I'd like to add essentially an anonymous user, which does not require a password. Second I think it's probably a good idea to only give this user very limited permissions, is there a way I can restrict the commands that they can run to a list (i.e. they should be able to run scp, ls, cd, maybe a few more, but not much)?
View 5 RepliesI want to have an account (beta user), on which:I can use the Internet and other programs without administrative rights without the right to install programs with a kind of sandbox for everything that is connected to the Internet, which means: everything that is associated with the web browser's processes and files that I save to hard disk I want to be separated from the rest of the system, so that whatever can catch up on this account will be locked in it, for example any (if at all) possible malicious scripts from Internet or whatever may be dangerous now or invented in the future. Sometimes, for example, I save the web page to disk with all it content.
And in case someone cracked into this account I want make it in that way that he could not do any tricks to read or change passwords, or make any other changes to the system. The best would be if a password for that user might serve only to log in without having any other powers, and I would give that user an automatic login. For now I created a beta user without administrative rights. I understand that the limiting rights of the user are associated with limiting rights to their home directory. There are also groups, and a user may be included or excluded. I excluded that user from admin group but I don't know what else I can limit and how. When I give chmod 0644 for /home of this user he cannot run Firefox. When I give him 0740 he can run applications, so I assume the x attribute must be preserved.
This is a user without sudo rights, so when I type sudo apt-get update a message shows up correctly that this user doesn't belong to the sudoers group. But still it's not what I wanted. When the user runs Gufw and wants to change the settings to disable the firewall, a message shows up asking to type in a password of alpha user = primary user, which is that belonging to the sudoers group, the first / main user that I created during system installation. I wish that there was only the message that the beta user has no power to change anything, which means even completely remove the possibility of asking for sudo.
In addition, I wish that this beta couldn't be able to change the permissions to its home directory, or go to see what is above. Because so far beta can change the file permissions for its /home, even without a sudo password. How can I do it? Do I need to create a kind of chroot jail for this user? I would like any changes to that user account could be made only after the user log off from beta account, and log in on alfa account and that beta could run only programs that ware installed by alpha. And that beta could read and write, but alfa could also read and write or remove, alter files on beta account. Basically, alfa account should be superior to beta account. Can do that?
I'm using ubuntu 9.10. I used the command:
root@aduait-laptop:~# sudo chown -R root:root /media/104B-FF96/Private to set the permissions of Private folder for root but it is giving error:
Code:
root@aduait-laptop:~# sudo chown -R root:root /media/104B-FF96/Private
chown: changing ownership of `/media/104B-FF96/Private/5.jpg': Operation not permitted
chown: changing ownership of `/media/104B-FF96/Private/6.jpg': Operation not permitted
chown: changing ownership of `/media/104B-FF96/Private/7.jpg': Operation not permitted
[Code].....
I want to simply mount an ext4 file-system onto a normal mount point in Ubuntu (/media/whereever), as read-writable for the current logged-in user, i.e. me.
I don't want to add anything into /etc/fstab, I just want to do it now, manually. I need super-user privileges to mount a device, but then only root can read-write that mount. I've tried various of the mount options, added it into fstab, but with no luck.
Unless your distro has taken care of it Centos 5.5, you'll need to create a user with a password and read/write privileges for program database. You can do this using the MySQL command line client if you are familiar with it. Well I am not familiar with it, so I wam wondering how to do it. As well when I run
mysql - p program </usr/share/program/mysql.sql>
It asks for a password. how do i find out this password.
I have a problem with my external hdd, I mounted it manually and in the mount table it says ive got rw permissions. But when i try to change permissions it says:
chmod: changing permissions of `whatever': read-only filesystem.
This is my mount table:
[root@localhost ExtHDD]# mount
/dev/mapper/VolGroup00-LogVol00 on / type ext3 (rw)
none on /proc type proc (rw)
none on /sys type sysfs (rw)
[code]....
I want to create a limited user, such that the user should only have the access to usb drives, cd drives and internet. And also I want to restrict the user from deleting the files from the system. How to do it..?
View 5 Replies View RelatedCan we create a limited user account in ubuntu like XP where user can not be able to change its networking settings (like changing IPs / enable & disable netwrok interface).
