topic file permission in Operating System - HP-UX

file permission

ashwani_1 — Wed, 13 Apr 2005 07:37:56 GMT

We are implementing database security . Some sql command are executed with sys priviledges . We have created users that uses a manually created password file for authentication of sql commands.

Its happening perfect except that users are able to view the password file which is in clear text.

Is this a way that i can restrict users to view the file ?

Re: file permission

Kent Ostby — Wed, 13 Apr 2005 08:00:54 GMT

Take away read permssion for all users.

So maybe chmod 600 on the file ?

This means the owner of the file will have read and write and no one else will be able to read it:

chmod 600

Re: file permission

Ng Oon Tian — Wed, 13 Apr 2005 22:15:58 GMT

Also please be careful that the plaintext transmission of password is not done on the command line else a command of "ps" will mean that protecting the plaintext password file is for naught