Ubuntu Servers :: Prevent Certain Group Of Users From Using Sudo At All
Jul 1, 2011I have a box with about 30-40 users on it, and I need to prevent a certain group of users from using sudo at all. Is this even possible.
View 4 Replies
ADVERTISEMENT
Debian Configuration :: Prevent Users From Using Su / Sudo
Jul 24, 2010i would like to prevent all users other than the user "parker" on my system from using the su or sudo commands. I have not attempted to modify the sudoers file so it just contains the standard root ALL = (ALL) ALL.
View 5 Replies View RelatedUbuntu Servers :: Adding AD Domain Users Group?
May 4, 2010I have server 9.04 and joined thru winbind to Windows Domain and subversion installed.Windows AD users can use their own credentials to join and everything is working fine.However the group svn which is used to access the repos in /etc/groups has some users.However I would like to add the domain users group to the svn group but the domain users contains Space. And /etc/groups does not happend to read the space any ideas on how to add "domain users" to the svn group in /etc/groups
View 1 Replies View RelatedUbuntu Servers :: Retrieve Active Directory Users' Primary Group?
Feb 20, 2010This is the scenario: Active Directory Server = 192.168.0.1 Squid/Dansguardian Proxy Server w/NTLM Auth = 192.168.0.10 The Linux box has been integrated with AD and works fine. Users can authenticate automatically when login the AD or when they access the web through Basic authentication. That part is just fine.
But, when I add a new user, or change a users' primary group, I have to change the 'filtergroups' file in Dansguardian. I tried to make auto this process using the USERMAP and USERMAP2 scripts in [URL].. at the "Extras and Add Ons" section, but both scripts doesn't run properly in Ubuntu if they are not changed. I tried, following the instructions, but got a lot of syntax errors. So, I wrote a very simple script using 'net rpc' to retrieve all users according to the AD Security and Domain Groups. I created an output folder in dansguardian to dump the rpc outputs into files. And read the files to apply filtering groups.
[Code]...
Ubuntu Servers :: The Users And Group Section Of EBox Doesn't Appear - Samba
Sep 20, 2010In my ongoing hunt for a Samba GUI that is feature packed, well supported, easy to use, yet doesn't suck, I found myself tinkering with eBox. I have it installed and fired up but I'm a little confused. I can add a Samba share - okay great. But I sorta need to add users. Where on earth can I add users? The users and group section of eBox doesn't appear to be related to what I need, and I also cannot get into the access control section of the very share I just created.
View 3 Replies View RelatedUbuntu Servers :: Samba Share Using Domain User/group In Valid Users?
May 20, 2010I have Ubuntu server 10.04 joined to a domain using Likewise Open. I can login using my domain credentials and have added my domain account to the sudoers file. Now that I've got it joined to the domain I want to add some samba shares and have domain members use their accounts to access them. However, no matter what combination of my domain name and the domain user or group I use in the valid users field it won't let me in. What's the proper way of inputting a domain user or group in the valid user field?
This is the entry I'm using for the share:
Code:
[testshare]
path = /srv/testshare
valid users = @"Domain Name+Domain Group" (Have tried many things here)
public = no
writable = yes
printable = no
create mask = 0765
Software :: Pam_start Error 26 \ Use Sudo Su And Add An Account To A Group What's Allowed To Use Sudo?
Jan 2, 2011I have a problem when I want to use su I get this error:Code:su: pam_start: error 26I have googled it so I found this topic (http://www.linuxquestions.org/questi...r-26-a-615024/) but it didn't really help me. There was a reply on that topic and his question was what the output of this was:
Code:
ldd /usr/bin/passwd
and
[code]....
General :: Secondary Group Users Need To Change File Permissions Of Primary Group Files?
Oct 19, 2009i want secondary users can able to change the files permissions of primary group?user MAC is having www as a primary and httpd as secondary group. But he want to change the file permissions (chmod) httpd group files. Is it possible or not? I think its not possible. If it`s possible then let me know how?
View 3 Replies View RelatedSecurity :: Add A Group Of Users To The Wheel Group?
May 19, 2010I have a number of users, categorised into various groups. I would like one of those groups ("developers") to be in the wheel group as well. I don't want to just copy the people from the developers group into wheel, because then when that group changes I'll have to change it in two places. Is there a way to specify that anyone in developers is in wheel, and have that be dynamic?
