« He could then add himself to the wheel
Enter password []: Set the password so that »

Enter password []: Set the password so that

Enter password []: Set the password so that user cannot logon? (y/n) [n]: y Just hit return when you’re asked for a password for this user, and adduser will give you a chance to set up the password so the user cannot log on. This is what you want; this administrative user should never need to log on for any reason. Now that you have an administrative owner and a group for it, you can assign ownership of files to that user. A user and a group own every file. You can see existing file ownership and permissions with “ls -l”. [4] Many new sysadmins pay close attention to the owner, and to the world permissions, but only skim the group permissions. # ls -l total 29 -rw-rw-r–1 root wheel 27136 Sep 14 09:36 file1 -rwxrwxr–1 root wheel 1188 Sep 14 09:35 file2 # Here, file1 can only be read or written to by root or members of the group wheel, but can be read by anyone. Root or any member of the group wheel can read file2. If you’re in the wheel group, you don’t need to become root to edit or read file2 file; you can just open your text editor and go! To change the owner of a file, use chown(1). To change a group owner on a file, use chgrp(1). Both take the same syntax; the name of the new owner and the filename. # chown dns file1 # chgrp dns file1 # ls -l file1 -rw-rw-r–1 dns dns 27136 Sep 14 09:36 file1 # This file is owned by the user dns and in the group dns. Anyone who is in the dns group can read and write to this file, without using the root password. Finally, this file can be read by the nameserver. Add your junior administrators to the dns group in /etc/group, and abruptly they can edit files owned by the dns group without the root password. The only thing the DNS administrators might need the root password for now is to restart the nameserver. This is easily dealt with by setting up a cron job to reload the nameserver on a regular basis. These admins still might want to reload the nameserver manually on special occasion, however. That’s where sudo comes in. [4]If you forget how UNIX permissions work, take a look at ls(1). Page 149
Note: If you are looking for cheap and inexpensive provider to host and run your tomcat application check Actions tomcat hosting services

This entry was posted on Monday, November 13th, 2006 at 3:06 pm and is filed under jsp. You can follow any responses to this entry through the RSS 2.0 feed. Responses are currently closed, but you can trackback from your own site.

Comments are closed.