Login or Register to Ask a Question and Join Our Community


Solaris

nologin shell on Solaris?

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems Solaris nologin shell on Solaris?
# 1  
Old 09-21-2006
nologin shell on Solaris?
I'm setting up a Solaris 10 box to run Lawson application, which needs users to have Unix acounts, but the users will not be using interactive shell. To make it more secure, I'd rather not give them a valid shell. I know there's a trick by putting /noshell in the /etc/passwd file, but the problem is that useradd doesn't allow to use a non-executable for the shell value. I need to be able to use it though, as I can't be manually changing the /etc/passwd for every new user. I think another way of doing it is to specify /bin/false as the shell. On linux there's a specifc shell for this purpose, /sbin/nologin. But it doesn't seem to exist on Solaris. I'm wondering how else can his be done? Any suggestions?
# 2  
Old 09-21-2006
The useradd command takes /usr/bin/false.

Out of curiosity, I don't know what Lawson is, but if it requires users to have unix logins, doesn't it require that users have a valid shell?
# 3  
Old 09-22-2006
Quote:
Originally Posted by System Shock
The useradd command takes /usr/bin/false.

Out of curiosity, I don't know what Lawson is, but if it requires users to have unix logins, doesn't it require that users have a valid shell?
Yep, /usr/bin/false works. I wasn't sure it's the best way to do this but seems like it will do the job.

Lawson is an ERP application similar to SAP or PeopleSoft. In older versions a user actually would telnet into the box and use text-based menus. Nowadays they have a web portal, but they still need a user account to run reports and print jobs for individual users. I guess it's the same idea as apache needing a non-root account to start httpd instances. Why they can't accomplish it with just one user ID, I have no idea.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

System shell nologin script required

Hi Part of our security audit we found that following system account's had shells configured; sync halt shutdown I believe this can be achieved by following commands: chsh -s /sbin/nologin (user) usermod -s /sbin/nologin (user) However, I would like simple script to... (5 Replies)
Discussion started by: Gamma
5 Replies

2. Solaris

Solaris Shell Scripting

Hi, Want to know, is there any way to restrict a Solaris user to Single Login. Means a particular user can login once and if he or someone else tries to login with his ID then a message displayed "user already logged in" and denies his attempt. Regard, Jeet (1 Reply)
Discussion started by: CountJeet
1 Replies

3. Solaris

Is there a difference between setting a user as nologin and setting it as a role?

Trying to figure out the best method of security for oracle user accounts. In Solaris 10 they are set as regular users but have nologin set forcing the dev's to login as themselves and then su to the oracle users. In Solaris11 we have the option of making it a role because RBAC is enabled but... (1 Reply)
Discussion started by: os2mac
1 Replies

4. Shell Programming and Scripting

Shell script not working on Solaris 10

Hi Iam running the below scripts on one file on solaris 10 but its giving error. code sh BNGREPORT1.sh z1 code in file BNGREPORT1.sh is given below. root@blr-svr-oclan-01 # more BNGREPORT1.sh #!/bin/sh #cd /surender FILE="bng_total_report_$(date +%Y%m%d_%H%M%S)" echo HOST_NAME "|"... (4 Replies)
Discussion started by: surender reddy
4 Replies

5. UNIX for Dummies Questions & Answers

[ASK]execute shell with function in solaris

dear all i need your advice in shell with solaris i have testing script like this #!/usr/bin/bash function test(){ echo "testing only" } ## execute function ## test but if i running always got error like this test.sh: syntax error at line 1: `(' unexpected who can i running this... (7 Replies)
Discussion started by: zvtral
7 Replies

6. UNIX for Dummies Questions & Answers

SSH with a nologin account

Is it possible to SSH with an account that has its shell set to /sbin/nologin? The reason I ask is because I am running an instance of nagios where I need to use SSH keys to run a check, but I am getting connect errors in Nagios. Also, what is the risk I run into if I just simply change my... (2 Replies)
Discussion started by: streetfighter2
2 Replies

7. Shell Programming and Scripting

Need help regarding user with nologin

Hi, Need one clarification.. If suppose, I have disabled the login to a particular user XXX, but not deleted the user. So the scripts which must be executed using the user XXX can still be executed using that user or is it not possible..? In our tasks, we are disabling the user XXX, and after... (1 Reply)
Discussion started by: Dpu
1 Replies

8. Shell Programming and Scripting

2 shell scripts in Sun Solaris

Hi, Can somebody pls help me? I need to write 2 shell scripts in Sun Solaris operating system which would do this: 1. go to the specified directory - I am using alias for it at the moment 2. start the particular sql script with the output log as same as the script but with timestamp e. g.... (4 Replies)
Discussion started by: balco
4 Replies

9. Solaris

solaris 9 default shell

Hi All, If I login to Solaris 9 by default. I can't find my history. If I run the bash shell by /etc/bash/bash then my history will go to my ~/.bash_history. If I don't use bash where's my history of command go. Thanks in advance. :confused: (2 Replies)
Discussion started by: itik
2 Replies

10. AIX

aix nologin shell

is the nologin shell available in AIX 5.2? I am familiar with the nologin shell in linux and restricting shell access but still allowing ftp etc. Can this be done in AIX? I have not been able to locate any documentation. Thanks in advance (5 Replies)
Discussion started by: zuessh
5 Replies
Login or Register to Ask a Question