Solved

active directory under *nix

Posted on 2002-07-06
3
237 Views
Last Modified: 2010-04-20
Hello,

I have two questions to ask:

1) Windows2000 has "active directory" as one of its greatest features. Does it have a counterpart under UNIX/Linux systems? if not, what does a *NIX system use?

2) i found the windows way of assigning permissions confusing. under *nix, there are only 3 attributes: read, write and execute. but under windows2000, we have: read, write, read and execute, modify and full control! is there an easy way to memorizing these two permission systems?

Thanks,
KEN
0
Comment
Question by:ken021600
  • 2
3 Comments
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7133811
1) LDAP
2) don't know what you mean by "memorize" (please explain), but the answer is: NO
   both techniques are distingued, can be compared somehow, each has its advantags and disadvantages
   *nix have a add-on called ACL (user access lists), which is more powerfull, IMHO, but in rare use
0
 

Author Comment

by:ken021600
ID: 7134269
hi,

1) well, by "memorizing", i mean memorizing similarities/differences and keep them in my brain. :)

"each has its advantages and disadvantages"? but i found it's easier to understand and follow the *nix way. can you tell me the disadvantages of the *nix way of setting permissions?

2) just a quick question:
under windows2000 there's "scheduled tasks" but it still needs your login and password when the scheduled time comes---someone told me it's for "better security purposes". is it the case that under *nix, you don't have to do that? i mean, suppose you want the system to back up everything on every Sunday at 3pm, do you just do some shell scripting and let the system do its job when the scheduled time comes, or do you still have to, like that on windows system, be physically on the spot on every Sunday at 3pm and key in your login name and password?   if the answer for the above question is "no", Why can't windows just let the system do what it's supposed to do without authentication?

Thanks,
KEN
0
 
LVL 51

Accepted Solution

by:
ahoffmann earned 50 total points
ID: 7134718
> .. easier to understand and follow the *nix way.
:-)

1) similar is that active directory is a proprietary extension to LDAP, never used it but AFAIK you can use LDAP as active directry too
differences: M$ is always proprietary :-(

> .. disadvantages of the *nix way ..
imagine you have a user in sevaral groups (/etc/group), and another user in other groups.
Then you want to have one file to be read only by 1'st user, but read write by the 2'nd user, and another file vice versa. Imagine you have a lot of such file and/or users, and you end up in infinite groups ...
Don't thinking about how to admin this, and the limitation on groupmembers (mainly 256 on *nix), etc. etc.

2) quick question
*nix schedule jobs with cron, *nix assumes that the user who created the cron has the permissions to do it, otherwise (s)he could not create it.
Cron jobs for a user a run by root, where root switches to the user's ID.
Windoze can do this also, if you enable a special button in the UserManager (can't remeber the exact name) which allows tasks to run as a particular user instead of being a system task.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

How many times have you wanted to quickly do the same thing to a list but found yourself typing it again and again? I first figured out a small time saver with the up arrow to recall the last command but that can only get you so far if you have a bi…
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now