Debian Configuration :: Newly Created Users Can't Login?
Aug 27, 2010
i've written a bash script to add new users to our system. the script works so I won't bother you all about that. when a new user is created with it, they can immediately login to our domain from any terminal, which is good. However, the newly created user is unable to login to debian at all, and so cannot access the server. when attempting to do so, they get a message like "the system administrator has disabled your account". This is a good thing really as normal users have no need for debian login, but I do need to add a few admin users who will need direct access to the server machine.
This is the code I'm using to add the user. The rest of my script is just a wrapper and GUI. I figure the login shell may have something to do with it, so I tried changing the shell of a user to the default /bin/bash. This resulted in the user being able to login - sort of. Gnome doesn't load though, and there's a cascade of errors across the screen about things failing to save or load settings. mostly stuff like nautilus, X, and gnome. the desktop background is black and there's no interface. Logging in with a previously existing account works fine though. Clearly I have an issue somewhere.
The question is, as far as I know Ubuntu distro adds a user created with useradd to supplementary groups automatically. For instance, I want to enable sudo for all newly created users on my LiveCD and want them to be added to the group 'wheel' on creation. I'm sure it is possible to do it in Fedora, but how?
CentOS 5.4 install, likewise open standard install (For active directory authentication).I have a license service which requires a license.txt be in the users home directory.The group owner for license.txt must be the same as the license service. Whenever a new domain user logs in, it creates the all the appropriate files but the group owner for license.txt is the users domain group. My current workaround seems like more effort than it's worth, is there another way to get this process solved easier/more secure?
- copy the license.txt into /etc/skel
- created a script to check for the presence of license.txt, check it's permissions and change them if necessary
- gave the domain's group sudo [nopasswd] access to the script (the script is not writable)
We are running Oracle 10.2.04 RAC on Red Hat Linux 5 and when ever our SAN storage admin created new LUNS we have to reboot the servers so that server can see newly created LUNS. This causing downtime to our application. How we can add LUNS dynamically without rebooting servers. We are using device mapper mulitpath from red hat version 0.4.7-30.el5 and we have QLOGIC HBA's.
I have an Intel setup with 64bit Ubuntu. I have an NVIDIA graphics card. When I used compiz, I found that my mouse would follow newly created windows. (e.g, I would bring up terminal and if I hit F1, the mouse would move to the upper right of the screen by itself. I have since turned off compiz which resolves the issue. where I can turn it off/on.
I just created a LUKS filesystem following these instructions. Everything seemed okay at first. It mounted with no problem and I moved some files there. I then unmounted it and remounted it to see if I would need to use a special command. It mounted right away and even allowed access to normal users. So, I rebooted to see if anything would change. Before I go on I should say that my partitioning scheme is weird. Not knowing any better I 'upgraded' to 11.04 when my update manager told me a new version was out. This didn't go well and I had to do a fresh install to put 10.10 back on my machine. After this the way it partitions the drive has been weird. What I had was /dev/sda1 which has my installation on it including /home. But, where it gets weird is /dev/sda2 would not manually mount. Looking at the disk in gparted it showed /dev/sda2 THEN under that, as if they were sub partitions or something, I had sda6 and sda7. I had been using 6 and 7 for various things and they mounted fine, so I decided to encrypt 7. After reboot I only have sda1. Everything else shows up as unallocated and ever way I try to mount I get device does not exist.
I only did the procedure for sda7 but 6 has been affected as well. There is no longer a sda2 the way there was before. This always bothered me anyway since I wanted sda2 for my /home but it wanted to call it sda6 and put it under sda2 like I said, I could never fix that, now this.
i am facing a problem regarding permissions. how can i set 775 permission for all newly created files and folders. when i give chmod -R 775 /data permission is getting to all files and folders. but when i create a folder i wont get that permission. i want this 755 permission should be permanent for all old and newly create files
I just want to know how the default size of a newly created file or folder is 4.0 kb.Does this value is mentioned in any configuration file,if that is the case can we edit that file and can we change this default value.
Running NFS on Fedora 10. Exports fine. I tested it locally. I tested the NFS configuration by trying to access the exported directory from my local machine, before testing it from a remote machine. While logged in as root, I created a new directory "/mnt/nfstest".
Then I mounted the NFS share at the new directory I created: [root@eric root]# mount -t nfs localhost:/mnt/nfs /mnt/nfstest
When I tried to mount on the remote client: [root@frank root]# mount -t nfs eric:/mnt/nfs /mnt/nfstest
After a while I got: # mount eric:/mnt/nfs /mnt/nfstest mount.nfs: mount system call failed
I tried strace but wasn't sure what I was looking for, but I've attached the results as a .odt file.
