Security :: Block User Accounts Who Has Not Logged In To The Server Last 2 Months?
Mar 1, 2011
We have 4 servers having rhel 5.2. We have several users logged in on one of them. We have nis server/client running on them and have common home area mounted on all of them. Now we want to disable/block the accounts of the users who have not accessed our servers in last 2 months from today.What logic should we apply to do so? We were checking stat of .bashrc of each user but is not correct logic. We are going to write shell script for the same. We dont want to do anything in users home area or their files.
View 11 Replies
ADVERTISEMENT
Mar 4, 2011
We have 4 servers having rhel 5.2. We have several users logged in on one of them. We have nis server/client running on them and have common home area mounted on all of them. Now we want to disable/block the accounts of the users who have not accessed our servers in last 2 months from today. What logic should we apply to do so? We were checking stat of .bashrc of each user but is not correct logic. We are going to write shell script for the same. We don't want to do anything in users home area or their files.
View 2 Replies
View Related
Apr 8, 2009
I have a windows 2003 active directory and dansguardian transparent web filter. I want that dansguardian filters according by whom is logged on the workstation. Can this be possible?
View 2 Replies
View Related
Feb 21, 2011
I am looking at creating two user accounts for "contract system admins"..These guys will be performing sys admin duties for a sever -- however, I am still concerned about security of data. For example, the server contains password information for our database, etc.Besides making them sign an NDA, etc. what other security mechanisms could I put in place to ensure that they don't just go buck wild. For example, when someone makes a sudo command, is this logged?
what are some recommendations for general security practices?
View 1 Replies
View Related
Sep 25, 2009
way to automate adding and removing users from 10 different Fedora 7 servers. We use them as print servers and our users have a user name and password to authenticate with when printing. We also use Samba to talk to a W2k3 server that tracks and charges the users for what they print. The set up was done by a vendor and after 6 months of being in production the scripts they created has flaws.
I need a way for a script to run as often as possible that will remove, change, or delete user accounts from the servers and from Samba. how to most effectively achieve this?
It would be ideal to have a file that gets written to when a change needs to be made then a script to make these changes?
View 1 Replies
View Related
Jan 1, 2011
My Linux is Fedora release 13. I found there are a few users created not by me. I am not sure if the system got hacked somehow. Then the hackers created these users, i.e. (1) oracle, (2) exim, (3) test, (4) cox. I tried to delete all of these four users by using "usrdel" command but the system said "I cannot delete these users as the users are logging in". If my system got hacked ?? or these users are created by the system itself?
View 8 Replies
View Related
Jun 8, 2010
I am trying to disable accounts after 5 unsuccessful login attempts. I am following the guidelines in this article:
[URL]
This is on an Oracle Enterprise 5.4 box, which is essentially RHEL 5.4 Here is what my /etc/pam.d/system-auth looks like:
--------
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
[code]....
Unfortunately, the account does not seem to be locked or disabled. As root, runninng 'su test2 -c <some-command>' always sucessfully runs <some-command>, and leaves the failed attempt count at 6. /etc/shadow does not have an * or ! anywhere in the encrypted password for the 'test1' user.
What am I doing wrong? I thought that with the max attempts set to 0 in faillog, that the deny= parameter would be used. I thought I should be using su <user> -c <command> from the root account to test if the disable feature is working.
View 1 Replies
View Related
May 12, 2010
Once again, nobody seems to understand security properly when they decide to add nifty new features. After upgrading to 10.04 from 9.10, I now have a listing of all the user accounts under "Switch from" when I go the the logout menu at the upper right side of the task bar. This is a terrible security hole that should never have been allowed in the first place, and is just as annoying as the default behavior of listing all the user accounts on the login screen.
View 5 Replies
View Related
Aug 19, 2009
We have a web server and are trying to meet a clients requirementes around accountability.Basically, everything in the system should be accomplished using user accounts that are individually identifiable. So basically, no root user, since that's anonymous.So how should we set up these user accounts?Being administrators, we want them to have easy access to files not owned by them, such as ones uploaded using FTP accounts or via apache.We want to be as secure as possible though.
My current thought is to add them to the root group so they have full read access throughout the system, and add them to sudo, but I worry that gives them too much control.
View 3 Replies
View Related
Jan 27, 2010
I'm running a network with a NIS. I want to implement a guest account on my network. The requirements are that the guest can log in on multiple computers at the same time and that the guest account's file are wiped out when they log off. The problem is that when guest is logged in on two different machines some programs (like firefox) will only run on one of them at a time. Is there anyway around this?
