HPE Community
Operating System - HP-UX
1833606 Members
3517 Online
110061 Solutions
New Discussion

/etc/group /etc/logingroup

 
SOLVED
Go to solution
jerry1
Super Advisor

‎05-13-2004 07:36 AM

‎05-13-2004 07:36 AM

/etc/group /etc/logingroup

What's the deal with group and logingroup?

In someones experience. Is it better to link
or not?

0 Kudos
Reply
6 REPLIES 6
Geoff Wild
Honored Contributor

‎05-13-2004 07:52 AM

‎05-13-2004 07:52 AM

Solution

Re: /etc/group /etc/logingroup

Interesting - some of my servers have /etc/logingroup as a symbolic link to /etc/group - and others don't have it at all...


From man:

/etc/group exists to supply names for each group, and to support changing groups by means of the newgrp utility

/etc/logingroup provides a default group access list

Rgds...Geoff
Proverbs 3:5,6 Trust in the Lord with all your heart and lean not on your own understanding; in all your ways acknowledge him, and he will make all your paths straight.
Reply
Patrick Wallek
Honored Contributor

‎05-13-2004 07:55 AM

‎05-13-2004 07:55 AM

Re: /etc/group /etc/logingroup

Yes, I like to link /etc/logingroup to /etc/group.

It makes for happier users since they can then belong to multiple groups and not have to change via the newgrp command.

'man logingroup' provides very good details of group and logingroup functions.
Reply
Todd McDaniel_1
Honored Contributor

‎05-13-2004 07:57 AM

‎05-13-2004 07:57 AM

Re: /etc/group /etc/logingroup

Should be a HARD link....


root:/
# ls -lib /etc/logingroup /etc/group
76 -r--r--r-- 2 bin bin 921 May 13 12:00 /etc/group
76 -r--r--r-- 2 bin bin 921 May 13 12:00 /etc/logingroup

They must be in sync or you are going to have problems when modding group info.
Unix, the other white meat.
Reply
A. Clay Stephenson
Acclaimed Contributor

‎05-13-2004 08:04 AM

‎05-13-2004 08:04 AM

Re: /etc/group /etc/logingroup

It's not even necessary that /etc/logingroup be present BUT if it is AND the files are linked then rather than having to do newgrp's or a setgid(), the system will automatically check for permissions in all the groups for membership when trying to open a file, for example.

Man logingroup for details.
If it ain't broke, I can fix that.
Reply
Dani Seely
Valued Contributor

‎05-13-2004 03:31 PM

‎05-13-2004 03:31 PM

Re: /etc/group /etc/logingroup

Hey Jerry,
If /etc/logingroup is empty or non-existent the default group access list is empty. If /etc/logingroup and /etc/group are links to the same file, the default access list includes the entire set of groups associated with the user.

There's a GREAT article at:
http://www.adager.com/VeSoft/HpUxSecurityConcerns.html

The article is titled: "HP-UX SPECIFIC SECURITY CONCERNS." Even if you are not worried about the security concerns of using /etc/logingroup, you should take a minute and read the information regarding the logingroup contained in this article.

Enjoy your read, hope this helps.
Together We Stand!
Reply
V.Tamilvanan
Honored Contributor

‎05-13-2004 04:13 PM

‎05-13-2004 04:13 PM

Re: /etc/group /etc/logingroup

Hi,
The below info may help you. Instead of creating separate file You can create a link to /etc/logingroup from /etc/group.

HP-UX 10x
/etc/logingroup Nonexist

Effective GID is from /etc/passwd, no associated entries from /etc/group. User must use newgrp command to change GID to entry in /etc/group

/etc/logingroup exists

GID is from /etc/passwd, all entries for user in /etc/logingroup are associated groups.

HP-UX 11x
/etc/logingroup Nonexist

Effective GID is from /etc/passwd, associated entries are from /etc/group

/etc/logingroup exists

GID is from /etc/passwd, all entries for user in /etc/logingroup are associated groups.
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.