Login or Register to Ask a Question and Join Our Community


UNIX for Advanced & Expert Users

Question on UserID with "root" priviledges

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users Question on UserID with "root" priviledges
# 1  
Old 06-21-2005
Question on UserID with "root" priviledges
I know we can create a normal UserID with "root" priviledges by assigning the user into the "root" group. As such, everything that is modified by the UserID will also contain "root" as the group and ID. This is return causes less tracability on who made the change onto a certain file, etc.

My question is, can we setup this UserID with "root" capability but belongs to it's own group instead of sharing with "root" ?

Thanks everyone Smilie
# 2  
Old 06-21-2005
You can set up sudo to provide a particular userid with root privileges for a particular task. You can set it up to be very specific with regards to the privileges that it provides. Check 'man sudo' for details.
# 3  
Old 06-21-2005
Thanks man. Can I have a UserID that has capabilities like "root" and can move around editing files, copying, etc but when changes are made, it doesn't carry the group "root" ?

I believe Sudo only get things done on a specific task ?
# 4  
Old 06-21-2005
Quote:
Originally Posted by Alvin
I know we can create a normal UserID with "root" priviledges by assigning the user into the "root" group. As such, everything that is modified by the UserID will also contain "root" as the group and ID. This is return causes less tracability on who made the change onto a certain file, etc.

My question is, can we setup this UserID with "root" capability but belongs to it's own group instead of sharing with "root" ?

Thanks everyone Smilie
You want that the owner:group on modified/copied files will remain the same as the user that modified the files. Got that now.

But this will undermine all security that is built into Unix. For example, a user changes the /etc/passwd file, then the permissions/ownerships of the file will be of the user that carries out the changes Smilie . This is crazy as then there is no accountability whatever for any further changes on the file!
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Bash script - Print an ascii file using specific font "Latin Modern Mono 12" "regular" "9"

Hello. System : opensuse leap 42.3 I have a bash script that build a text file. I would like the last command doing : print_cmd -o page-left=43 -o page-right=22 -o page-top=28 -o page-bottom=43 -o font=LatinModernMono12:regular:9 some_file.txt where : print_cmd ::= some printing... (1 Reply)
Discussion started by: jcdole
1 Replies

2. AIX

Sendmail "from" is not from the userID sending

On one of my servers (AIX 7.1 sendmail=V10/Berkeley) When I login and sudo su to a serviceID and send a test email, the from header shows as being from my loginID and not the serviceID. I have a second server (AIX 6.1 sendmail=V9/Berkeley) where following the same steps the email head has the... (3 Replies)
Discussion started by: LCarpenter
3 Replies

3. AIX

Change "root" to "root.admin" in outgoing e-mails

Our AIX servers send e-mails which have the "from" address set to "root@company.com" for our root user ("C{M}company.com" in /etc/sendmail.cf). The problem is that when bad e-mails are sent out or rejected by remote servers, they are being returned and delivered to e-mail box of "Mary Root". ... (2 Replies)
Discussion started by: kah00na
2 Replies

4. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone... (7 Replies)
Discussion started by: shis100
7 Replies

5. Solaris

difference between "root" and "usr" packages

Hi, could someone pls enlighten me on the difference between the "root" package and "usr" package? Like in this example: pkginfo -l SUNWGtku | grep -i desc DESC: GTK - The GIMP Toolkit (Usr) and pkginfo -l SUNWGtkr | grep -i desc DESC: GTK - The GIMP Toolkit (Root)... (6 Replies)
Discussion started by: masloff
6 Replies

6. UNIX for Advanced & Expert Users

A question/problem about oracle "tns listener" and "enterprise manager"

hi, I have a problem about the Oracle related components. I'm not able to find any answer yet, and waiting for your responses... Here is the configuration of my system: * an IBM P550 machine, * an AIX 5.3 running on it and * an oracle database, already installed on it. The problem (or... (1 Reply)
Discussion started by: talipk
1 Replies

7. UNIX and Linux Applications

A question/problem about oracle "tns listener" and "enterprise manager"

hi, I have * an IBM P550 machine, * an AIX 5.3 running on it and * an oracle database, already installed on it. The problem (or question of my own) is: Oracle tns listener, "CT_LISTENER", and the enterprise manager (EM) of the instance, which is uniq instance and called... (0 Replies)
Discussion started by: talipk
0 Replies

8. UNIX for Dummies Questions & Answers

Explain the line "mn_code=`env|grep "..mn"|awk -F"=" '{print $2}'`"

Hi Friends, Can any of you explain me about the below line of code? mn_code=`env|grep "..mn"|awk -F"=" '{print $2}'` Im not able to understand, what exactly it is doing :confused: Any help would be useful for me. Lokesha (4 Replies)
Discussion started by: Lokesha
4 Replies

9. AIX

Issues with "SU - userid -c command" on system reboot

Hi All! My db2 is started in the AIX /etc/inittab on systemreboot as follows db3:2:once:su - db2inst3 -c db2start >/dev/console 2>1 I changed the .profile of db2inst3 to put an alias to the db2start command as follows alias db2start="/usr/bin/ksh /home/db2inst3/sample/db2start.ksh" When... (1 Reply)
Discussion started by: voorkey
1 Replies
Login or Register to Ask a Question