Security :: Loging In Ssh With User Nmot Present In /etc/passwd
Jan 26, 2011
Is it possible to log in secure shell (openssh ) using a username and password which is not present in "/etc/passwd" .The shell created after authentication should be owned by the logged in user . Is it possible to store the user infromation like uid , gid , home dir , shell in some remote machine instead of /etc/passwd and then retrive the these these information when a session is created for the logged in user .
View 2 Replies
ADVERTISEMENT
Jul 28, 2010
In what cases would a user appear in /etc/shadow and not /etc/passwd
View 2 Replies
View Related
Apr 22, 2010
we are trying to make a policy decision whether to go with SSH user/passwd or PPK secure key ? our servers are hosted remotely by a hosting service. we were wondering which of these two models are more secure.e.g. i would tend to think that user/passwd with account lockouts upon failed attempts would be more secure because the other option exposes your server in case someone sneaks the PPK file or steals your whole computer.however, what makes me doubt myself is that Amazon Web Services EC2 cloud hosting uses PPK by default (although an instance's SSH config can be change to accommodate logging in but they don't endorse it).
View 3 Replies
View Related
Apr 23, 2010
I am using Red Hat and was wondering how to disable username and password only login and require that a PPK secure key file be used for authentication ? I can log in using the secure private key and the public key that is in ~/.ssh/authorized_keys but i can still log in using the plain username and password login.
View 2 Replies
View Related
Jan 14, 2011
we know that /etc/passwd - is a replica of /etc/passwd file and acts as a backup in any damage done to /etc/passwd file..i have observed a strange thing in RHEL 5.4....for example... if /etc/passwd has 100 accounts.. then /etc/passwd - is having only 99 accounts....when i add 101 useraccount with "useradd" then /etc/passwd has 101 accounts and /etc/passwd is having the 100th account of /etc/passwd - ..when i delete /etc/passwd and recover it with /etc/passwd - from runlevel 1 the lastly created user is not having his account after recovery.. what is the solution? this is same case even with /etc/shadow and /etc/shadow -
View 2 Replies
View Related
Nov 4, 2010
I need;
1- X user login to server
2- X user used command du,mkdir,cat .. etc.
3- 1-2 actions and included command print send specified emails.
View 2 Replies
View Related
Dec 20, 2010
All servers mentioned below run OpenSuSE, either 10 or 11.I am currently working on a few scripts that are meant to be used as part of a continuous integration setup. I am trying to keep these scripts reasonably secure, and so I have made sure that all the servers run these scripts only as a specific user (user1) that has permissions to basically nothing else. The problem I am currently running into is that I need to start and stop tomcat as user1 but this user doesn't have permissions to the tomcat rectory (only tomcat has execute permissions). I have a temporary workaround in place while I work on the scripts (I have an SSH key in place that allows me to SSH from user1o tomcat without a password and execute my commands that way) but it is not very secure. I have tried adding the following line to /etc/sudoers:
Code:
tomcat localhost = NOPASSWD: /opt/tomcat/bin/startup.sh, /opt/tomcat/bin/shutdown.sh
but it doesn't work as I expected it to. I tried a few different syntaxes for that line,
[code]...
View 6 Replies
View Related
May 16, 2011
I have just got my Openldap server up and running howerver, I admit I'm a little confused about authenticating a client mechine to the server. When I create an account on the ldap server, does this mean that the server creates a user account in the /etc/passwd, or somewhere else on the server?
View 2 Replies
View Related
Oct 15, 2010
How we can take username from the /etc/passwd which have UID more than or equal to 500.
View 3 Replies
View Related
Mar 8, 2011
Is there anyway to have a different password for login and root? For example, my account is Bratu. I want a login password: ABCD and my root password: EFG
View 1 Replies
View Related
Mar 25, 2011
How I can do a ftp connection putting the user and passwd, and I would do! Today, I need to know how can I do this, but in SFTP!
View 1 Replies
View Related
Feb 4, 2010
I started to work on building a ftp by vsftpd in our lab (that's only for our lab members). I am going to setup some the virtual users for each of the member. We have a CentOS5 (without upgrade after the fresh installation). I try several ways to setup the vsftpd for virtual users. 1) with db4 2) with mysql 3) without database and use htpasswd. But all fails. Actually, I don't want to use database, so I am going to find out the reason of failure on 'htpasswd' method
My vsftpd is installed in /etc/vsftpd (for only using ftp account, it is no problem to login).