View 9 Replies View RelatedI'm running RHEL 5. When using the GUI System>Administration>Users and Groups, I get the error: The user database cannot be read. This problem is most likely caused by a mismatch between /etc/passwd and /etc/shadow or /etc/group and /etc/gshadow. The program will exit now.
Some research showed that I need to use vipw and vigr respectively to find an inconsistency between these two sets, which I did - to make it easy I copied each from [vipw | vigr] to an excel file and did =exact(%1, %2). There are no inconsistencies.
[Code]...
How do I create a user with ftp access and/or Putty access that can only see and change certain directories. I want to create users to work on my website but I don't want them to have access to all of the folders.
View 2 Replies View Relatedis there any way to make user with command text, just with accessbility to change network IP Address ?
View 4 Replies View RelatedI've encrypted my root partition with LUKS and cannot remember my password. My main question is this: is it possible to extract the hash (or key; not sure on the correct terminology here) from the LUKS header and run it through a cracker? The hash type is SHA1 and I can remember the characters I used for the password, just not in the correct order (lots of special characters). That being said, given such a small charset, it should be crackable within a reasonable time, correct? Especially if I used a GPU accelerated cracker. What I don't know how to do is go about getting the hash from the LUKS header. Is any of this possible, or am I SOL? Of course, I have physical access to the system so I can boot it into any utilities I may need to.
View 3 Replies View Relatedit is possible if i can have sub-users in my server and can i allocate a limited amount of space only. For example i am the root of server and now i can add another user with name john and he should be able to use only of 2GB out of my total hard-disk.
View 4 Replies View RelatedI want to share files over the web with only a few people and limiting them to certain folders. I have been doing a remote access (ssh) to my server to access it from a pc on the local network. I later found out the same program doing ssh (open_ssh) was also doing sftp, great I could do both with one system account. Problem I couldn't find away to configure another user to go over the web with limited folder access without messing up my user to access the pc. I tried ftps by using vsftpd, I couldn't get chroot set up correctly or even log in. So my question is what program and/or protocol should I use to do secure ftp over the web?
OS: Ubuntu 64bit 10.04
i changed my password and whenever i log in i get a message that ur login keyring password and user password do not match, so how do i change my login keyring password!!
View 1 Replies View RelatedI've already formatted it 3 times, it works for 1 try then it turns read Only again. I'm looking for a fix that doesn't make me delete everything before I want to use it, because this is getting ridiculous.
Going into further detail:
Randomly when sticking the USB into the PSP the console/computer chooses that it's READ ONLY and you can't change anything in permissions.
Generally, I LOVE Ubuntu 10.04...best Ubuntu yet, IMO. But there's this one thing about it that really bugs me, and that is that all executable files on CD/DVD are set with very restricted permissions, including the 'Allow executing file as program' checkbox being left blank. Since CD/DVD's are read-only, I can't change these permissions the normal way or even just execute the files as root!
So far I've been able to get by with just copying the disk's contents to the hard drive and then running the program with altered permissions from there, but right now I want to install Unreal Tournament 2004 (the DVD version, if that makes any difference) and its Linux installer will not function properly from a local directory, so I'm stuck on this one.
Surely there's some way to alter the permissions for a read-only filesystem! Can't I just set system-wide permissions that would even apply to CD's and DVD's?
Can only read files on USB stick, and USB Drive. Can't copy, move or delete them due to restrictions/file permissions...."You are not the Owner...." etc. Can I remove all such permissions. I am the only user of this machine?
View 9 Replies View RelatedI got ubuntu working fine on my netbook and wanted to play around with opensuse. I have it installed and everything works fine except my wireless connection. I have updated everything since the installation through a wired connection, that didn't help. I have read the stickies, but to be honest, I'm so new to this stuff I'm kinda lost. So my wireless network has a WEP encryption and I have entered that password as a 64 HEX Key in the Wireless Manager widget. It connects to the network and says is labeled as active, however there is still the yellow exclamation shield next to the connection. Firefox and other apps don't have access to the internet.
View 9 Replies View RelatedI am running Karmic x64 on a HP laptop that has a cd/dvd burner. I have a r/w cd with files on it and I wish to add/remove files to it. After it mounts automatically on insertion, I unmount it and remount with:
sudo mount /dev/sr0 -t iso9660 -w /media/cdrom
(I tried assorted other hare-brained things also) but it always says that the filesystem is read only. Do I need to use a different device than sr0? Is it even possible under Ubuntu?
