I wanted to set up Computer Lab. loading Fedora 11 OS and one system acting as a Server to store Users(Student) Login Informations. When students do a programs, all programs (eg, C++ programs) files should be saved in the local fedora system but when login to the system, the login should be validate by a Server System.
View 5 RepliesMy goal is this: Allow a user to connect to a server via SSH with any login name or password without checking to see if that account exists on that server. Their account would be captured by a universal account say, 'generic_user', and then they would be directed to one of my python scripts with the username and password they supplied for initial login. At this point my script would capture their SSHD process ID and allow/deny their existence based upon a MySQL/Subscription check.
The part I'm having trouble with is with PAM and allowing the user to login with any credentials and be successfully authenticated under the generic account. Beyond that, everything is great.
How would you make NIS user information override local user information on client systems? This is what I think is right? Add nis on the passwd registration file on the second line Is this correct?
View 1 Replies View RelatedI have a problem, I have installed Fedora 11. And i need to login as root user.
How to do so?
I want the last login information whenever I log in through FTP.
This is possible for normal console and SSH logins by configuring in /etc/login.defs file. But I am not able to view the last login information when FTP is used.
I like the server login information that gets displayed when you login to a 10.04 server. It lists disk usage, CPU usage, Temperature etc...
Unfortunately I had problems installing 10.04 from a USB. At the end of the process the master boot record was stored on the USB and not the hard disk.
But now when I login to my server I don't get the server information.
I am a new Linux user and have a question about the administrative authentication. When I am logged in as a user and I need to do something that requires root privileges the little password window comes up and I enter the root password. My question is how long are the root privileges granted for?I noticed that a few minutes after finishing checking out the firewall configuration tool and closing the window that I was still able to re-enter the fire wall tool and other administrative tools. How do I log out of the root privileges without logging out and then back into my account?
View 2 Replies View RelatedOn Linux server (Trixbox PBX) how to get SIP sitting information form server. It was configure before on X-lite on pc, mistaken its removed from sitting on pc. How to get SIP setting information form server.
View 9 Replies View Relatedwe have purchased the Dell PowerVault NF 500 NAS Storage Box with Window Storage server 2003 is Installed.we have LDAP server for authentication the user in network for accessing network resources.All ubuntu users on client side use ubuntu(LDAP server )for user authentication.when a user logon on client side machine his home directory is created on client machine .
but we want to use the NAS storage device to store the home directories of user.we want to implement that ,whenever a user logon his home directory is created on powerValut NF 500 storage device so that all user data is stored centrally for taking the backup .we want to mount NAS storage device so that user uses when they login and create user profile.
I started to work on building a ftp by vsftpd in our lab (that's only for our lab members). I am going to setup some the virtual users for each of the member. We have a CentOS5 (without upgrade after the fresh installation). I try several ways to setup the vsftpd for virtual users. 1) with db4 2) with mysql 3) without database and use htpasswd. But all fails. Actually, I don't want to use database, so I am going to find out the reason of failure on 'htpasswd' method
My vsftpd is installed in /etc/vsftpd (for only using ftp account, it is no problem to login).
1) I setup an account called vftpuser and build the corresponding home (/home/vftpuser), and then I setup another account call usera and also create a directory within /home/vftpuser.
2) I use htpasswd to add passwd to usera and store the passwd in /etc/vsftpd/passwd.
3) I added the name of usera to /etc/vsftpd/user_list
4) I create a directory /etc/vsftpd/user to store a unique conf for each user (for usera, the conf named usera) which contains the local root for users, which is
[Code]....
I'm seeing really bad user login format under a standard installation and am wondering why ubuntu does this as default. I have noticed that the graphical login for gnome sizes itself to accommodate a user's exact password length. This indicates to me that somewhere on the unencrypted part of a standard installation with user encryption contains at least some indication of the content of the password length which seems a security flaw even if not a complete hole, it majorly reduces the number of attempts a cracker would have to cycle through.
And that's assuming that *only* the length is contained. Furthermore it seems that it would be MUCH better to simply display the number of characters entered into the pw field and allowing the gui to expand itself from an fixed size as the field is filled out so the the user still receives visual feedback for entering characters. Either a simple character count display should be entered into the field or a 10 dot to new line so that one can visually quickly count the number enter by multiplying from a 10base graphical observation.
