https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124245#M315252 You can configure it so swlist can't be used. I.e. remove SUID bit.<BR />Or use swacl(1m) to prevent it. Fri, 04 Jan 2008 06:49:47 GMT Dennis Handly 2008-01-04T06:49:47Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124243#M315250 normal user required swlist command access Fri, 04 Jan 2008 05:31:31 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124243#M315250 mukkala_1 2008-01-04T05:31:31Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124244#M315251 Should work by default:<BR /><BR />#/usr/sbin/swlist Fri, 04 Jan 2008 06:33:45 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124244#M315251 Torsten. 2008-01-04T06:33:45Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124245#M315252 You can configure it so swlist can't be used. I.e. remove SUID bit.<BR />Or use swacl(1m) to prevent it. Fri, 04 Jan 2008 06:49:47 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124245#M315252 Dennis Handly 2008-01-04T06:49:47Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124246#M315253 swlist command permission info<BR /><BR />-r-sr-xr-x 11 root bin 247800 Feb 17 2007 /usr/sbin/swlist<BR /><BR />below error i am getting while executing swlist command user level<BR /><BR />xx1@test1[/home/test1]$ swlist<BR />#Initializing...<BR />#Contacting target "test1"....<BR />WARNING: Security access denied to file " //var/adm/sw/products/INDEX".<BR />ERROR: "test1:/": you do not have permission for this operation.<BR />The depot owner, system administrator, or alternate root owner may need to use the "swreg" or "swacl" command to give you permission. OR, to manage applications designed and packed for nonprivileged mode, see the "run_as_superuser" option in the "sd" manpage.<BR /><BR /> Fri, 04 Jan 2008 08:46:20 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124246#M315253 mukkala_1 2008-01-04T08:46:20Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124247#M315254 Use swacl to check what access perms are set: <BR /># swacl -l root <BR /><BR />And modify it:<BR /># swacl -l root -M any_other:r<BR /><BR />regards,<BR />ivan Fri, 04 Jan 2008 09:02:32 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124247#M315254 Ivan Krastev 2008-01-04T09:02:32Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124248#M315255 swac -l root output as follows<BR /><BR />swacl -l rot<BR />#<BR />#swacl Installed software access control list<BR />#<BR />#For host: test1:/<BR />#<BR />#Date Fri jan 4 17:16:13 2008<BR /><BR /># Object Ownership: User=root<BR /> Group=sys<BR /> Realm=test1<BR />#<BR />#default_realm=test1<BR />object_owner:crwit Fri, 04 Jan 2008 09:18:09 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124248#M315255 mukkala_1 2008-01-04T09:18:09Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124249#M315256 swac -l root output as follows<BR /><BR />swacl -l root<BR />#<BR />#swacl Installed software access control list<BR />#<BR />#For host: test1:/<BR />#<BR />#Date Fri jan 4 17:16:13 2008<BR /><BR /># Object Ownership: User=root<BR /> Group=sys<BR /> Realm=test1<BR />#<BR />#default_realm=test1<BR />object_owner:crwit Fri, 04 Jan 2008 09:18:58 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124249#M315256 mukkala_1 2008-01-04T09:18:58Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124250#M315257 is there any impact to execute this command<BR /><BR /># swacl -l root -M any_other:r<BR /><BR /> Fri, 04 Jan 2008 09:30:53 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124250#M315257 mukkala_1 2008-01-04T09:30:53Z https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124251#M315258 This will give read access to any other user, that means you can do swlist with any other account.<BR /><BR />the swacl -l root<BR /><BR />output will show this with<BR /><BR />any_other:-r---<BR /><BR />in the last line. Fri, 04 Jan 2008 09:40:57 GMT https://community.hpe.com/t5/operating-system-hp-ux/swlist-command/m-p/4124251#M315258 Torsten. 2008-01-04T09:40:57Z