[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: C Programming??
- To: klug@xxxxxxxxxxxxxxxx
- Subject: Re: C Programming??
- From: Bruce Smith <bruce@xxxxxxxxxxx>
- Date: Fri, 01 May 1998 15:54:01 EDT
- In-Reply-To: <m0yVLlz-000a21C@netmeg.netmeg.org>; from "Sir Hoagy" at May 1, 98 3:47 pm
> 1 - A C program that will allow certain
> usernames (or UID's preferably) to
> issue a 'kill -9 PID' . This program of ourse
> (er of course) will run SUID root. That i can do.
> It's the actual execution that will stump me..
> This sort of program I had someone write for me
> before, but that was long ago. I merely had
> to recompile the source if a UID ever was changed
> (i.e, we removed a staff member , etc).
For that, you might just be able to take the normal kill binary,
give it a different name, make it SUID-root, put it in a group
so only certain people can execute it, and you're done.
I did this on older release, and it worked fine.
> 2 - A program also run SUID root that will "X"
> a password of a user. In effect, this would
> render the account unusable by placing an
> "X" in the pasword field. Since I used
> the shadow password, I don't knwo if this is
> possible. I *could* do it if I did not use shadowing,
> but I prefer to shadow. This was run in case
> an account was being abusive, or needed to be
> temporarily disabled (hacked).
>
> Since my linux system will be semi-private,
> I'll have some users. Ya never know who you'll
> have to nuke or xpasswd.
>
> Possible? Too difficult for linux?
Can be done, but I can't help you since I don't use
the shadow password system, and couldn't test it.
--------------------------------------------
Bruce Smith bruce@armintl.com
System Administrator / Network Administrator
Armstrong International, Inc.
Three Rivers, Michigan 49093 USA
http://www.armstrong-intl.com/
--------------------------------------------