• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 308
  • Last Modified:

Giving a user read access to the entire server

I've been required to give read access to our security manager on one server.
How do I do this?  My environment:
SunOS sunsvr01 5.9 Generic_118558-16 sun4u sparc SUNW,Sun-Fire-280R

Thanks,
0
Jack Seaman
Asked:
Jack Seaman
3 Solutions
 
TintinCommented:
Depends exactly what you mean by "read access".  If you want the security manager to have read access to *everything* on the system, then this is impossible with standard Solaris 9 install.

You need to be more specific with your requirements.
0
 
JJSmithCommented:

If you are required to let a 'user' access your system - but they are only allowed to read stuff - then you have only one choice.

The user must be made 'captive' or 'jailed' and you must place whatever it is you want them to access within the view. That is not a simple subject and involves CHROOT'ing the user.

If you want to give a user read access to an existing file or directory, then lookup the 'chmod' command.

If you cannot 'jail' your user and you want them to only read stuff - then check that there are no public write permissions on any files - look up the 'find' command. (using both the group and other privileges)

If you find some then you have an issue - because removing the public privilege may impact other users.

Cheers
JJ


0
 
ahoffmannCommented:
either use ACLs (the long and hard but secure way), or allow the user to use root (KISS - keep it simple stupid)
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now