Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
02-19-2004, 12:42 PM
|
#1
|
LQ Newbie
Registered: Feb 2004
Location: NJ
Distribution: Mandrake 9.2
Posts: 5
Rep:
|
Can't run programs/see files in man - MDK9.2
Hi,
I'm by no means a newbie here, but I just ran into something (simple?) I can't solve.
I have a Mandrake 9.2 box for my research with student (user) accounts. For a while, my account has been the only one on the machine and all has been well...
However, in creating new account yesterday for a new student in a new group, I tested the log in (tcsh), and found that I could not execute nearly anything "normal" (such as date, ls, etc.). Thinking it was a path issue, I saw the path was set correctly.
I struggled with this for a long time, and eventually set the shell to bash, which my (personal) account uses. Now, that user can execute a command, but when I tried to do a 'man' on a command (say 'man date'), the man pages find nothing.
I have no idea what the hell is going on here, but something weird certainly is.
Can this be an msec thing? How do I determine the current "level" of security I'm currently in, so that I can poke around with the settings?
What other things might I be missing? Does the new group need to have special permissions for basic fundamental activities? I've never run across this before...
(Also, I need to set up quotas for the newest users. How do I go about this? Is it a kernel switch/recompile? Is it a rpm? The machine does not run a window server, so I interface with it via the command line.)
|
|
|
02-25-2004, 01:56 PM
|
#2
|
Moderator
Registered: May 2001
Posts: 29,415
|
I struggled with this for a long time, and eventually set the shell to bash, which my (personal) account uses. Now, that user can execute a command, but when I tried to do a 'man' on a command (say 'man date'), the man pages find nothing.
User has access to regular stuff like man pages, slocate database, /usr tree?
If you do 'strace -v -eopen man date 2>&1|grep ".=.\-1."', what errors does it return?
Can this be an msec thing? How do I determine the current "level" of security I'm currently in, so that I can poke around with the settings?
Soz. Can't tell you. I ain't a Mandy user.
(Also, I need to set up quotas for the newest users. How do I go about this? Is it a kernel switch/recompile? Is it a rpm? The machine does not run a window server, so I interface with it via the command line.)
Rpm. Install it, set up /etc/quota.conf (and reporting cronjob), then initialise quota's on each partition you need quota's on.
|
|
|
02-25-2004, 02:40 PM
|
#3
|
LQ Guru
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733
|
I just set up an account on my computer with a security level of ¨higher¨. I am seeing the same thing you are. On the account that I use I set myself up as members of the groups:
adm, wheel, rpm, xgrp, ntools, ctools.
The account that I just created is a member of the groups: prog, wheel, games & ctools.
I did a google search for ntools group. Following is an excerpt from this website:
http://www.tldp.org/HOWTO/Linux+WinNT-7.html
Quote:
After that step was finished, and after entering password for root, setup asked to 'Enter a user' (an ordinary user). The difference between client and server installation was that the latter offered some additional tasks for the user:
- access to compilation tools (ctools)
- access to rpm tools (rpm)
- access to X programs (xgrp)
- access to network tools (ntools)
- access to administrative files (adm)
- allow "su" (wheel)
|
I believe that the track that you want to be on is to find out which group memberships allow which access right to users.
|
|
|
02-25-2004, 11:35 PM
|
#4
|
LQ Guru
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733
|
There is a program called ´adduserdrake´ that you might want to use when entering new users.
There are selection boxes for various group memberships that you can add to new user accounts as you enter them and a brief discription on what they allow. It´s a start I hope.
Good Luck!
|
|
|
02-25-2004, 11:49 PM
|
#5
|
LQ Newbie
Registered: Feb 2004
Location: NJ
Distribution: Mandrake 9.2
Posts: 5
Original Poster
Rep:
|
Well, it would seem that the groups you folks have identified are the ones I need. Sadly, I can't find any docuementation on the full list of groups and what they do. Looks like I'll have to guess.
The adduserdrake program did start up via my tty terminal, but I could not get out of it and had to "CTRL-Z" to get out and then kill the process. Next time, I'll stick to webmin.
Finally quotas. URPMI -y can't find aynthing about 'quota'. Is there another package name for the RPM for the quota software?
Thanks one and all.
|
|
|
03-01-2004, 07:38 PM
|
#6
|
LQ Guru
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733
|
I am not sure but quota may be one of the core-utils. Try urpmf quota or urpmq quota. They may tell you which package that quotas is on.
|
|
|
03-01-2004, 08:23 PM
|
#7
|
LQ Guru
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733
|
If you download the user manual from the Mandrake site, I believe there is a section with that various groups are used for. Many of them are pretty standard, so googling may be fruitful.
|
|
|
All times are GMT -5. The time now is 06:25 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|