Login or Register to Ask a Question and Join Our Community


Solaris

Unix file, folder permissions, security auditing tools.

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems Solaris Unix file, folder permissions, security auditing tools.
# 8  
Old 03-04-2011
I dont know if this is what you are looking for but something like this will email it too you daily.

Code:
#!/bin/ksh
echo "Permissions to Shadow File" > /home/perm.txt
ls -asl /etc/shadow | awk '{print $2}' >> /home/perm.txt
echo "Permissions to Passwd File" >> /home/perm.txt
ls -asl /etc/passwd | awk '{print $2}' >> /home/perm.txt
cat /home/perm.txt | mailx -s "File Permissions" user@mail.com
rm perm.txt

Dont know if this is on the right track, but it is just a simple script that you can put in cron that will check files and email too you. For any other files you want just put them in there as a new line.
Login or Register to Ask a Question

Previous Thread | Next Thread

7 More Discussions You Might Find Interesting

1. Ubuntu

Folder permissions

Hi Team, I want to set permissions to one folder in such a way that the user can write files or create folder inside that but should not able to delete it. Basically reason behind this is i am using Pidgin Messenger. There is a directory of logs in which, when user chat its store his logs.... (2 Replies)
Discussion started by: paragnehete
2 Replies

2. Tips and Tutorials

Unix File Permissions

Introduction I have seen some misinformation regarding Unix file permissions. I will try to set the record straight. Take a look at this example of some output from ls: $ ls -ld /usr/bin /usr/bin/cat drwxrwxr-x 3 root bin 8704 Sep 23 2004 /usr/bin -r-xr-xr-x 1 bin bin ... (6 Replies)
Discussion started by: Perderabo
6 Replies

3. Shell Programming and Scripting

Unix File Permissions

I want to change one of my Dir permissions to drwx--S--- Can you tell me which number i have to use. Thanks in Advance (4 Replies)
Discussion started by: veeru
4 Replies

4. Cybersecurity

Directory of Security Links (Software Tools)

Hello, If you are interested in security, check out this new directory of unix and linux related software tools. Security - Links If you have any of your favorite tools, feel free to add them to the directory. (0 Replies)
Discussion started by: Neo
0 Replies

5. Windows & DOS: Issues & Discussions

folder permissions

I work for a big company and all the people within my unit share a common drive to save documents to. I am listed in the group(AMS group) that has access rights to folders within this drive. but i'm trying to restrict access to a confidential folder so that only I can access it. when I set the... (0 Replies)
Discussion started by: shed
0 Replies

6. UNIX for Advanced & Expert Users

UNIX File Permissions

Hello, What does the following mean in terms of file permissions. -rw-rwSrw- 1 owner group 999 May 25 2004 file_name What does the "S" stand for. Thanks in advance for your input. :) (3 Replies)
Discussion started by: jerardfjay
3 Replies

7. Cybersecurity

Unix Security and auditing

I am starting an audit of unix security within our company and am looking for any information that may assist me with this. I am looking for any tips or pointers that I should be aware of when looking at unix. I am very new to unix so any help will do. Maybe there is someone out the that has had... (3 Replies)
Discussion started by: GW01
3 Replies
Login or Register to Ask a Question

LEARN ABOUT CENTOS

pam_tty_audit

PAM_TTY_AUDIT(8)						 Linux-PAM Manual						  PAM_TTY_AUDIT(8)

NAME

       pam_tty_audit - Enable or disable TTY auditing for specified users

SYNOPSIS

       pam_tty_audit.so [disable=patterns] [enable=patterns]

DESCRIPTION

       The pam_tty_audit PAM module is used to enable or disable TTY auditing. By default, the kernel does not audit input on any TTY.

OPTIONS

       disable=patterns
	   For each user matching one of comma-separated glob patterns, disable TTY auditing. This overrides any previous enable option matching
	   the same user name on the command line.

       enable=patterns
	   For each user matching one of comma-separated glob patterns, enable TTY auditing. This overrides any previous disable option matching
	   the same user name on the command line.

       open_only
	   Set the TTY audit flag when opening the session, but do not restore it when closing the session. Using this option is necessary for
	   some services that don't fork() to run the authenticated session, such as sudo.

       log_passwd
	   Log keystrokes when ECHO mode is off but ICANON mode is active. This is the mode in which the tty is placed during password entry. By
	   default, passwords are not logged. This option may not be available on older kernels (3.9?).

MODULE TYPES PROVIDED

       Only the session type is supported.

RETURN VALUES

       PAM_SESSION_ERR
	   Error reading or modifying the TTY audit flag. See the system log for more details.

       PAM_SUCCESS
	   Success.

NOTES

       When TTY auditing is enabled, it is inherited by all processes started by that user. In particular, daemons restarted by an user will still
       have TTY auditing enabled, and audit TTY input even by other users unless auditing for these users is explicitly disabled. Therefore, it is
       recommended to use disable=* as the first option for most daemons using PAM.

       To view the data that was logged by the kernel to audit use the command aureport --tty.

EXAMPLES

       Audit all administrative actions.

	   session   required pam_tty_audit.so disable=* enable=root

SEE ALSO

       aureport(8), pam.conf(5), pam.d(5), pam(8)

AUTHOR

       pam_tty_audit was written by Miloslav Trma <mitr@redhat.com>. The log_passwd option was added by Richard Guy Briggs <rgb@redhat.com>.

Linux-PAM Manual						    09/04/2013							  PAM_TTY_AUDIT(8)