View 7 Replies View RelatedUbuntu :: How To Map Domain Users To Local Users Group
May 27, 2011how to map all domain users form group Domain Users to local group users (and maybe some more)? Im using Ubuntu 10.04 x32. Its connected to my domain using Samba and Winbind, I can login using my domain credentials, automatically map user folder form DFS server, but I think that domain users have too much priviledges in the system and want to restrict them as much as possible
View 2 Replies View RelatedServer :: Script To Add A Secondary Group To All Users Except System Default Users?
Jun 28, 2009script which can add a secondary group to all existing users except system users in linux.
View 5 Replies View RelatedGeneral :: Vsftp - Some Users See Files - Some Don't - But All Users Are In Same Group
Jan 18, 2010When I have different people log into our ftp and browse to the same folder, some people see the files inside, some don't. all the user accounts are in the same group, which has permission to this folder. but the one user who can see the files is the owner. how can i fix it so everyone in that group who's the owner of the folder can see the files?
View 10 Replies View RelatedSecurity :: Sudo For Users But Only +r On Other /home/users Ubuntu 10.04 ?
Nov 1, 2010We are trying to set up a classroom training environment where our SIG can hold classes for prospective converts from Microsoft/Mac. The ten machines will have /home/student01..10 and /home/linsig01..10 as users. We want /home/student01 to be able to explore and sudo so they can learn to administer their personal machines at home. We don't want them to be able to modify (sudo) /home/linsig01. I've seen the tutorial on Access Control Lists but I'd like other input so we get it right the first time.
View 3 Replies View RelatedOpenSUSE :: 'users' Is The Default Group For New Users?
Sep 4, 2011In other Linux distros I've used, new users are assigned to their own group (i.e. user 'joe', group 'joe') by default. To my surprise, when I create new users with my openSUSE 11.4, they are all assigned to the 'users' shared group by default.To test this, I created a new user called 'friends'. From my terminal, I can see how the new user files look like:
joe@linux:~> ls -l /home/friends/
total 40
drwxr-xr-x 2 friends users 4096 Sep 3 11:37 bin
[code]...
Red Hat / Fedora :: History Of All Sudo Users And All Root Users In F13?
Jan 18, 2011How can i see history of all sudo users and all root users in fedora 13 ? history command only shows one users history ?
View 5 Replies View RelatedUbuntu :: Removed User From Sudo Group
Sep 23, 2010I made a mistake on my friend's Ubuntu system when trying to get hard drive permissions right. I wanted to add a user to a certain group with usermod -G, but without realising I should also use -a, with the result that the user is now not longer in the sudo group. This is the only (regular) user on the system, which means I can not sudo usermod again to get it right. So what to do? The only solution I can think of is using a live disc to restore the group belongings, but I want to know if there's a quicker way. Also, I don't know what more groups the user was in. Is there a history? Or else, what are the default groups?
View 5 Replies View RelatedUbuntu :: Allow A Specific Group On Machine To Execute One Command With Sudo?
Aug 22, 2011I'm trying to allow a specific group on my machine to execute one command with sudo without requiring a password, so what I want to do is add something like this to sudoers:
%groupName ALL = (ALL) NOPASSWD: /bin/bash /path/to/shfile.sh argument1 argument2
argument1 needs to be a url : http://subdomain1.subdomain2.domain.com
argument2 needs to be a path of the form /var/www/demo/SomeFolder/application/config/config.php
How do I put in a regex form that sudoers will understand ? I tried reading the sudoers manual, but it didn't help a lot .
Ubuntu :: What Is The Group 'users' (gid 100) For
Jan 3, 2011What is the group 'users' (gid 100) for? It's tempting to use it as a general group for accounts that log in but would that cause a security risk? I've done a search for files owned by this group and there don't appear to be any. Googling the words gives very non-specific results!
View 3 Replies View RelatedUbuntu :: Prevent Users From Changing Their Password?
Jul 17, 2010I use the following method for preventing the users from changing their passwords , is there any other method other than this ?
ls -l /usr/bin/passwd
-rwsr-xr-x 1 root root 37140 2010-01-26 12:09 /usr/bin/passwd
so we need to remove the suid for that command as follows :- chmod u-s /usr/bin/passwd now normal users won't be able to change their own passwords - and only the root user will be able to do it for them.