1) I setup an account called vftpuser and build the corresponding home (/home/vftpuser), and then I setup another account call usera and also create a directory within /home/vftpuser.
2) I use htpasswd to add passwd to usera and store the passwd in /etc/vsftpd/passwd.
3) I added the name of usera to /etc/vsftpd/user_list
4) I create a directory /etc/vsftpd/user to store a unique conf for each user (for usera, the conf named usera) which contains the local root for users, which is
[Code]....
View 1 Replies
View Related
Jul 2, 2010
I work for a seismic company that has recently experienced a security issue. Because we have an isolated network that is used for HPC work we have a very open security structue ie password less accounts rsh rlogin etc. We had, seemingly,a user that has maliciously deleted another user's files but I still haven't figured out how. So far I have been able to prove that this user has remotely logged into another host under that user's account... or at least that their workstation did. The /var/log/message file shows logins from their workstation as that user multiple times durring the times that these files were being deleted. There are wildcard searches for these files in the history in this host. There is a vi session initiated on this host for a file called delme (delete me) and then a chmod +x for this file. and then a deletion of this file (rm delme). Funny things: this user has no business in this acct. this user was bounced off the other host (permission denied) when trying to log into the other host and then as root logged into the other host as the other acct. repeatedly... ie. rsh -l xxx (permis den) then as root rsh -l xxx (logged in) why not su xxx and then rsh? password less acct?! why use root privs (which they sholuld not have) to log into a passwd less acct? Can't see any remote logins to their workstation from elsewhere. can't find smoking gun. no execution of delme script or any other rm /*/xxx/* sort of command that proves when file deletion of striped files happened?!
changing root passwd soon.need proof that no remote logins to a CentOS 5.3 workstation could be responsible.
Could mean someone gets fired.how can I be sure that no other users logged into this machine and then into another machine for sure?
View 2 Replies
View Related
Sep 24, 2009
I am trying to write a remote access module. Is there any function in linux where I can give string (password entered by user) and compare it with the actual user password stored in /etc/shadow. Since the password is stored encrypted in /etc/shadow I cannot parse and compare. So I want some method to compare if my user entered the correct password..Is there any function for that..
View 6 Replies
View Related
Feb 18, 2010
is it possible to create a shell script that adds user and password in the passwd and smbpasswd?
View 3 Replies
View Related
Dec 25, 2010
when loggin as a normal user and search for a file passwd under /etc. i get few errors with permission denied.how to ignore this permission denied errors.
csh hostname 109 % find . -name passwd
find: ./lvm/backup: Permission denied
find: ./lvm/archive: Permission denied
[code]....
View 4 Replies
View Related
Aug 10, 2010
Not able to login to a user account, even after clearing the password from root using passwd -d
[root@ivrsdb1_pnq /]# passwd -S oracle
Password locked.
[root@ivrsdb1_pnq /]# passwd -u -f oracle
Unlocking password for user oracle.
[code]....
View 3 Replies
View Related
Mar 13, 2011
i have just updated to openSuSE 11.4 [64 bit]; rkhunter is giving these Warnings :
Warning: User 'rtkit' has been added to the passwd file.
Warning: User 'pulse' has been added to the passwd file.
Warning: User 'statd' has been added to the passwd file.
Warning: Changes found in the group file for group 'audio': User 'pulse' has been added to the group
Warning: Group 'rtkit' has been added to the group file.
Warning: Group 'pulse' has been added to the group file.
Warning: Group 'pulse-access' has been added to the group file.
Warning: Suspicious file types found in /dev: /dev/shm/initrd_exports.sh: ASCII text
Warning: Hidden directory found: /dev/.sysconfig
Warning: Hidden directory found: /dev/.mount
Do these look Normal, Are these False-Positives??
View 4 Replies
View Related
Mar 27, 2011
I am using BackTrack 4 RC 2, Metasploit and Armitage. I am not able to see my target computers in the target area of the Armitage application after performing an Nmap quick scan (OS detect) on my wireless network (I have several computers connected to the wireless network).
Furthermore, I got the following warnings when trying to do the Nmap quick scan (OS detect):
Quote:
What do these warnings mean?
