Visit Our UNIX and Linux User Community


restricting users privileges and logging their activities


 
Thread Tools Search this Thread
Operating Systems Solaris restricting users privileges and logging their activities
# 1  
Old 03-16-2007
restricting users privileges and logging their activities

Hello,
I'm administrating new installed cluster that runs Legato Networker and Oracle 9. And I want to restrict the use of root to my self and givr the application and DBA the proper and needed privileges to do their duties without hassle in addition I would like to log users activities.

my questions are:
1. is normal user will give the oracle dba and legato networker enough privileges to run the application specific command?

2. which is better in all terms sudo or RBAC?
3. do I have to enable BSM to log the users activities if I used RBAC or I can syslog do that?

Thank you

Previous Thread | Next Thread
Test Your Knowledge in Computers #972
Difficulty: Easy
The Linux kernel is written in assembly language.
True or False?

10 More Discussions You Might Find Interesting

1. Red Hat

Restricting multiple users to run only sftp server

Hello, can someone please provide steps, can I restrict a multiple users to only access only sftp on a server, to perform upload and download of files on their home directories. 1. I have updated their login shell as /sbin/nologin. anything else do I need to update. Thanks, (3 Replies)
Discussion started by: bobby320
3 Replies

2. Shell Programming and Scripting

restricting users

how can i make my users to not use particular commands in the network like:wall....... pl z help me regarding this (1 Reply)
Discussion started by: yashwanthguru
1 Replies

3. Shell Programming and Scripting

shell script for monitoring users activities

hi I need a shell script which runs perpetually in background and monitors different aspects of different users on different files and their usages for example say there r 3 users so i want when they log in i.e. their log in time and their file access, modify and change log of each file of a... (3 Replies)
Discussion started by: rrd1986
3 Replies

4. Shell Programming and Scripting

Logging out users

Hi, How do force users to log off Unix through shell? (2 Replies)
Discussion started by: Wahmed9
2 Replies

5. UNIX for Advanced & Expert Users

TCP Wrappers and restricting users

I'm using vsftpd which is being controlled by inetd. I have a user that I want to only be able to connect from one specific IP address on the same internal network so I can backup files on a separate system. Is this possible with TCP wrappers? I got the notion that it was because of a few... (4 Replies)
Discussion started by: mashiox
4 Replies

6. Solaris

logging logout of users

I am looking for solutions to address my need to log to a file whenever a user logs out or session disconnects. (1 Reply)
Discussion started by: mhm4
1 Replies

7. AIX

Logging off users

What is the best way to logoff users from my Unix system? I have done a search and found that you can do a w or who - find who is on, and ps-ef | grep <user> and kill their processes. But what if you have a bunch of users and you need them off the system quickly? Killing individual processes... (1 Reply)
Discussion started by: outtacontrol
1 Replies

8. Linux

Users with login privileges

Hi. I need the name for one command which I cant remember. This command displays all users which can log in to the system, wether they are stored in /etc/passwd, NIS og LDAP. Does anyone remember what command this is? (2 Replies)
Discussion started by: sprellari
2 Replies

9. UNIX for Dummies Questions & Answers

logging users activity

Hello All! Does anyone know of a nice way to log commands in solaris 8. What I need is a program or script that saves any command that a user does in solaris command prompt. So when Steven logs in on a system, it should record everything he does, from an ls to exit with timestamps. I've been... (6 Replies)
Discussion started by: dozy
6 Replies

10. UNIX for Advanced & Expert Users

Tracking activities of Users using a particular login.

Hi!! Experts, I have a typical scenario here in which several users have access to a particular login .. say "build". None of the users know the passwd for this login. The name of some of the user have been to .rhosts file. The users can connect only by doing a rlogin to this id and then... (4 Replies)
Discussion started by: jyotipg
4 Replies
o2info(1)							OCFS2 Manual Pages							 o2info(1)

NAME
o2info - Dump OCFS2 file system information on disk. SYNOPSIS
o2info [-C|--cluster-coherent] [--fs-features] [--volinfo] [--mkfs] <device or file> DESCRIPTION
o2info is designed to be an information tool, to display OCFS2 file system information on disk. Its main goal on one hand, is to provide a tool to display fs info in a comprehensive way and providing the information which may be missing in debugfs.ocfs and tunefs.ocfs2 such as global bitmap free space fragmentation and free inode info for each slot, on the other hand, it also aims to become a info tool(not an administration one), which therefore allows all users who may have no read privilege on the underlying device to use the utility. In prac- tice, 'o2info /path/to/file/on/ocfs2/vol' use a new OCFS2_IOC_INFO ioctl to get info from fs for a mounted case. For a privileged user(e.g, root), the same info however, can also be accessed by 'o2info /dev/sdxN' to direcly manipulate the raw device. OPTIONS
-C, --cluster-coherent Enable cluster (in)coherency for mounted case, means it will attempt to acquire a global PR lock when querying info from a cluster filesystem, which may degrade the performance, default is none cluster-coherency. --fs-features List all compat, incompat and ro-compat fs features on OCFS2 filesystem. --volinfo Dump basic volume information, such as blocksize, clustersize, volume label and UUID etc. --mkfs Dump an original format of mkfs.ocfs's arguments, importantly, which can be used directly as a fresh mkfs retry: #mkfs.ocfs2 "$(o2info --mkfs /dev/name/or/path/of/file)" /dev/sdaX -V, --version Show version and exit. -h, --help Display help and exit. EXAMPLES
[oracle@node1 ~]# o2info --volinfo /storage/testfile # For none-privileged users. [root@node1 ~]# o2info --volinfo /dev/sda1 Label: ocfs2-volume UUID: 976D8E630B3A4F1F95497311A92901FC Block Size: 4096 Cluster Size: 4096 Node Slots: 4 Features: backup-super strict-journal-super sparse inline-data xattr Features: unwritten SEE ALSO
debugfs.ocfs2(8) tunefs.ocfs2(8) AUTHORS
Oracle Corporation COPYRIGHT
Copyright (C) 2010 Oracle. All rights reserved. Version 1.6.4 October 2010 o2info(1)

Featured Tech Videos