I was troubleshooting an error with my email and in the course of it chose to ignore a faulty SSL certificate. (I've reported it to the ISP in question.)Now that I want to remove that override command, I can't work out how to do it.where Evolution stores this setting so that I can remove it?
View 7 Replies View RelatedI wanna make a small web server for local use , I've installed apache, every thing works fine I'm the root
I wanna protect the folder that contain the htdocs files (www), i don't want any users that not in root group to access (not even read)
I changed the permission of the htdocs folder as next
Owner: www (apache user)
per: creat , delete
group: root
per: creat , delete
other: none
it only works on the main folder that i changed its permissions ! not all sub folders and files ! were my steps right ? and are their anyway to change all folders and files at once ?
As I was researching on how to create a kiosk Ubuntu setting I came upon a suggestion to create the user with '/usr/bin/screen' shell option.Hope you all would forgive me for this noob question but what does this mean? I saw when I checked the Advance Settings Advance tab that there are a couple of possible options there, what do they mean and how will they affect the user profile I'm creating? I tried google for this and if my understanding is correct, these shells are suppose to be programmable and a scripting language for linux but I'm confused on what effect this has on the user profile I'm creating?One thing I notice though is that with the '/usr/bin/screen' option, the user account is refused of the Applications > Accessories > Terminal option.When I googled each one of the options I'm getting more confused as to the relevance of this to the user profile.
View 3 Replies View RelatedI have just been gifted with a Linux dedicated server for the next six months, with an option to renew after that time has expired, and I'd like to set it up for FTP/P2P use. I do have some familiarity with Fedora from work, but only as a pre-installed desktop OS. The company providing the server has asked me to choose a OS, so of course I picked the one with which I already have some knowledge. They've also asked me to provide partition and mount point information, and it's here that I'm having some problems. I've spent most of my free time today reading everything I could about partitioning for a server, and I'm still not comfortable making this decision on my own.
The server comes with two drives - one 500GB and one 1TB, and 8GB RAM. My thinking is to use the 500GB drive for the OS, and the 1TB for media storage. I know I still have a good bit of learning to do, but I just want to get the blasted thing set up so I can get on with the hands-on part of figuring out how it works.
I can't get this to work on my machines.
So far I have:
1. created a key with ssh-keygen on the server to be logged in to
2. copied the .pub key to my local machine
3. chmod 700 ~/.ssh on both machines
4. chomd 600 ~/.ssh/ic_rsa on the server, and on known_hosts on my local machine
5. added the .pub key to ~/known_hosts on my local machine
my local machine doesn't have an "authorized_keys" file which is what everything is telling me I should append my .pub key to. The only thing that was in my .ssh folder was known_hosts, so I tried that. I also tried making an authorized_hosts file to no avail, changing permissions appropriatly on all files.
Should I/Can I reset ssh in some way? Is there are reason I don't have an authorized_keys file or is my known_hosts file my authorized_keys file?
Would it be better just to uninstall/reinstall ssh?
I am currently attempting to setup Samba 3 (installed) for a basic home-network file-sharing server via Ubuntu 10.04. It seems like (based on my extensive googling and research) nobody wants or has a configuration like I do, but surely SOMEBODY knows how to do this.
The following is my goal for a basic setup.
Folder 1 (share is called "Read-Write"):
-Users from Windows 7 can see, read, write, execute, create, or delete any files and folders in Folder 1 as they so desire.
-Users can accomplish all of this from as "guest."
Folder 2 (share is called "Read-Only"):
-I can log in as my user to see, read, write, execute, create, or delete any files and folders in Folder 2 as I so desire.
-People other than me can log in as "guest."
-"Guest" users from Windows 7 can see, read, and execute programs as desired.
Things I have accomplished:
-Directories exist
-Directories are browseable via Windows 7
-My user has a password for Samba (assigned via "sudo smbpasswd -a matthew)
Things I have not yet been able to accomplish:
-Configure Folder 2 so that Samba asks for login credentials when someone tries to access it SO THAT I an use my Samba user to log in.