I just maked an ext4 partition by the help of gparted. Ubuntu is my only OS no dual boot. Using Ubuntu Maverick. The problem is partition must be open as root to do any work else it wont even allow me to open file,create folder,cut copy paste or anything.
Using C++, I want to process sub-folders on my home folder sequentially each with a special naming format and containing some binary files in it:
Code: 1/ 2/ 3/ 4/ 5/ 6/ ...
Give above folders, I will process files in 1/ at first, 2/ at second, 3/ at third, and so on.
For some n/ folder, if I realize that n/ actually does not exist in local file system, I do not want to wait for it. Hence I will keep processing (n+1)/ folder, and so on.
However, when processing some (n+m)/ folder, previously not processed n/ folder may have been created on local file system. In this case, I do not want to miss processing it, but somehow detect its creation and process it. After processing n/ folder, I want to continue from (n+m+1)/.
I have several directories, each owned by root and a group of the same name,By setting the sgid bit, I made sure that newly created files and directories are owned by the correct group, and that directories have the sgid bit set too.On each newly created directory or file, the permissions are set to 755. This is because this is the default umask, and I cannot change a users umask. I actually only want files created below a particular directory to have group write access, inheriting this behaviour to newly created directories properly.I'm not on samba or NFS, I have to do this for SSH users.The filesystem is ext3.I started to fool around with ACLs, but couldn't find what I was looking for.
On a Debian Linux box, SVN Server is installed. In the partition where SVN was installed, Free disk space is causing anxiety, hence started creating new instances in a new partition, though I am able to get the first screen (it prompts for username and password), I am unable to login even though the username and passwords are correct.
I have a Western Digital 3TB USB drive connected to a Raspberry Pi 2 running Raspbian Jessie. I created an 30GB ext4 system partition and a NTFS Data partition using the remainder of the drive. I formatted the NTFS partition as follows:
sudo mkfs.ntfs -Q -L Data /dev/sda2
The drive works fine on the Pi but when I connect it to a Windows 7 pc the pc doesn't recognise the format of the Data partition and can't access it.
Just installed Debian on a laptop. I'm not a Linux noob, been running Ubuntu / Kubuntu / Fedora elsewhere for a while. But first time with Debian (Gnome). [Broadly pretty happy so far. It may supplant Kubuntu on my desktop as the latter seems a bit of a resource hog.]I want the login screen to offer a list of users.I've tried System > Administration > Login Window > Localand chosen Themed with face browser from the dropdown marked Style:I'm using Bijou (though I've also tried some of the others) as my theme, in case that makes any difference.I haven't got any pictures set up for users. It's not particularly that that I want, just a list of users to choose from rather than having to type in your username each time. It's a family setup, no big security worries, so easing typing would be nice.
I have Debian 8 installed, using: * gdm3 as the default display manager (set up in "/etc/X11/default-display-manager"); * LXDE as the default desktop environment.
I did "dpkg-reconfigure locales" and I selected three languages: "en_US.UTF-8", "it_IT.UTF-8", "sv_SE.UTF-8" (the predefined one is "it_IT.UTF-8").Now I wish to create two more users each with a different language (both for X and console applications).I did a lot of googling without success; I tried modifying ~/.profile or ~/.dmrc (adding "export LANG=...") but they didn't work. I was able to change only the system-wide language, not the one of a single user.I got the conclusion that It's not possible to have multiple users each with a different language. Is it true?
I made another try.In another installation (Debian 8, with GNOME and LXDE) I created two users:antonio, ida.The former has only one hidden file in its home-dir: ".bashrc" with "LANG=it_IT.UTF-8" as the last line (no "export $LANG" added).The latter ("ida") has only two hidden files in its home-dir:
1. ".bashrc" clean, with no "LANG=it_IT.UTF-8" line 2. ".dmrc" containing two lines:
Language=sv_SE.utf8.I put "/usr/sbin/gdm3" in "/etc/X11/default-display-manager".After reboot both users are OK: each of them displays its own language: antonio has all menus and programs in italian ida has all menus and programs in swedish.
I was able to create 4 users with 4 languages (SE, IT, FR, ES). Then I deleted all directory and files (including "~/.bashrc" and "~/.dmrc") of one user, rebooted the PC, and NOTHING changed! So, where is stored the user's language?Not in his home; there is a list elsewere?