I am trying to get my Multimedia player to work with Ubuntu I can't have access to it because it said that it is read only. I have got to gksudo and tried to change the permission on it but can't. The player works fine on a windows computer. All my other usb devices work fine I was able to change permission in the folders but not the drive.
View 2 Replies View RelatedI have a very large and deep directory. I would like to make all of it read only. The problem is I guess I have to distinguish between files (which will get a=r) and directories (which will get a=rx).How can I do that?
View 3 Replies View RelatedYesterday, I bought a 1TB WD Passport, for backup and storage. It uses NTFS, and I've had no problems manually mounting and moving files to and from it from root. However, I don't like having to be root to in any way modify the data on the drive. In order to avoid this I decided to create a line in fstab that would allow permissions to the user, so I added this to my fstab:
Code:
/dev/sdb1/mnt/external ntfs defaults,
noauto, noexec, user, uid=1000, gid=users, umask=0022, nls=utf8 0 0
This allows me to mount, unmount, and peruse the external HDD - however, if this is active, neither the user NOR root have permission to make any changes. The HDD acts as read only, even though there is no "ro" option on my fstab.
Is it possible "reset" all (X, GDM related) permissions/settings of one user? What would cause one specific user not to be able to log into anything via gdm/the login screen? After providing the proper password, the screen goes black and then jumps back to the login screen. No session alternative works, not even xterm or gnome failsafe. I can however log in via the console (Ctrl+Alt+F6, recovery etc). With another user I can log in via GDM just fine, and deleting and re-adding the "broken" user doesn't make any difference.
Some (maybe) relevent logs:
part of syslog:
Quote:
Dec 12 01:20:58 <specific user> pulseaudio[1358]: core-util.c: Home directory /etc/timidity not ours.
Dec 12 01:20:58 <specific user> pulseaudio[1358]: lock-autospawn.c: Cannot access autospawn lock.
[code]....
How to recover user password and root password in fedora if u forget
View 2 Replies View RelatedMy bose ask me to convert a CentOS system password like "LMPQSMTE0nHlQ" to postfix MySQL MD5 Hased password, I find CentOS seems has 2 kinds of password form, one is shorter and the other is very long like"$1$C2MSk16n$WT5JWnzYH7XpCCjsiE2bd1", however I find postfix is exactly the later long one, so does any one know how to convert the short form to the later one
View 1 Replies View Relatedi have setup a samba server and created samba shares on it, i have configured the samba server to authenticates users from a windows server 2003 DC,
i have 2 shares call IT and MYSHARE, I want to give read and write permissions to sevaral users to those two shares and read only permisson to all the other users.
i tried editing the smb.conf file with the following settings , but no one can write or modify the files in the shares including the users specified in the
write list = cweerasinghe,njayarathna.
[IT]
writeable = Yes
browseable = yes
public = no
comment = IT share
[Code]....
how can i give access to the write list = cweerasinghe,njayarathna users to
read, write and modify the files in the shares ??
I have apache2 running on my computer. I want to change the permissions for /var/www/ so that I can edit the files without a problem. Right now I can use the gksudo command, but I'd like to be able to have all the files available when using an IDE like eclipse.
I've read in several places that
Code:
chmod 755 /var/www
will do, but if I'm not mistaken that would give read/write access to anyone. I'm not in a production environment, so I'm not too worried about security, but I'd like to give anyone else as less permissions as possible. Would this be possible?
Just finished downloading a game in .run format, i downloaded it to my Home>Downloads folder and ran these commands in terminal: (game is tremulous if it matters)
chmod +x tremulous.run
./tremulous.run
It started it up in the terminal and i began working my way through the installation process, and i tried to install it into my Home>Games folder. (Is it supposed to be home>games or your username>games?)
and it said PERMISSION DENIED. No write permission to Home/Games/
How do i give myself read and write permissions to my game folder?
I have a file server running 10.04. I have a user that belongs to 2 groups (users is the primary and IT is the secondary). I have permissions set up so that this user and other users that belong to the IT groups can read/write files and others have no permissions whatsoever. I have also set the umask to 0007 so that any files created have the effective permissions. My concern is this: since my primary group is users, is it possible for me to create files with the owner group IT for only this specific folder?
View 2 Replies View Related