the last line if it... (0 Replies)
Discussion started by: Shazin
0 Replies

5. AIX

script for finding all the users with GID 0 ( admin group )

Hi Friends, I am trying to write a script for finding all the users with the GID 0 i.e. Admin users. can you please help me on this. (1 Reply)
Discussion started by: anoopraok
1 Replies

6. Shell Programming and Scripting

Why is it always false?

Hi, I'm new to UNIX and am trying to learn shell scripting in order to work on an interface that I inherited when a co-worker left. I need to be able to check to see whether a file exists to determine whether the FTP has taken place, but in testing, the if statement always evaluates as false,... (3 Replies)
Discussion started by: JeffR
3 Replies

7. Shell Programming and Scripting

false use of sed???

i want to delete every newline and every line which starts with "RECORD......." in a file. FILE: Record 61391 in base BROCKHAUS (Timestamp: 2008-04-09 11:38:38) UNTERTITEL : Gräfin (seit 1707 Reichsgräfin) von, * Schwerin 4. 2. 1686, + Berlin 21. 10. 1744; wurde Record 61392 in base BROCKHAUS... (4 Replies)
Discussion started by: trek
4 Replies

8. Linux

bin\false

We have requirments to not allow a userid login abilities but allow users to 'su' to it. In solaris I normally set the shell in /etc/passwd to bin/false. THis does not work on Linux, any suggestions would help. (1 Reply)
Discussion started by: bryanthomas
1 Replies
Login or Register to Ask a Question

LEARN ABOUT REDHAT

groupadd

GROUPADD(8)						      System Manager's Manual						       GROUPADD(8)

NAME

       groupadd - Create a new group

SYNOPSIS

       groupadd [-g gid [-o]] [-r] [-f] group

DESCRIPTION

       The  groupadd  command  creates	a new group account using the values specified on the command line and the default values from the system.
       The new group will be entered into the system files as needed.  The options which apply to the groupadd command are

       -g gid The numerical value of the group's ID.  This value must be unique, unless the -o option is used.	The value  must  be  non-negative.
	      The default is to use the smallest ID value greater than 500 and greater than every other group.	Values between 0 and 499 are typi-
	      cally reserved for system accounts.

       -r     This flag instructs groupadd to add a system account.  The first available gid lower than 499 will be automatically selected  unless
	      the -g option is also given on the command line.
	      This is an option added by Red Hat.

       -f     This  is	the force flag. This will cause groupadd to exit with an error when the group about to be added already exists on the sys-
	      tem. If that is the case, the group won't be altered (or added again).
	      This option also modifies the way -g option works. When you request a gid that it is not unique and you don't specify the -o  option
	      too, the group creation will fall back to the standard behavior (adding a group as if neither -g or -o options were specified).
	      This is an option added by Red Hat.

FILES

       /etc/group - group account information
       /etc/gshadow - secure group account information

SEE ALSO

       chfn(1), chsh(1), passwd(1), groupdel(8), groupmod(8), useradd(8), userdel(8), usermod(8)

AUTHOR

       Julianne Frances Haugh (jockgrrl@ix.netcom.com)

																       GROUPADD(8)