https://community.hpe.com/t5/operating-system-hp-ux/problems-with-acl-part2/m-p/2504448#M757963 Hello avm,<BR /><BR />as I told you before, the definition of owner, group, and<BR />permissions is stored in the "IPD" (Installed Products <BR />Database), which is located in files and directories below <BR />"/var/adm/sw/products". <BR /><BR />You would have to modify those definitions, perhaps<BR />using "swmodify", e.g.<BR /> chmod 464 /etc/passwd<BR /> swmodify -x files=/etc/passwd OS-Core.UX-CORE<BR /><BR />OR you just write your own startup-script, and schedule<BR />if after "/sbin/rc2.d/S120swconfig", e.g.:<BR /> cd /sbin/init.d<BR /> cp template ldangerous<BR /> vi dangerous<BR /> ln -s /sbin/init.d/dangerous /sbin/rc2.d/S999passwd<BR /><BR />Inside that script you would have to insert in line 100<BR />(that is after the 'start') part) something like:<BR /> chmod 464 /etc/passwd<BR /><BR />On next boot your script will change the permissions<BR />before somebody can log in...<BR /><BR />But whatever you intent - it does sound extremly <BR />DANGEROUS!<BR /><BR />Consider using "sudo"!!!<BR /><BR />HTH,<BR /> Wodisch Tue, 13 Mar 2001 22:12:20 GMT Wodisch 2001-03-13T22:12:20Z https://community.hpe.com/t5/operating-system-hp-ux/problems-with-acl-part2/m-p/2504446#M757961 As i have mentioned in my earlier question u <BR />have give excellent replies .Thanks a lot for those valuable information<BR />But now my problem is that the acl is not changing because of swagent<BR />If any body is changing or writing to the passwd file it automatically restore its bit to 444 that's my problem Is its HP specific Tue, 13 Mar 2001 13:33:17 GMT https://community.hpe.com/t5/operating-system-hp-ux/problems-with-acl-part2/m-p/2504446#M757961 avm 2001-03-13T13:33:17Z https://community.hpe.com/t5/operating-system-hp-ux/problems-with-acl-part2/m-p/2504447#M757962 Hi,<BR /><BR />maybe the umask in the profile is set, and in some reason the acl is changed.<BR /><BR />MB Tue, 13 Mar 2001 13:44:09 GMT https://community.hpe.com/t5/operating-system-hp-ux/problems-with-acl-part2/m-p/2504447#M757962 Marcel Boon 2001-03-13T13:44:09Z https://community.hpe.com/t5/operating-system-hp-ux/problems-with-acl-part2/m-p/2504448#M757963 Hello avm,<BR /><BR />as I told you before, the definition of owner, group, and<BR />permissions is stored in the "IPD" (Installed Products <BR />Database), which is located in files and directories below <BR />"/var/adm/sw/products". <BR /><BR />You would have to modify those definitions, perhaps<BR />using "swmodify", e.g.<BR /> chmod 464 /etc/passwd<BR /> swmodify -x files=/etc/passwd OS-Core.UX-CORE<BR /><BR />OR you just write your own startup-script, and schedule<BR />if after "/sbin/rc2.d/S120swconfig", e.g.:<BR /> cd /sbin/init.d<BR /> cp template ldangerous<BR /> vi dangerous<BR /> ln -s /sbin/init.d/dangerous /sbin/rc2.d/S999passwd<BR /><BR />Inside that script you would have to insert in line 100<BR />(that is after the 'start') part) something like:<BR /> chmod 464 /etc/passwd<BR /><BR />On next boot your script will change the permissions<BR />before somebody can log in...<BR /><BR />But whatever you intent - it does sound extremly <BR />DANGEROUS!<BR /><BR />Consider using "sudo"!!!<BR /><BR />HTH,<BR /> Wodisch Tue, 13 Mar 2001 22:12:20 GMT https://community.hpe.com/t5/operating-system-hp-ux/problems-with-acl-part2/m-p/2504448#M757963 Wodisch 2001-03-13T22:12:20Z