Fedora :: Username Restrictions And Groups And Computernames?
Nov 24, 2009
I have searched for days on Google and can't find a clear answer to my question. I have a NT4 PDC which I am migrating to Samba 3 (Version 3.4.2-47.fc12) on FC12 with kernel(2.6.31.5-127.fc12.i686). I am using tdbsam as my passdb backend.I setup Samba as a BDC and then joined to NT4 Domain succesfully. When I go to vampire the accounts I get lots of errors and some user accounts get transfered over. It turns that all the user accounts that transfer are those that don't have a capital letter in their username on the NT4 domain server. Most do and don't get transfered. There seems to be errors with my groups and Computer accounts.Is there a way to change the requirements in Fedora 12 for username, groups and computernames?
View 1 Replies
ADVERTISEMENT
Mar 25, 2011
i have jsut setup a kvm virtual machine on my server. to connect to the VM from outside of the network i use ssh tunneling. what i would liek to know is if there is any way to create a new user with jsut ssh access. i dont want people to be able to edit files in ~/ or such. jsut need the user to estabilish the connection to the server
View 1 Replies
View Related
Mar 26, 2010
I was recently added to a group on the unix server. My active screen session has not been update to the new groups:
$groups
A B C D
$screen -r
$groups
A B C
Without closing my screen session is there a way for me to use my new privileges in the screen session? Or if not, is there at least a way I can save all of the different directories each of the tabs are on?
View 3 Replies
View Related
Sep 5, 2010
How can I get rid of all policykit restrictions that fedora 13 has? I just upgraded from fedora 10 and of course my freenx sessions are again unable to do anything useful like mounting a drive. Difference is no GUI now to help fix this. So I would like to get rid of all restrictions.
View 6 Replies
View Related
Feb 4, 2011
I already know of a work around to fix this problem, but I guess my question is why is this not working as expected? I am using a Windows Server 2008 R2 Active Directory for authentication.
I have run auth-client-config for the ldap profile and pam-auth-update. When running getent passwd, I get a list of both the local users and the users in the active directory (with populated information in the Unix schema extension). When running getent group I get a list of both the local groups and the groups in the active directory (with populated information in the Unix schema extension).
Interestingly enough, though, when I run su DOMAINUSER, after the prompt for the password I get an authentication error. In /var/log/auth.log I can see an entry with pam_ldap: missing "host" in file "/etc/ldap.conf". The SRV records in the DNS servers resolve correctly. I've checked this with nslookup and I have seen the records within my zone file. Obviously if the ldap.conf file is working with getent and the ldap server is resolving from the SRV records, it is working fine.
The interesting part is that the Windows Server 2008 R2 AD machine shows in the event viewer that there was a successful authentication, yet the Ubuntu box says no. When I add the host within the ldap.conf file, everything works...getent and the actual authentication, either initial login or su.
[Code]...
View 1 Replies
View Related
Oct 12, 2010
I am currently trying to set up a Samba domain server. In the Samba-HOWTO-Collection I found an
example file.(Point 3.3.3.1) In the explanations of the example below, the author says I need to map UNIX Groups to NT Groups. He writes a shell-script of how one could do it, but when I copy it and then execute it, I get the error:
Bad option: rid=512
Bad option: rid=513
Bad option: rid=514
The other groups do get mapped, just the Domain Admins, Domain Users and Domain Guests dont. This is the shell from the HOWTO:
#!/bin/bash
#### Shell-Skript f ̈r sp ̈tere Verwendung aufbewahren
net groupmap modify ntgroup="Domain Admins" unixgroup=ntadmins rid=512
net groupmap modify ntgroup="Domain Users" unixgroup=users rid=513
net groupmap modify ntgroup="Domain Guests" unixgroup=nobody rid=514
[Code]...
View 2 Replies
View Related
Dec 22, 2009
I have Fedora 10 installed. I want my users to be able to use any password they want. So I edited /etc/pam.d/system-auth, the password section.
Was:
Code:
password requisite pam_cracklib.so try_first_pass retry=3
password sufficient pam_unix.so md5 shadow nullok try_first_pass use_authtok
password required pam_deny.so
Become:
[Code].....
View 2 Replies
View Related
May 31, 2011
I have a work network of about 20 boxes most of which are running Windows 7 and one of them is a file server using linux and another is Windows server 2003. Now the local IP is distributed by the router, and no regulation of internet access is done by any of the servers.What I need to do is restrict internet access to select domains, which would probably need DHCP through linux(I think, not really sure), and I need something simple like a 'blabla.conf' file with the allowed websites that I can edit. need to know how to regulate IP addresses through the linux box (all details if possible, I never tried to do that before), and how to restrict internet access also through linux.
