Search results for query: *

yeah, i'm pushing to get sudo installed, but this environment is gov't regulated and it's a pain to get anything cleared, then there's the paperwork. sooner or later they'll see that we need sudo and let me have my way. :) In the meantime I'll request to get the system group added so at least i...

hi khalid. Thanks for that. Do you recommend adding systems administrators to the SYSTEM group?

hello? anybody?

anybody? :) if you're not too sure of the answer, do you seasoned guru's give your aix admins membership to this group by default? or is it something that you restrict?

Hey folks, I'm in a fairly restricted environment running AIX 5.3. The root account is locked down and password only disclosed with a whole lot of paperwork. I've been trying to get a clearer of exactly what the members of the SYSTEM group can do, as i'm wanting to have enough permissions to do...

Hey Oray, the "User can LOGIN REMOTELY" attribute in smitty is for rsh, telnet and rlogin, none of which you'd want to use for security reasons. So, in your /etc/ssh/sshd_config file, you should probably put in "PermitRootLogin no" so that root can't log in, but your normal users can. (this...

haha. yeah true. i'm still seeing if i can get sudo installed, but i guess for now this will have to do. thanks for your help. :)

hmmm. thanks for that Khalid. so you think in my situation, the best way to go about things is to just modify the permissions on the particular files in question as i need them?

yeah, i'm pretty sure that having system group membership will make it work, but i was trying to find the least privilege poss to run these tasks, because i'm yet to find out exactly what else system group can do. does anyone know?

here's the user i'm trying this on: I hope you can spot something cos i sure don't know... :) lsuser swu swu id=1019 pgrp=staff groups=staff home=/home/swu shell=/usr/bin/ksh login=true su=true rlogin=true daemon=true admin=false sugroups=ALL admgroups= tpath=nosak ttys=ALL expires=0...

Hmmm, I tried that with another user account, but got the following: Command: failed stdout: yes stderr: no Before command completion, additional instructions may appear below. ksh: /usr/bin/mksysb: 0403-006 Execute permission denied. and i also got denied when running the...

Thanks for the response Khalid. In this environment, i don't think i'm going to be allowed to install sudo (highly regulated by gov't). We're running aix 5.3, so the RBAC stuff doesn't come into play until aix 6 or 6.1 i believe. With the AIX roles, so far i'm unable to get them to work...

Hey there aix people, Hopefully someone can help me out with my situation. Basically my question is this: What options do i have for giving non-privileged users access to doing certain things in AIX 5.3? From what I believe, the roles don't really work well before about aix6, and in my...

thanks for that john... Yeah, i've half got the concepts understood... I couldn't quite work it out because the forward on no answer i think was ok, but it was just whilst busy that it wasn't behaving as i had wanted, but all is sorted now. Thanks heaps for the help. Have a great weekend. = )

Ok, I think i might have half worked it out... It would appear to be that LHK has to be equal to the highest key that has SCR set on it... so in my case above LHK 3. Am i thinking right? I still don't quite know why or how it works, but it appears to work for me.. any comments? = )

LHK 3? I don't really know what that is, but i've looked it up in one of my pdf's and it says: LHK (0) -69 Last Hunt Key number limit I've had a look at someone's phone with a working forward whilst busy, and they've got LHK 1. Is there a certain number i should have this set on for different...

hey folks, I've spent a few hours searching through tek tips, but i still can't work out my little problem. Firstly I have to say that i'm not a phone guru like some of you guys, and i've kind of fallen into the phone programming. I must admit that i do rather like it though (when it works)... =...

nuts! yeah, thanks for that... i'll repost. oops! = )

hey folks, I've spent a few hours searching through tek tips, but i still can't work out my little problem. Firstly I have to say that i'm not a phone guru like some of you guys, and i've kind of fallen into the phone programming. I must admit that i do rather like it though (when it works)... =...

hi again. spoke to our phone support, and yes, DNIS needs to be set up in pabx first... I'll post up results when it goes ahead! = )