I was following these steps (as seen in this video: [url])
Code:
View 4 Replies
View Related
Feb 2, 2011
created a user but i forgot to change the home directory permission.so after user created when i go to the user and group mangement i cant see that permission filed related to the home permission directory.my purpose is to stop accessing other user to my home directory,how it can be possible??
View 4 Replies
View Related
Apr 15, 2009
I've been looking for this feature for months and couldn't find a solution for this. Does anyone know how to create users and limit the user to a specified directory?
View 6 Replies
View Related
Dec 8, 2010
I have installed Debian squeeze(testing) xfce. While I was changing selecting themes for the xfce window manager. It logged off and came to the login screen(gdm I think). On giving the username and password, it again comes to the same login screen. I can't get to the desktop.
View 14 Replies
View Related
Nov 14, 2010
Im trying to get syslog-ng to log ssh stuff to a own file (later i want it to be forwarded to a other server but thats a later problem.
The thing is that if i restart my syslog-ng server and login with ssh, it logs it. but when i login again it dont. But if i restart the syslog-ng daemon again it logs again, but only once.
Here is my config.
Code:
View 1 Replies
View Related
Jun 13, 2011
Yesterday I was working on Ubuntu, i shut down the computer normally, and then when i restarted it like an hour later i couldn't bypass the login screen. I insert my username & password correctly and the screen goes back for one second and then displays the login and password inputs again. I have just one username there. Before i shut it down i was trying to install Eclipse, so i messed around with some files related to Eclipse only, if that has anything to do with the problem. I also have Windows XP installed along with Ubuntu 9.10.
View 3 Replies
View Related
Jun 29, 2011
I'm using a cd to try Ubuntu 11.04. New user here. I get a message that requests for the wireless network password. When entered it appears to be valid. When clicking on wireless icon it shows connected. When I launch FireFox it can't find a server. Then after a few minutes it once again asks for the wireless password.
View 1 Replies
View Related
Feb 2, 2011
What security mechanisms are used by recent versions of the Linux operating system during user authentication?
View 3 Replies
View Related
Mar 24, 2011
I tried to log in into squeeze as root, hoping to improve the system's fonts, but it is showing root login is not allowed!
View 14 Replies
View Related
Oct 8, 2009
The main pages for logsave say that it is useful for saving the output of boot scripts before /var/log is mounted because the output is saved in memory until it can be written out. but there is now example of this.
How and where do you add the logsave command to save all the text that flashes by at boot time can be saved where you can read it cut and paste error message to forms etc.
View 1 Replies
View Related
Jul 23, 2011
I ran apt-get update to fetch firefox5. I didn't updated ubuntu since long so it down loaded around 280 updates including firefox. Now while installing I saw once EULA acceptance message for Microsoft ttf font installation, this message window doesn't have any button etc to confirm, so I did ctrl+c to exit, and then "apt-get" seems to have terminated in terminal.But I checked that it is still running in the background in process list, not sure active process or not.
I did rebooted PC assuming update might have completed. Now after reboot it boots up to the login prompt, but I don't see any cursor movement or key stroke effect. It just stays there and then after some time shuts down, with flashing error message relate to "Init.." i couldn't read it completely.
View 4 Replies
View Related
Sep 18, 2010
In recent days, (today is September 18, 2010) I've been surfing the web trying to learn how to access nodes in my soho lan by netbios names instead of having to connect through the ip number, because ip's change every time according to DHCP assignments. I do not know what has happened to the "new" command mount.cifs, but things seem to have become a bit more complicated with the new version. Security problems, they say, and surely that's the reason.
I show here an automated way of loging into servers by netbios name instead of having to resort to the use of IP numbers, hosts files, wins servers and all that jazz. This is especially useful if your soho lan have five or more network nodes, and you do not want to go finding out the ip numbers assigned to the machines you want to connect to (temporarily or permanently).
This output is piped to gawk to isolate the line containing <00>, and gawk outputs the first element (print $1) of that line, which happens to be the ip of the server ServerName. I tested the script in my soho network, which now has Linux, Windows XP and Windows 7 nodes, and it worked perfectly for both tipes of servers.I'm using GNU's gawk, but I'm pretty sure that awk would do the job just as well.
View 1 Replies
View Related