View 4 Replies
View Related
Jun 8, 2010
So i am at the stage of about to install the basic system and am using a derivation of the package management provided by Matthias S. Benkmann. To this end I am using his useradd and groupadd scripts to update the files:
/etc/passwd
/etc/group
My issue is that when I run the commands(created as part of temporary system when installing coreutils):
Code:
/tools/bin/su linux
#then as user
/tools/bin/groups
(here linux is the name of the user) This only returns the user being in the group named after user but not the additional group of 'install' Also, prior to logging in as user, if I use this command as root:
Code:
/tools/bin/groups linux
linux install This then returns that the user is in the correct groups. Lines from relevant files look like:
Code:
#/etc/passwd
linux:x:10000:10000::/usr/src/build:/bin/bash
#/etc/group
[code].....
View 8 Replies
View Related
Jan 15, 2009
just getting startedin linux <fedora9> and haveseveral questions. first what bookwould be best to start the learning process? have looked at fedora 9 and enterprise and the newest fedora 10 with enterprise and these seem to be aimed at networking setups which I do not have.also in adding users and groups which I have done I think successfully however when I use the newgrp command and try to access a file I have saved under a group with two members the file does not show in the ls command.
users are jevans in group programmers cevans in group programmers in creating the file I didthe newgrp programmers command and created the filein the cevans spotand changed to jevans and negrp programmers and the filedoes not show.so what do I do here, or is my understaning of this incorrect?
View 14 Replies
View Related
Nov 12, 2009
I'm setting up a Fedora 11 server for the company of one of my friends. So far so good. But now he has asked me to setup access restrictions to folders through samba. Now I'm quite familiar with user access policies, even though I'm quite new to the GNU/Linux world. What I want to know is : what is the best way to give and remove, on the go, rwx access for a specific user to a certain folder in a linux system? Can I create groups for each folders, whose members will have the given permissions? Or do I have to create users for each folder and add to their group the user witch i want to give privilege to?
View 5 Replies
View Related
Dec 5, 2010
I've just installed Fedora 14 x64 and had a few problems. I have a GT9800 video card and after installation x wouldn't start untill I added xdriver-vesa nomodeset to the kernel line. Anyway I've just got it to the point where it will actually boot but wasn't asked to create a user - the live cd installation only asked for root user password. So I used useradd to create a user and I'm finally at the desktop. My question now before I go about installing the nvidia driver is can someone confirm which groups my user should belong to. I haven't used Fedora since FC3 so I can't remember.
View 2 Replies
View Related
Aug 7, 2009
I created a user and I want the particular user in multiple groups. How Should I and after creating the user,If I want to delete that user from a particular group.
View 1 Replies
View Related
Feb 5, 2010
Im using Red Hat Enterprise Linux (RHEL) version 5.Im SAP administration system, and I m stuck in prerequisite check, what I have to ensure, before installation of sap system, is check if the S.O. red hat have installed some things that are required... which are some package and groups/categories... I dont have any experience in Linux and so I ask for help please how can I know, from Terminal command line which packages are installed in this S.O. and more I want to know whats mean "Categories / Groups", because I read in a sap note that mandatory to have installed some categories / groups which are for instance:
- Servers/Printing Support
- Base System/Base
- Base System/X Window System
- Development/Legacy Software Development
- Development/Development Libraries (for Oracle databases)
- Development/Development Tools (for Oracle databases)
Whats this and how can I check if it all exist in my Linux?
View 5 Replies
View Related
Nov 17, 2009
I'm trying to upgrade my Fedora 11 installation with preupgrade, but I get the following error with the GUI -
"No Groups Available in any repository"
the cli spits out -
Fetched treeinfo from http://archive.linux.duke.edu/pub/fedora/linux/releases/12/Fedora/x86_64/os//.treeinfo
treeinfo timestamp: Sun Nov 8 19:04:33 2009
.treeinfo | 1.2 kB 00:00
[code]....
View 1 Replies
View Related
Jan 12, 2011
I installed F14, then dropped in my passwd, group, and shadow from F9 w/o backing up
what F14 had done. So now I get some messages about missing users like rtkit
and missing groups.
Is there an easy way to find out what default users and groups F14 would have installed?
View 1 Replies
View Related
Feb 12, 2009
this directory has permissions 750 and is owned by user1 and group user1 I have an admin user that is primarily a part of group admin, but also a part of group user1 what would stop admin from having read and execute permissions on this directory? I'm running clamav and have a clamd daemon running as user admin (I could run it as any user, and I may make a special user later, but I don't want to run it as user1, user2, etc).
I have 2 (technically lots more, but let's just say 2 for now) users, user1 and user2 that have home directories /home/user1 and /home/user2. each is owned and group owned by user1:user1 and user2:user2 respectively with permissions of 750. my admin user is part of groups admin, user1, and user2 I need this to be able to scan my user's directories using the command (is this correct?):
clamdscan --move=/files/quarantine/ --config-file=/etc/clamd.d/adm.conf /home/user1/file
doing this gives the error:
/home/user1/file: lstat() failed. ERROR
If I change the directory permissions to 755, it works fine.Or if I leave the permissions 750 and change the directory group ownership to admin, it works fine. So, why would this be? Obviously it is a permissions issue, but why is it not reading admin as part of the user1 group and allowing the same permissions as it does when making the directory group-owned by admin?