OpenSUSE Network :: Add Windows AD Group SUDO Rights OS 11.2
Mar 30, 2010I have joined the domain (server 2003) and can log in consistently now. Now I would like to give all the windows users in on specific group (domain power users) SUDO rights on the machines in question. I have found one way to add users on a pr. user basis, but adding 30 users will take some time.
View 4 Replies View RelatedUbuntu Security :: Prevent Users From Changing Settings
Jun 15, 2011I am administrating a system with about 40 or 50 users, and we recently jumped ship from windows to ubuntu. Most of my users are getting along fine, but it seems every few days, i have to help someone who accidentally changed something, and now their account (or more rarely, the machine) is unusable, and has to be reset.
I know configuring /etc/sudoers is a huge step toward fixing my problem, but that still will not completely solve it. What I would like to do is prevent users from making ANY changes to the system (aside from their work files and the like), including themes, icons, desktop, background, etc.
Debian :: Prevent Shutdown When Several Users Are Logged In
Dec 30, 2010If there is a simple way to prevent accidental shutdown when the following situation occurs:
Sometimes, I log in on my father's computer to run some administrations' tasks (updates...). For that, I use SSH since I'm frequently far from my parents and what I want is to prevent a shutdown run by my father. Of course, he should be able to turn off by himself if nobody else is connected.
Molly-Guard allows to prevent distant shutdown, my request is a kind of complementary software.
Does anyone know a project which could fit with this request? Do you have simple ideas to write a short code I know bash, perl, python...
Security :: Prevent Users From Changing Their Password?
Jul 17, 2010I use the following method for preventing the users from changing their passwords , is there any other method other than this ?ls -l /usr/bin/passwd-rwsr-xr-x 1 root root 37140 2010-01-26 12:09 /usr/bin/passwdso we need to remove the suid for that command as follows :- chmod u-s /usr/bin/passwdnow normal users won't be able to change their own passwords - and only the root user will be able to do it for them.
View 9 Replies View RelatedCentOS 5 :: Prevent Users From Changing Their Own Password?
Feb 4, 2010How can I prevent users from changing their own password? I was surprisingly unsuccessfull in finding a solution for this on google. Lots of stuff about hardening ssh access or dealing with password aging using "chage" but nowhere could I find an answer for my question.
View 5 Replies View RelatedGeneral :: Prevent Ubuntu / Debian Users From Accessing Apt-get - Downloading From Web?
Apr 21, 2011Is it possible to have a user in Ubuntu/Debian that does not have access to synaptic, apt-get, dpkg and cannot even download anything from the Web, but has root privileges otherwise?
Original post (above translated by aimar) code...
Ubuntu :: Prevent Users To Change Desktop And Gnome Config?
Jun 15, 2010I'm looking for a manner to prevent users from changing the desktop background/wallpaper and all other gnome configuration with booth Ubuntu and Kubuntu. This too (Abraxis, some years ago, have same my problem) [URL] do not solve the problem, for example if I change whit chown (*) own and group of this file to root /.gconf/desktop/gnome/background/%gconf.xml, at the next reboot file return in the previous state. (I don't like Pessulus).
(*)
chown root:root %gconf.xml
chmod 644 %gconf.xml
At the reboot file change automatically owner to "student", I don't know why?
Programming :: Isolate Users From A Group?
Dec 5, 2010how to isolate users from a group ie accounting and force them to change their password upon login
View 1 Replies View RelatedGeneral :: Group Permissions For Ftp Users?
Jun 19, 2011I need to assign permissions for ftp users. For that I need to create groups with different permissions like upload, download, rename, delete, rename and delete. And the users added to the group need to have that group permissions by default.
View 5 Replies View RelatedUbuntu Security :: Prevent Desktop Users From Viewing The Wireless Password?
Dec 3, 2010The title says it; I want to prevent users from viewing the wireless network password.
View 9 Replies View RelatedUbuntu Networking :: Prevent Desktop Users From Connecting To New Wireless Networks?
Dec 17, 2010I have a created a wireless connection from the main admin account and checked the box saying "Available to all users", everything is working correctly. I only need to prevent the Desktop Users from switching the connection to another one.
View 4 Replies View Related