topic Re: Find it and mod it in Operating System - HP-UX

Find it and mod it

Adam W. — Mon, 23 Feb 2009 17:11:07 GMT

Guru's,
I am hopelessly lost here. I need a script that will local all initiation files like .login .cschrc .logout .profile .bash_profile and so on..... in every users home directory and execute a chown to that user, while also setting those files permissions to absolute 740. I am lost.

Re: Find it and mod it

T G Manikandan — Mon, 23 Feb 2009 17:29:26 GMT

If you are using /etc/passwd

Test whether it lists the home directories:

for i in `cat /etc/passwd |grep bnoble |awk -F ":" '{print $6}'`; do echo $i; done

chmod the files:

for i in `cat /etc/passwd |awk -F ":" '{print $6}'`; do chmod 740 .profile;chmod 740 .bashrc ;chmod 740 .cshrc; done

Re: Find it and mod it

T G Manikandan — Mon, 23 Feb 2009 17:30:21 GMT

Sorry no bnoble, I was testing.

for i in `cat /etc/passwd |awk -F ":" '{print $6}'`; do echo $i; done

for i in `cat /etc/passwd |awk -F ":" '{print $6}'`; do chmod 740 .profile;chmod 740 .bashrc ;chmod 740 .cshrc; done

Re: Find it and mod it

T G Manikandan — Mon, 23 Feb 2009 17:35:45 GMT

for i in `cat /etc/passwd |awk -F ":" '{print $6}'`; do chmod 740 $i/.profile;chmod 740 $i/.bashrc ;chmod 740 $i/.cshrc; done

Re: Find it and mod it

James R. Ferguson — Mon, 23 Feb 2009 17:38:12 GMT

Hi Adam:

Try:

#!/usr/bin/sh
awk -F":" '$3>100 {print $3,$4,$6}' /etc/passwd | \
while read UID GID DIR X
do
chown ${UID}:$GID ${DIR}/.profile
chmod 740 ${DIR}/.profile
done
exit

...add whatever files you need to "fix"...

Regards!

...JRF...

Re: Find it and mod it

Adam W. — Mon, 23 Feb 2009 17:46:46 GMT

James, in your example where you listed

chown ${UID}:$GID ${DIR}/.profile
chmod 740 ${DIR}/.profile

Would I simply add another line like :

chmod 740 ${DIR}/.forward and
chmod 740 ${DIR}/.ssh2 and so on? or can I list them all on the same line?

Re: Find it and mod it

Patrick Wallek — Mon, 23 Feb 2009 17:49:53 GMT

You could do either.

Re: Find it and mod it

Adam W. — Mon, 23 Feb 2009 17:53:03 GMT

Thanks to both of you! I have to add a couple things but you have me on the proper path. Thanks Guys!!!!

Last question How would I do this and only do the entries in /home/"whoever" without using the /etc/password ?

Re: Find it and mod it

James R. Ferguson — Mon, 23 Feb 2009 18:56:45 GMT

Hi (again) Adam:

> Last question How would I do this and only do the entries in /home/"whoever" without using the /etc/password ?

Why? It's '/etc/password' that holds the account's location for the HOME direcotory, so that's why I used it and that's how I drove it.

The '/etc/password' file should be world-readable so that shoudn't be any issue.

Notice too, that I skipped accounts with UID<100 since by convention these are sytsem accounts setup during a cold-install (or added later as for 'ssh').

Regards!

...JRF...

Re: Find it and mod it

Adam W. — Mon, 23 Feb 2009 18:59:12 GMT

James, I only ask because we have several "generic accounts" that have a higher than 100 UID and would possibly need to be excluded, but since their home directories are listed in the /etc/passwd file, (and aren't /home/"name") I was hoping to exclude them, by only doing those accounts who's home directories reside in /home.

Re: Find it and mod it

Dennis Handly — Mon, 23 Feb 2009 20:52:39 GMT

>by only doing those accounts who's home directories reside in /home.

You could look at /home/*. Or you could change JRF's script to look at the home directory:
awk -F":" '$3 > 100 && index($6, "/home/") {
print $3, $4, $6
}' /etc/passwd | \

Re: Find it and mod it

James R. Ferguson — Mon, 23 Feb 2009 20:58:34 GMT

Hi (again) Adam:

> I only ask because we have several "generic accounts" that have a higher than 100 UID and would possibly need to be excluded.

Given that you know the UID's of the accounts you want to exclude, just do:

#!/usr/bin/sh
awk -F":" '{if ($3>100 && $3 != 107 && $3 != 108) {print $3,$4,$6}}' /etc/passwd | \
while read UID GID DIR X
do
print "chown ${UID}:$GID ${DIR}/.profile"
done
exit

...which in this example, would exclude accounts whose UID is less than 100 along with accounts having UID=107 and UID=108. You can form any boolean condition you need.

Regards!

...JRF...

Re: Find it and mod it

Adam W. — Mon, 23 Feb 2009 21:08:40 GMT

Right on James, Thanks again!!!