Also: I anticipate a settings nightmare. If guest is logged in on one machine and changes the desktop background then guest logs in on another machine will the background change in both places? What happens when the same file is written at the same time?
View 1 Replies
View Related
Dec 7, 2010
Is it possible to install Ubuntu Server and have user accounts and log into the server via a Windows XP machine? Sorry if its a stupid question! Many thanks
View 3 Replies
View Related
Mar 4, 2011
I recently installed FC14 as my server and is able to ssh and vnc into the server when locally logged in. If i logged out (at login screen) then i cant ssh or vnc into the server. It is pointless to have a server if i am not able to remote in via ssh and vnc.
View 7 Replies
View Related
Nov 24, 2009
I am running a mail server with combination of dovecot,sendmail and squirremail as web client. I want to change the password of the user if he/she not logged in for 21 days.
View 4 Replies
View Related
Jul 15, 2010
I've been tried to be system admin, programmer, network admin, or network engineer. So, I've been studying this and that... what so ever struggling to find my talent. Back in 2007-2008, I was MS server admin/comm tech. I saw a building running MS server for user computers and Red Hat 9 as a main system server. MS sever was a just one of the user accounts of Linux server. When I log in to Linux, I could see log menu to access MS server. How could somebody make this creative thing?I'm now a Network engineer because working with CISCO router and switch is easier than working as programmer or server admin. I've studied Oracle 10 and VMWARE also but there are ceasless stuffs that I need to study... For now, in regards of my limited brain power, network engineer is proper for me.
View 1 Replies
View Related
Jul 12, 2010
How can I (as admin) find out when a certain user e.g. "karl" most recently logged in and most recently logged out of a system?
View 2 Replies
View Related
Aug 26, 2010
I am thinking of getting a domain name or ten I do not know were to point the domain to?
and what do I need to setup if a user wants a domain name to point to his account on the server? ok more like I want to have a few domains pointing to my user accounts I have setup on the server..can I do this directly or do I need a server domain first before users can get a domain name?
I have a basic setup user web space and ftp and mysql setup
what extra would I have to install or not to be able to get a domain pointed to my server and/or user accounts?
I don't seem to be able to find anything specific on how to set this up anywhere.
View 7 Replies
View Related
Jan 7, 2011
I work at a small animation studio with a server box running Cent OS. We have no IT guy... I happen to know a little bit of programming so I got assigned to look after this server box. I'm still in the process of learning basic linux using VMware at home at themoment.There are few things requested from me that are really beyond my knowledge at this time and I really need some advise or pointer to get started.Current set up- We have 2 servers. A windows server 2008 and a Cent OS. They don't work together... They are only acting like a central "hard drives" so to speak.
- Cent OS was a new addition to our team. It was recently requested by our client. They set up RSync for us to get files from over sea and they want our file structure to match theirs.- We have 15 work stations. Not set as domain yet. We boot into Windows 7 for projects stored on windows server, and boot into Fedora for projects stored on Cent OS.What I was asked to do- Centralize user accounts. My boss wants both windows and fedora to log in using the same account. What would be the best approach to do this? We want the accounts to be managed via the Cent OS box. Permission to access hard drives on the server should be controlled as well.- Maximize Rsync. This one is really beyond my knowledge. The Rsync process from our clients sometimes doesn't go through. They want to make sure the process works as smooth as possible.
View 4 Replies
View Related
Apr 28, 2011
Is there an ssh or sshd parameter that can be set to block out a user after a set number of attempts tp login ?
View 1 Replies
View Related
Oct 22, 2010
On my server I some times login from my home where I have an internet connection which does not have a static IP each time I switch on my modem a dynamic IP isgenerated.I see in auth.log logs of following lines Quote:reverse mapping checking getaddrinfo forkkts-kk-dynamic-01.1.168.192.some_broadband.in [192.168.1.2] failed - POSSIBLE BREAK-IN ATTEMPT Accepted publickey for root from 192.168.1.2 port 22852 ssh2when ever I login to my server from home.In this case I do know that it was me who logged in but still why do I see such a log.What is this complaining about?
View 11 Replies
View Related
Jul 9, 2010
I want to block a domain name in sendmail server. I added the domain name and "REJECT"in /etc/mail/access file. What has to be done for the changes to take effect? when i run make command in /etc/mail dir i get following error : make: Nothing to be done for `all'.
