LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-18-2007, 03:41 AM   #1
Rudy Vogels
LQ Newbie
 
Registered: Jun 2007
Posts: 2

Rep: Reputation: 0
chown as non-root


I am using Red Hat Linux version 2.6.9-34
I am looking for a system parameter to set that allows other users than root to issue the chown command.
Standard this is not allowed but i need to override it.
I know on Solaris this is possible. What abaout This version of Linux?
 
Old 06-18-2007, 05:58 AM   #2
p_s_shah
Member
 
Registered: Mar 2005
Location: India
Distribution: RHEL 3/4, Solaris 8/9/10, Fedora 4/8, Redhat Linux 9
Posts: 237
Blog Entries: 1

Rep: Reputation: 34
Check for sudo user.
Command : visudo as a root user.
File : /etc/sudoers
Check manual pages for further info.

Example :

user1 ALL=/bin/chown

Last edited by p_s_shah; 06-18-2007 at 06:03 AM.
 
Old 06-18-2007, 09:50 AM   #3
jeenam
Member
 
Registered: Dec 2006
Distribution: Slackware 11
Posts: 144

Rep: Reputation: 15
chown is in /usr/bin thus is available to all users. Any user can chown files they own. If you want to allow them to chown files they do not own, then yes, sudo will work.
 
Old 06-18-2007, 01:00 PM   #4
slakmagik
Senior Member
 
Registered: Feb 2003
Distribution: Slackware
Posts: 4,113

Rep: Reputation: Disabled
Quote:
Originally Posted by jeenam
chown is in /usr/bin thus is available to all users. Any user can chown files they own. If you want to allow them to chown files they do not own, then yes, sudo will work.
I think this is true on some Unix system or another but, AFAIK, on Linux you actually can't chown files whether you own them or not, since that's a way to 'give away' files to some poor slob and avoid quota restrictions by saddling him with them.
 
Old 06-18-2007, 07:41 PM   #5
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 10,863
Blog Entries: 4

Rep: Reputation: 3995Reputation: 3995Reputation: 3995Reputation: 3995Reputation: 3995Reputation: 3995Reputation: 3995Reputation: 3995Reputation: 3995Reputation: 3995Reputation: 3995
Also check out the PAM (Pluggable Athentication Modules) facility. And ACLs (Access Control Lists).

Check out these info pages:
info pam
info acl


The PAM facility allows you to configure the authentication mechanisms which will apply to all kinds of tests. For example, on many systems only members of the wheel group may issue the command su. But why? The answer is "PAM."

The ACL facility allows you to define more fine-grained access controls for resources (such as files) than those which are provided by the usual Unix-style protection mechanisms. You may well find that, with proper use of this facility, you don't need to fiddle with chown anymore. (Windows has a similar facility.)
 
Old 06-19-2007, 12:20 AM   #6
Rudy Vogels
LQ Newbie
 
Registered: Jun 2007
Posts: 2

Original Poster
Rep: Reputation: 0
sudo

sudo is not an option in my case.
=> Situation is that i have a lunix cluster with StorNext filesystems shared to HP-UX clients. So the security needs to follow the shares on the clients.

i only need to allow a user to chown files he owns, but even that is restricted to root in new linux versions. Again sudo or su is not an option.

I will do some tests with PAM & ACL's. See what i can arrange, but i'm not convinced it will help.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Reversal of chown -R oracle . issued from / as root ubearcats Linux - General 3 12-13-2006 11:22 PM
proftpd chown as root failed john8675309 Linux - Software 2 12-06-2005 04:53 PM
Oops! I did a chown -R root from the '/' level Wujen Linux - Newbie 4 04-06-2005 05:20 PM
python script needs root chown ability kosuke Programming 5 11-07-2004 04:14 PM
chmod vs chown on some root files and yes apps ergo_sum Linux - Newbie 3 11-12-2003 10:49 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:20 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration