Hi all: I'm starting to look at various permission options. 1./ In order to be able to shut down as user other than root, I created a file /etc/shutdown.allow as per man shutdown help file. I then entered the users jenny and root. su back to jenny and try "shutdown -a now" but still get the message "shutdown: command not found". 2./ I want to make my linux backup files more foolproof by backing up onto a spare directory on windows box using smbmount. But if I write a small script to do this, I'm going to have to include my password in the script. The best I can find written about doing this anywhere just says that if you have to include a password in a text file, make sure there are no read permissions for users. But would you say it is dodgy to write stuff with passwords at all? How else would you get round this? Thanks! Jen
Hi, On 30 Jul 2001 11:08:27 +0100, Jenny_Hopkins@toby-churchill.com wrote:
Hi all: I'm starting to look at various permission options. 1./ In order to be able to shut down as user other than root, I created a file /etc/shutdown.allow as per man shutdown help file. I then entered the users jenny and root. su back to jenny and try "shutdown -a now" but still get the message "shutdown: command not found".
Because the shutdown executable is located in /sbin/ - not in a normal users path, either add /sbin/ (probably not best), or call it using the full path.
2./ I want to make my linux backup files more foolproof by backing up onto a spare directory on windows box using smbmount. But if I write a small script to do this, I'm going to have to include my password in the script. The best I can find written about doing this anywhere just says that if you have to include a password in a text file, make sure there are no read permissions for users. But would you say it is dodgy to write stuff with passwords at all? How else would you get round this? Thanks! Jen
Presuming your machine wasnt rooted, I wouldnt see a problem with doing that. But Im no guru. :) Thanks, Andrew.
--- Jenny_Hopkins@toby-churchill.com wrote:
Hi all: I'm starting to look at various permission options. 1./ In order to be able to shut down as user other than root, I created a file /etc/shutdown.allow as per man shutdown help file. I then entered the users jenny and root. su back to jenny and try "shutdown -a now" but still get the message "shutdown: command not found".
export PATH=/sbin/:$PATH should do the trick. Put a line similiar to this in your .bashrc file. Or just use su like everyone else :o)
2./ I want to make my linux backup files more foolproof by backing up onto a spare directory on windows box using smbmount. But if I write a small script to do this, I'm going to have to include my password in the script. The best I can find written about doing this anywhere just says that if you have to include a password in a text file, make sure there are no read permissions for users. But would you say it is dodgy to write stuff with passwords at all? How else would you get round this?
Quote from linus "Real people don't use Tape backups, they just upload there data onto the web and let everyone else mirror it" Depends what else you use the password for. Its genereally good practice to adopt a "one password, one system" attitiude but I know alot of people don't. If you put it in the file and just make it so it has ---x------ then you are away. Alternatively, scan.co.uk sell CDRW drives from �65, get one and use for backup. Thanks D Thanks D
Thanks! Jen
_______________________________________________ alug, the Anglian Linux User Group list Send list replies to alug@stu.uea.ac.uk http://www.anglian.lug.org.uk/ http://rabbit.stu.uea.ac.uk/cgi-bin/listinfo/alug See the website for instructions on digest or unsub!
===== -------------------- "We all know Linux is great... it does infinite loops in 5 seconds." Linus Torvalds __________________________________________________ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/
On Mon, 30 Jul 2001 Jenny_Hopkins@toby-churchill.com wrote:
script to do this, I'm going to have to include my password in the script. The best I can find written about doing this anywhere just says that if you have to include a password in a text file, make sure there are no read permissions for users. But would you say it is dodgy to write stuff with passwords at all? How else would you get round this?
It depends on what the password is used for, I have put passwords in scripts to backup NT servers using smbmount but these machines were in a server room so there was no physical access to them and logins were restricted to sys-admin staff only. What you could do is share another directory on the Windows box and protect it with a share level password and put that in the script so that people don't get your login password. At the end of the day you are also using M$ default security and if you are using Win9x there are far easier ways of getting the password from the machine and decrypting it (look for files call .pwl) and if you are using NT then create a new user for backups only, restrict the access the user has on the machine to only have r/w permission on the directory in question and don't worry about it. I would go for it Jen, but you must remember that passwords are next to completely useless if someone who knows what they are doing gets physical access to the machines (which in this case I presume they will) Adam -- This message is Copyleft - all rights reversed Adam
participants (4)
-
Adam Bower -
Andrew Glover -
David Freeman -
Jenny_Hopkins@toby-churchill.com