Operating System - HP-UX
1837689 Members
3594 Online
110117 Solutions
New Discussion

Re: Root user with restricted access for Arcserve

 
SOLVED
Go to solution
Tim O'Connell
Regular Advisor

Root user with restricted access for Arcserve

I need to set up a user with UID(0) for Arcserve backup on HPIX11 but I want to restrict that user as much as possible. The users password is set to never expire. I have set up a user & editted /etc/passwd to remove /usr/bin/sh for that user but Arcserve doesn't like that. I've put back in /usr/bin/sh & removed the path to the HOMEDIR & it works OK but I'm not sure if thats secure enough. I'can't log in as that user bu can su to it from another user. Hope someone has done this before.

Thanks,

Tim
3 REPLIES 3
John Carr_2
Honored Contributor
Solution

Re: Root user with restricted access for Arcserve

Tim

do a search for command sudo this is a more standard method lots of threads on forum.

John.
Patrick Wallek
Honored Contributor

Re: Root user with restricted access for Arcserve

DO NOT set up other users with UID 0. That is not good practice and not secure. When you have UID 0 you ARE root. The better bet would be to look into something like sudo:

http://www.courtesan.com/sudo/index.html

http://hpux.connect.org.uk/hppd/hpux/Sysadmin/sudo-1.6.7p5/

This will allow you to assign certain commands to the Arcserve user that they can execute as root but they do not have real root access.
Tim O'Connell
Regular Advisor

Re: Root user with restricted access for Arcserve

Thanks for the replies. Just moved(moving) from Unixware. Came across SUDO but had forgotten about it. I wasn't keen on setting up another user as UID(0) but had done that previously on older Unix machines.

Many Thanks,

Points assigned,

Tim