0. Use "lightdm" (not "gdm3") as the display manager (see "/etc/X11/default-display-manager") To install it: su -c "apt-get install lightdm" 1. su -c "dpkg-reconfigure locales" (select the desired locales: en_US.UTF-8, it_IT.UTF-8, sv_SE.UTF-8, etc; set "default locale for the system environment=None") 2. su -c "adduser emil" ("emil" is the name of a swedish user) 3. Logout 4. Select "Swedish" as default language (see at the top-right corner of the screen) 5. Write user name (emil) and password to login 6. After login, language is english (but file "~/.dmrc" is created with the correct language). 7. Reboot PC. 8. After reboot, login again as "emil": now language is Swedish
Now you can change the display manager to gdm3 if you prefer.To change applications language: su -c "apt-get install task-swedish task-swedish-desktop"
I found the file containing the user's language: it's the same containing the link to its icon:/var/lib/AccountsService/users/UserName.(needs "apt-get install accountsservice"). Editing that file is much simpler as I described earlier
I have vsftpd installed on my Debian (squeeze). I wish to let a local user (ftp) access the FTP server, but not login as normal user through SSH. In vsftpd.conf, I have enabed local user and chroot. I have also changed the shell of the local user (ftp) to /bin/false. The problem is that, I cannot login the FTP server from another computer (I login as "ftp" on a Windows machine). But when I change the shell of the local user (ftp) to /bin/sh, I can login the FTP successfully.
Is this the problem of Windows, or I should use something else instead of /bin/false if I want to prevent "ftp" login service other than FTP?
i would like to prevent all users other than the user "parker" on my system from using the su or sudo commands. I have not attempted to modify the sudoers file so it just contains the standard root ALL = (ALL) ALL.
It looks like my web/ftp server has been hacked but I'm not sure how. I logged in tonight and found I had new mail. I read it and found some e-mails that had failed to send because I don't have mail setup (luckily). The e-mails were trying to send my user name and password to the e-mail address firstname.lastname@example.orgI've no idea where to start, I use SSH, FTP now and then and it hosts a Wordpress site. The FTP users do not have access via SSH, only my user ID. However, the e-mails also contained another user ID that only has FTP access to the server.I've looked through the logs for rkhunter but it doesn't look like it found anything.
I have a USB stick, formatted as FAT32 and I assumed that everybody would be able to read from and write to it. However, I find that if more than one person is logged on to the machine (logged on locally, with "Switch User"), then only one of the users is allowed to write to the stick, and the other users are only allowed to read from it. Is that normal?
Here's the scenario: person A logs into the machine, is in the middle of something but gets called away and the screensaver kicks in. The screen is now locked. Person B comes to the machine to quickly copy a file onto a USB stick, doesn't know person A's password so does a "Switch User" and logs in as themselves. They plug in the stick, can read from it, but can't write to the stick at all. Permission denied.
By doing a "ls -l /media", person B can see that the stick is mounted but is owned by personA with permissions drwxr-xr-x . So only person A can write to the stick. I haven't done extensive testing but it seems to be the person who logged on first who gets to own the stick. It's certainly repeatable as described above. And it's really annoying, because unless person B knows the root password, he can't write to the stick. As a real last resort person B could reboot the computer but he doesn't know whether person A has any important stuff open or not.
I'm trying to get samba working on a debian/xebian box to use as a fileserver. I have a HTPC which is win 7 and a laptop which is OS X. I've installed SWAT and Samba to manage the whole settings. I'm trying to get it setup so that there's a user which has access to my ~/ and a guest user which just has read access to ~/Media/ so that the Media centre can read all the files from it without having to login.
The problem is when I have map to guest set as NEVER I can access the samba ~/ and I'm asked for a username and password which I login with fine and can access the files on both share ~/ and ~/Media. However when I set the map to guest to bad user or bad password I can access the share for ~/Media. But when I try and access the share ~/ I don't get any login box and I immediately get the error "Can't access share permission denied" or an error along those lines.
Here's my /etc/samba/smb.conf # Samba config file created using SWAT # from 192.168.1.65 (192.168.1.65) # Date: 2010/07/10 20:39:16
# Global parameters [global] workgroup = MS_HOME server string = %h server (Samba %v) obey pam restrictions = Yes passdb backend = tdbsam, guest passwd program = /usr/bin/passwd %u passwd chat = *EntersnewsUNIXspassword:* %n .....
How to get it working so I can have a guest share for my HTPC and a logged in user for my private files?