Browsing articles tagged with "userpermissions - 4/5 - Admins Goodies"
Aug 15, 2011
tom

How do I set permissions to restart a program via cron?

I’m trying to get a couple of programs to restart via cron every x hours (like for example syslog-ng using “/etc/init.d/syslog-ng restart”). However, the following always gets returned: Stopping syslog-ng: [FAILED] rm: cannot remove `/var/lock/subsys/syslog-ng': Permission denied Starting syslog-ng: Error opening file for reading; filename=’/proc/kmsg’, error=’Permission denied (13)’ Error initializing source driver; source=’s_sys’ [FAILED] Which file permissions do I need to change in order to be able to restart the programs with cron? Thanks a […]

Continue Reading »
Aug 14, 2011
tom

What are the minimum permissions a McAfee VirusScan Enterprise Scheduled Scan needs to run?

A fairly simple one. We have a server, we should be doing a scheduled scan. The scan uses a scheduled task which requires a user account, what permissions should that account have? We don’t fancy leaving it to run as an administrator. EDIT: I have set up a user group called “AV Scanner” (or somesuch) which is basically a vanilla user with the power to delete anything. So far this seems to have worked out […]

Continue Reading »
Aug 14, 2011
tom

Apache 2.2 User Permissions / Public access folder

website.com:8080 is set to require a password. However, I need website.com:8080/public to be accessible to anyone. I found this example with Apache 2.3 which is exactly what I want, but I’m using 2.2 and AuthType None is not supported. <Directory /www/docs> AuthType Basic AuthName Documents AuthBasicProvider file AuthUserFile /usr/local/apache/passwd/passwords Require valid-user </Directory> <Directory /www/docs/public> AuthType None Require all granted </Directory> <Directory /www/docs/public> Order Allow,Deny Allow from all Satisfy any </Directory> The “Satisfy any” means that […]

Continue Reading »
Aug 13, 2011
tom

Cannot edit files owned by ‘nobody’?

I created a new user named bob, and gave it its own /home/ folder on my server so I can SSH into that instead of root. I had added bob into the nogroup group as I had read somewhere (or poorly interpreted it) as allowing me to edit nobody‘s files, but I get permission denied when I try. How do I edit nobody‘s files without running sudo every time, how do I grant permission for […]

Continue Reading »
Aug 13, 2011
tom

can I restrict access to root to only connected instance?

It will mean that if I am connected another user that will try to authenticate as root will get an error. The PAM module pam_limts can be used. Edit the /etc/security/limits.conf configuration file (maxlogins), and add the pam_limits module to the su service config. Check more discussion of this question. Bookmark on Delicious Digg this post Recommend on Facebook share via Reddit Share with Stumblers Tweet about it Print for later Bookmark in Browser Tell […]

Continue Reading »
Aug 12, 2011
tom

Active Directory Folder Effective Permissions of all users

I know that is easy to get the effective permissions of one group or user over a folder, but I want to know if it is possible to get the effective permissions for all users on my shared folder. There is any tool to do that? The built-in GUI dialog for Security in Explorer will show all explicit and inherited permissions on a file or directory. If a user isn’t listed, either by name or […]

Continue Reading »
Aug 11, 2011
tom

Add user which has free/busy access to all calendars on Exchange 2010

I’ve been given a challenge in relation to an ongoing IP telephony project at my workplace. The coming system features a client installed on every user’s computer from where they can do lookups on colleague’s information, their call history and whatnot. For this system to work, they’ve asked for an Exchange 2010 user which is to be used by this system to retreive information about all users – it’s this information which is then accessed […]

Continue Reading »
Aug 11, 2011
tom

Effective permissions different than that of defined permissions?

On my server, the IUSR_MYSERVER account has write access to some directories. I know this because if you check effective permissions, it says it can “Create Files / Write Data” and “Create Folders / Append Data”. The trouble is, if I go look at permissions that are defined, the IUSR_MYSERVER account only had Read & Execute permissions, and nothing more. This account isn’t a member of any groups. What are some things I can check […]

Continue Reading »
Aug 11, 2011
tom

User in group with r/w access does not actually get the read/write anything

I added my user to the www-data group. I chmodded a certain directory to 774 (-R, recursively) so only the owner and the group can change something. Yet my user can’t even access it. What am I missing? Here’s my ls -alh output: drwxrwxr– 13 www-data www-data 4,0K 2011-03-28 23:10 mydir What does id -a return? You may need to start a new shell or run newgrp, since your existing shells will not automatically get […]

Continue Reading »
Aug 10, 2011
tom

iptables owner match drops icmp for GIDs but not for UIDs

I have a strange behaviour of iptables that I cannot explain or understand. I have a user test which has its primary group test. I want to block any network access from this user. Now, if I say iptables -A OUTPUT -o eth0 -m owner –uid-owner test -j DROP and I su test and then I get the following: ping serverfault.com # WORKS nmap -sP serverfault.com # fails wget serverfault.com # fails However, if I […]

Continue Reading »
Pages:«12345»