-Configure Folder 2 so that, when I log in as my Samba user, I can see, read, write, execute, create, or delete any files and folders in Folder 1 as I so desire.
-Configure Folder 2 so that Windows 7 users can easily access it as guest to browse, read, and execute files and folders in it.
-Configure Folder 1 so that any Windows 7 user can easily access it as guest to see, read, write, execute, create, or delete any files and folders in Folder 1 as they so desire.
Consider the two runs of finger command for two different users:
Code:
[root@localhost ~]# finger root
Login: root Name: root
[code]...
i'm trying to use the database that was used by vpopmail and vqadmin with postfix and dovecot. By setting up dovecot to use mysql, i can query username and password for authentication but how do i create a user and edit its information in the database? Poastfixadmin only use database that was created along when installing it.
Any viable option aside from recode postfix to meet my criteria?
I want to limit what a authenticated user can do on my Linux server. I've set the default shell to rbash, but I know a knowledgeable user can switch shells. Can I use file permissions to deny execution rights to /bin/bash to anyone who is not in a particular group? And if that works, how do I find out what other shells are installed on my server (Ubuntu 9.10)?
View 7 Replies View RelatedI got this from a website (cant remember URL).
Be warned if someone actually does manage to login as root on your computer or server.
Edit .bash_profile for root. How do I do this?
Code:
echo 'ALERT - Root Shell Access on:' `date` `who` | mail -s "Alert: Root Access from `who | awk '{print $6}'`" your@email.com
Replace your@email.com with your own email. Save the file and exit.
Does anybody know of a way to display all user ID information? Akin to the lsuser command from AIX? Need to find out if an ID is disabled/locked out sucessfully.
View 1 Replies View RelatedHow can I set up snort to only log and detect/capture logins using root or any of the "homeusers" login accounts or names?
View 9 Replies View RelatedI have installed CentOS 5.2. I want to login automatically for an user without authentication.
View 2 Replies View RelatedI want to disable the remote login for particular user id in linux server.
View 11 Replies View RelatedMy case is that, the LADP user connected could not login via SSH. This user could login in the system console. And all the other users could login within ssh. And I was wondering whether any one could suggest which place to check next. And here is the detail: I was using SUSE 11.3 when I met this error. PAM module is used, and the corresponding files in /etc/pam.d/ have all been updated. Here is what I've added:
Code:
yl-1:/etc/pam.d # fgrep ldap *pc
common-account-pc:account [default=bad success=ok user_unknown=ignore] pam_ldap.so
[code]....
I've been looking for a tweak that would allow me to store temp and log files in ram. I've found a few that involved editing the fstab file, but they were either Ubuntu articles or they were over a year old and perhaps didn't apply to Fedora 14.I hear there is also a 'noatime' command that can help speed up processes by telling the kernel not to saved when files are accessed.And what are the advantages and disadvantages of noatime, and writing log/tmp files to ram?
View 7 Replies View RelatedI recently set up a family computer for a friend, and now his son is "experimenting" with the terminal (randomly entering commands). since he could accidentally do something bad, I am supposed to prevent him from using terminals, but only as hi user. I tried vlock and away, but with vlock it says 'this terminal is not a virtual console', and away can't seem to lock all consoles.
View 9 Replies View RelatedSecond off, I'm trying to capture a user password on login (through gdm) such that I can re-use it for a service like Kerberos or AFS. The idea is that the user has to log in only once, and then I renew the tickets and tokens until they log out again. If there's a better way to do this
View 4 Replies View RelatedI am trying to disable accounts after 5 unsuccessful login attempts. I am following the guidelines in this article:
[URL]
This is on an Oracle Enterprise 5.4 box, which is essentially RHEL 5.4 Here is what my /etc/pam.d/system-auth looks like:
--------
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
[code]....
Unfortunately, the account does not seem to be locked or disabled. As root, runninng 'su test2 -c <some-command>' always sucessfully runs <some-command>, and leaves the failed attempt count at 6. /etc/shadow does not have an * or ! anywhere in the encrypted password for the 'test1' user.
What am I doing wrong? I thought that with the max attempts set to 0 in faillog, that the deny= parameter would be used. I thought I should be using su <user> -c <command> from the root account to test if the disable feature is working.