How the /etc/passwd file is written when user does not have permission
Hi,
/etc/passwd file has write permission only for the root user.
Now when a normal user changes the its own password using passwd command, how this information has been written to the /etc/passwd file when the user is not having write permission to this file.
As you can see from the owner's (i.e. root) perm bits instead of the usual x
for execute there appears an s, the so called suid bit (that's what era referred to).
This means that although most of the times executed by ordinary users,
the command actually runs under the effective uid of root who is the only one on the system (normally) who is allowed to write to the file /etc/passwd.
If you look at the perms of the ping command you will find another suid binary
because ordinary users are not allowed to emit ICMP echo request packets.
Because of the security implications those elevated privileges impose
you generally will find only very few suid enabled executables on most Unix systems.
And their number should be observed in e.g. security audits or when hardening a system.
Hi all ,
The FTP user defind in my passwd file has ! in the hash password field and i want to know way is that its usually either
MD5(Unix) hash or * can anyone explain to me i'm new for unix and want to learn
this how my passwd file looks :
... (2 Replies)
I have logged into a box with some userid,but in this box der is no entry for this userid in /etc/passwd file.this box is used by multiple users but none of them have their enteries in passwd file but for each user there is a directory in /home
like for user1 /home/user1
for user2... (5 Replies)
Hi,
I've a user alias file in the below format.. I need to change all the ID's that come after the = sign (with some multiple ID's which are separated by comma's) to their respective users that are contained in the passwords file.. Whats the best way to go about this.. Some sort of sed command in... (2 Replies)
Hi
root user creates a user using the useradd command. This command creates an entry in the /etc/passwd file. /etc/passwd file has rw permission for the root user. Now, if I happen to remove the w permission for the root user, useradd command still is successfully creating entry in the... (3 Replies)
Is there any possible way to give permission to a user to a file whose not a member of that group. Also the permission of the file shouls be given only to that USER but not all OTHERS.
Thanks in Advance for ur replies/suggestions... (5 Replies)
Besides doing some shell-script which loops through /etc/passwd, I was wondering if there was some command that would tell me, like an enhanced version of getent.
The Operating system is Solaris 10 (recent-ish revision) using Sun DS for LDAP. (5 Replies)
Guy's
we are in AIX 5.3
We have created two users user1 and user2 and they are under same group Staff Group
user1 will create file under /tmp/ and this is the permission of this file
-rw-r--r-- 1 user1 staff 1 Jun 13 09:47 file
user2 is under same group and when he... (14 Replies)
hello,
I would like to grant full access to a directory which is owned by root and the web application that created it. I have though of adding the permission to the whole world, but for security reason I would like to grant it to one more user.
I have tried this 'chmod -U newUser+wrx... (2 Replies)
Hi Gurus,
i have ussers cannot change their passwords, neither can root change the user's password.
O.S. Solaris 8
up−to−date on security patchaes as far as I know.
Examples (names have been changed to protect the guilty):
User logged on:
$ passwd
passwd: Changing password for <user>... (8 Replies)
Hello,
My issue is that I want to look for specific users that have their first and last initial followed by four numbers. For example:
ab1234
I've already got the user ID's out of the passwd file
more passwd | awk -F ":" '{print $1}' > userids
I just need to know how to just pick... (8 Replies)
