Roles Security

Midrange · Jun 29, 2004

Hi there, just wanted to know if anyone noticed the security hole on AIX.

I've created a user with Role - Managebasicuser and ManageBasicpwds. If i used this id to change one of the admin pwd under smit, the security was working. But when i execute it under the shellp prompt using the " passwd" command i was able to change the pwd of one of the admin user..

anyone can advised me what procedures i need to undertake to overcome the problem using the passwd..

thanks.

unixfreak · Jun 29, 2004

Are you saying you could or couldn't change it from the shell? Where's the security hole?
If you're saying you couldn't try using pwdadm instead of passwd.

Cheers

Midrange · Jun 29, 2004

sorry unixfreak if i didn't explain well.

what i have setup is an id that should not be able to change the password of an admin user. Using smit, the function works okay by not having a permission to change the passwords.

but if i used the "passwd" command, he able to change the users admin password....

On Smit menu the security was working(restricted) , but using the passwd from the command Line it won't work the restriction.

thanks.

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Roles Security

Midrange

Vendor

unixfreak

ISP

Midrange

Vendor

Similar threads

Part and Inventory Search

Sponsor