View 1 Replies
View Related
Mar 24, 2011
i am using RHEL 5. i configured proxy server. now i want block one website.
View 2 Replies
View Related
Aug 26, 2009
I want to block some ip address that are attacking my server and making my ssh port busy. On searching the google, I found
Code:
iptables -A INPUT -s ip_address -j DROP
I will add this rule in iptables. My questions are:
1) do I have to do
Code:
chkconfig iptables on
so that it load the iptables at boot. I am wondering why do I need this because iptables is already modified and it loads the iptables at boot time if firewall is enabled.
2) When we add the above rule, which file is modified? Another way, where are this rules stored? It is not in /etc/sysconfig/iptables and /etc/sysconfig/iptables_config.
View 1 Replies
View Related
Jun 23, 2009
securing VNC connections by tunneling the connection over SSH. However, from the server perspective it will still allow an unsecured connections and you're relying on the client to setup up the SSH tunneling. Is there a way to configure the Linux server to now allow connection over an unsecured channel?
View 4 Replies
View Related
Mar 14, 2011
Battlefield 2 server being attacked by packets that creates infinite loop, then when a player disconnects, server crash.
The packets seems to be always the same.....
Attacker Script: [URL]
Script in action:
[Code].....
I need to find a way to block these 4 packets (i think theyre 4 for what i tested) with IP TABLES.
EDIT: There seem to be other different replies, maybe 1 different but no more.... maybe you can find something useful in the script.
View 3 Replies
View Related
Aug 17, 2010
I am having a web server (apache) and 3 sites are hosted in it, named as www.web1.com,www.web2.com and www.web3.com.
I need to restrict www.web2.com to Internet users and allow only to local network. At same time I need to allow www.web1.com and www.web3.com to both Internet and LAN users.
View 2 Replies
View Related
Jul 22, 2010
I have setup a squid server on Rhel5.4. I would like to know how I can configure my squid server to block anon proxy sites.
View 3 Replies
View Related
Apr 30, 2010
I am trying to run the following only once every three months but looks like it runs every day. I edited crontab -e and added the following:
Code:
0 23 * jul,oct,jan,apr * /path/to/script > /var/log/script.log 2>&1
View 2 Replies
View Related
Feb 27, 2011
logging in a server through putty in the same network when i executed last command its showing system ip logged in time and logged out time the output as followsthis is my system
oot pts1 xx.xx.xx day month date time in time out timeand similarly am geeting other than this likeroot :0day month date time still logged in this is from more than 3 days its logged in
View 2 Replies
View Related
May 13, 2011
OS: Ubuntu Server x64 10.04 Apache: 2.2.14-5ubuntu8.4 I have a virtual server which has been running for months with no problems then one day I saw that it crashed and I had to power cycle it. Since then I have been unable to start Apache as it segfaults no matter options I give it. Before I try to reinstall Apache, why is this segfaulting?
Code:
execve("/usr/sbin/apache2", ["/usr/sbin/apache2"], [/* 21 vars */]) = 0
brk(0) = 0x7f9f48f8d000
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f9f47e0d000
access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
open("/etc/ld.so.cache", O_RDONLY) = 3
[Code]...
View 2 Replies
View Related
Feb 6, 2010
I'm installing a new laptop for a friend of mine and he wants 3 user accounts, similair to how he runs his windows setup.
1, an admin account, we have called this account peacemaker.
2. his account
3. an account for his girlfriend.
The problem we have is that if we want to do anything from the terminal that requires elevated priviledges, sudo does not accept his password or that of peacemakers. we have done sudo -i -u peacemaker but it still doesn't accept either password, stating his account is not in the sudoers list.
I'm not a massive expert here, but research brought me to this page:[URL]... But that then just means his account has admin rights, which is what we were trying to avoid. We wanted a setup similair to windows where if you want to run someting with elevated privledges if pops up asking for the admin password. This works in the gui, but not in the terminal.
So in short, my question is, is there anyway of having the terminal accept peacemakers user rights from the his normal user account? If I add the account to the sudoers list like it suggests, does this again just give his account the prilvedges rather than saying supply me with the password for peacemaker.
this is probably not really needed and he can just have his account as the main user, but coming from a windows background, he would prefer the 3 user accounts model (2 normal users, 1 admin)
View 4 Replies
View Related
