RE: Hearing the truth??

From: Sturges, Jonathan D, ALABS (jdsturges_at_att.com)
Date: 02/18/04

  • Next message: Sayek, Ogan: "RE: Hearing the truth??" 
    Date: Wed, 18 Feb 2004 11:52:53 -0600
To: "OBrien, Brennan" <BOBrien@columbia.com>

    Brennan,
    The piece of information missing is what name service you guys use.
    That is, what is the source for user account information. For Solaris,
    this usually means one or more of the following: local files (the
    default), NIS, NIS+, and LDAP. Since each of these services is pretty
    unique, the procedure for creating/removing users will be pretty
    different for each.

    The short answer is that there are indeed tools to manipulate user
    accounts for all of these name services. Sun themselves have GUI tools
    for all of them. There are 3rd party tools as well.

    For simple Unix account management, based on local files, the useradd
    and userdel commands are command-line utilties for creating/removing
    user accounts.

    HTH,
    Jonathan

    The opinions expressed here are mine alone and not those of my employer.
      

    > -----Original Message-----
    > From: OBrien, Brennan [mailto:BOBrien@columbia.com]
    > Sent: Tuesday, February 17, 2004 8:22 PM
    > To: focus-sun@securityfocus.com
    > Subject: Hearing the truth??
    >
    >
    > All:
    >
    > I've got an interesting situation at the office I could use
    > some advice
    > on. I'm being asked from a security perspective whether the following
    > statement (made by our Unix admins) could be considered true:
    >
    > "The only way you can delete a user account on a unix
    > environment is to
    > write a series of scripts to eliminate file associations."
    >
    > So, while I don't disagree with the logic, is this actually the case
    > that there are no commercial tools available to assist in this arena,
    > and the only method of deleting a user on a system safely and
    > effectively is to write a bunch of scripts on your own? This
    > just begs
    > to be a problem solved by a commercial entity if it's
    > actually the case.
    >
    >
    > We're in a Sun environment. Some thoughts would be appreciated.
    >
    > Brennan
    >
    >
    >

  • Next message: Sayek, Ogan: "RE: Hearing the truth??"

    Relevant Pages

    • Re: Adding all user in a domain to a sharepoint site
      ... keys 'analyze' and 'update', former is used to generate the .xml file ... with all the user account information. ... So at one time you can update all the user account regardless of site ...
      (microsoft.public.sharepoint.portalserver.development)
    • Re: Deleted User Account
      ... adaware error Unable to Log On To Windows XP After Removing wsaupdater.exe: http://www.lavasofthelp.com/articles/v6/04/06/0901.html ... >I have a computer where the user account has been deleted. ... The administrator account was even blocked ... > Is there a virus that will delete user account information from the registry, and block the administrator from having all access ...
      (microsoft.public.windowsxp.help_and_support)
    • Deleted User Account
      ... I have a computer where the user account has been deleted. ... by managing user accounts. ... The administrator account was even blocked from access at ... Is there a virus that will delete user account information from the ...
      (microsoft.public.windowsxp.help_and_support)
    • Running Programs under a Limited User Account
      ... I have installed Civilization III on a computer used by ... who has a limited user account. ... and my user account information. ... there some way for me to give him permanent access to ...
      (microsoft.public.windowsxp.accessibility)
    • username max length.
      ... I have tried to set up a new user account but evidently I have exceeded the ... My network Admin is setting up active server directory this weekend and she ... I am running a samba server off of the Tru64 Unix machine. ... Unix Sys Admin ...
      (Tru64-UNIX-Managers)