View 7 Replies
View Related
Dec 1, 2010
When I'm running, I like to just do a base install to start, so that, I can go from there, only added things that I need. I just did a Base install of Fedora 14 x86_64, selecting only the "Base" package, and "vim-enhanced". But, when running a grouplist, it comes back with this...
Code:
[root@fcdesktop01 ~]# yum grouplist
Loaded plugins: langpacks, presto, refresh-packagekit
Adding en_US to language list
Setting up Group Process
[code]...
I don't see why these extra groups are included, when all I asked for was Base and vim?
View 1 Replies
View Related
Jan 1, 2011
I try to understand the reasons for restricting DVD and MP3. My conclusion so far is that DVD is restricted due to software patents (and the DMCA). The software decoding DVD is open software, though. What is the situation regarding MP3? It is also restricted. Is it due to the same kind of software patents? As I understand, the MP3 codecs are not free software (like DVD)?
View 2 Replies
View Related
Jul 30, 2010
The question is, as far as I know Ubuntu distro adds a user created with useradd to supplementary groups automatically. For instance, I want to enable sudo for all newly created users on my LiveCD and want them to be added to the group 'wheel' on creation. I'm sure it is possible to do it in Fedora, but how?
View 10 Replies
View Related
Jan 19, 2011
have recently encountered an issue in fedora 14 whereby upon entering the root password the users and groups and authentication utilities do not run. (system/administration/users and groups) They used to run fine.
View 6 Replies
View Related
Jan 2, 2010
I went through System-Administration-Users & Groups to change my username. I changed my name and the name of my home folder to match. After restarting it to activate the changes, I get these messages when I try to log in: Could not update ICEauthority file /home/Moo/.ICEauthority; There is a problem with the configurations server (/user/libexec/gconf-sanity-check-2 exited with status 256); and Nautilus could not create the following required folders: /home/Moo/Desktop, /home/Moo/.nautilus
View 14 Replies
View Related
Jul 25, 2011
Is is possible to change my username here without registering for a new account.
View 2 Replies
View Related
Nov 3, 2010
I recently installed vsftpd on my server. I noticed that users on the machine can login into vsftpd with their username and password on the machine and go to their root dir "/home/username".Now, I want to give some people a vsftpd username and password so they can upload and download files and folders to their folder, but this folder has to be in the "/var/www/(username)" folder. I don't want them to be able to go to any other folder than their own folder like "/var", "/etc" or "/home" etc. Also I don't want them to be able to login on the machine as a user, through putty for example. They should only be allowed to acces their folder with vsftpd, nothing else.
View 1 Replies
View Related
Jul 6, 2010
I'm working with Opensuse 11.2 and KDE 4.3.5. I tried to restrict the run command (with Alt-F2) in the kdeglobals file:
~/.kde4/share/config/kdeglobals
[KDE Action Restrictions]
run_command=false
But there is no effect. With Opensuse 10.3 and KDE 3.5 it works fine.
View 3 Replies
View Related
Jun 3, 2011
I usually use .htaccess to restrict access to directories. But what if I just wanted to secure a single php file? Is there some sort of code that would allow me to say ONLY THIS IP can access this PHP file?
View 3 Replies
View Related
Aug 20, 2010
I have a server with two active network interfaces. On one, I need ssh open for all users (it's running LTSP, and as I learned the hard way today, blocking ssh kills LDM access).
On the other interface (which connects to the rest of the network), I only want to allow a few administrative users to connnect.
Is there a way to do this cleanly using sshd_config or PAM? I don't want to do something hacky like running dropbear.
View 3 Replies
View Related
Sep 26, 2010
I have an Apache, PureFTPd, PHP5, and MySQL server setup and running. I'm running several scripts that require folder access of "var/www" in order to accomplish the scripts duty. How do I remove and/or work around the security measure?
View 7 Replies
View Related
Apr 21, 2010
I set some restrictions in /etc/pam.d/system-auth, but they don't seem to be affecting anything.
/etc/pam.d/passwd:
Code:
password required pam_cracklib.so retry=3 minlen=8
password required pam_unix.so md5 shadow use_authtok
/etc/pam.d/system-auth:
Code:
auth required pam_env.so
auth sufficient pam_unix.so likeauth nullok
auth required pam_deny.so
[code]....
View 3 Replies
View Related
Jan 14, 2010
I dont want to allow the user winny on saturday and sundays. I added the following line in the /etc/security/time.conf file.
login;*;winny;!SaSu0000-2400
Then i added the following line in the /etc/pam.d/login file.
account required pam_time.so
this is the first line of that login file. But if i tried to login with the username winny it allows me to get log in. Is anything has to be change?
View 14 Replies
View Related
