Solved

Giving a user read access to the entire server

Posted on 2006-07-18
5
297 Views
Last Modified: 2010-04-21
I've been required to give read access to our security manager on one server.
How do I do this?  My environment:
SunOS sunsvr01 5.9 Generic_118558-16 sun4u sparc SUNW,Sun-Fire-280R

Thanks,
0
Comment
Question by:Jack Seaman
5 Comments
 
LVL 48

Accepted Solution

by:
Tintin earned 84 total points
ID: 17134011
Depends exactly what you mean by "read access".  If you want the security manager to have read access to *everything* on the system, then this is impossible with standard Solaris 9 install.

You need to be more specific with your requirements.
0
 
LVL 6

Assisted Solution

by:JJSmith
JJSmith earned 83 total points
ID: 17134585

If you are required to let a 'user' access your system - but they are only allowed to read stuff - then you have only one choice.

The user must be made 'captive' or 'jailed' and you must place whatever it is you want them to access within the view. That is not a simple subject and involves CHROOT'ing the user.

If you want to give a user read access to an existing file or directory, then lookup the 'chmod' command.

If you cannot 'jail' your user and you want them to only read stuff - then check that there are no public write permissions on any files - look up the 'find' command. (using both the group and other privileges)

If you find some then you have an issue - because removing the public privilege may impact other users.

Cheers
JJ


0
 
LVL 51

Assisted Solution

by:ahoffmann
ahoffmann earned 83 total points
ID: 17137164
either use ACLs (the long and hard but secure way), or allow the user to use root (KISS - keep it simple stupid)
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

My previous tech tip, Installing the Solaris OS From the Flash Archive On a Tape (http://www.experts-exchange.com/articles/OS/Unix/Solaris/Installing-the-Solaris-OS-From-the-Flash-Archive-on-a-Tape.html), discussed installing the Solaris Operating S…
I have been running these systems for a few years now and I am just very happy with them.   I just wanted to share the manual that I have created for upgrades and other things.  Oooh yes! FreeBSD makes me happy (as a server), no maintenance and I al…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question