DOCSLIB.ORG

Users and Groups

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Users and Groups Users and Groups Creating Users and Groups 1. The user pi has superuser privileges. To run system commands using the superuser privilege, use the command sudo before the command you want to run. For example, to run the command ls as a superuser, use the command sudo ls. You will be prompted for your password so that the user trying to run the command as a superuser can be authenticated. 2. Unix provides for creating multiple user accounts. Each user has a unique username, a user id (uid), a home directory, the starting shell, and some other information. All this information is in the file /etc/passwd. 3. Users belong to one or more groups. Each group has a group name, a group id (gid), and a list of users in that group. This information is in the file /etc/group. 4. Each user has an initial group that the user belongs to when the user is created. This group must exist before the user is created. 5. On Unix/Linux systems based on the Debian distribution the default convention is to create for each user a group with the same name as the username and that is the only user in that group when the user is created. 6. To create a user, say newuser, first create a group called newuser and then create the user with the username newuser. To create a group use the command groupadd or the command addgroup. Read the man pages to find the differences between the two commands. To create a user use the command useradd or adduser. Read the man pages to find the differences between the two commands. 7. Do you need to create the group for a user before creating the user? Create a user called user1 using the command adduser and another user using the command user2 using the command useradd. What is the difference between the two commands? What is the group for each of the two users you created? 8. When creating a user the system assumes a default location for the home directory for the user. Find out from the man pages where this location is specified. Is the directory actually created when a user is created? Does the directory have to be created explicitly? Find out from the man pages. 9. One can also specify a different (from the default) home directory for a user when creating a user. Find out from the man pages how this is done. 10. Is the password for a user set when creating the user? If so, how is that done? If not, how is the password set? Find out from the man pages. 11. When creating a group or a user, unless specified otherwise, the system will assign the next available gid and uid, respectively, to the new group and user. Find out from the man pages where the information for the next available gid/uid is stored. 12. Find out from the man pages how to specify a gid/uid while creating a group/user. 13. The command groups returns the groups that a user is a member of. Find out what groups your first created user belongs to. Can you find the groups that another user belongs to? Can the superuser find this information? 14. Every file/directory is owned by a user and a group. Find out from the man pages for the command ls how to determine the user owner and the group owner for a file/directory. 1 15. The command chown allows the owner of a file to change ownership (user and group) of the file to some other user and group, as long as the current owner has privileges for the new user and new group. Can the superuser change the ownership of any file and directory to any user and group? 16. Create a user called gilmour with the default uid/gid and with the home directory /home/music/gilmour. 17. Create a user called wright with the uid 600 and gid 700 with the group name wright, and home directory /home/alum/wright. 18. Create a user called waters with the default uid/gid and with the home directory /home/music/waters. 19. Create a user called mason with the default uid/gid and with the home directory /home/music/mason. 20. Create a group called pink with gid 500 and a group called floyd with gid 501. 21. Add the users gilmour, wright, waters and mason to the group floyd, and the users gilmour, wright and mason to the group pink. 22. Log on as the user gilmour using the command su - gilmour in a terminal window. This will log you on as the user gilmour, and the shell session will be initialised with all the environment variables for that user. Create a directory in the home directory called division. What is the default group owner of the directory? Change the group owner to be the group pink and make the directory readable, writeable and executable by the group (use the command chmod). How can you test if other members of the group have access to this directory to read and write fom that directory? Does it matter if the home directory for the user gilmour is not owned by the group pink? Does it matter that the home directory for the user gilmour is not readable by the group? writeable by the group? executable by the group? Write the sequence of tasks you will do to check all of the above, and perform to tasks to check. Once you are done checking the tasks, you can log off as the user gilmour by using the command exit. This will end the shell session that you logged on to as the user gilmour and return you back to your shell session in your terminal window. 23. When another member of the group (other than the user gilmour) creates a file in the directory division created above, who is the user/group owner of the file? 24. Log on as the user waters. Create a directory in the home directory called saucerful. What is the default group owner of the directory? Change the group owner to be the group pink. Did this succeed? If so, why? If not, why? Change the group owner to be the group floyd. Did this succeed? Make the directory readable, writeable and executable by the group. Check if the other members of the group floyd have access to this directory. Moving Users and Creating Many Users 1. Use the command usermod and change the uid and gid for user gilmour to be 3000 and 2000, respec- tively, and move the home directory for the user from /home/music/gilmour to /home/guitarists/gilmour. First, write the steps you would take to achieve this, show me the steps, and then perform the task. 2. You can process command line arguments in a bash script. Consider the following bash script: #!/bin/bash echo "Number of arguments = $#"; for arg in "$@"; do echo "Argument: $arg"; if [ "$arg" == "-a" ]; then echo "-a option"; fi if [ "$arg" == "-c" ]; then echo "-c option"; fi done; Suppose the above script is saved in a file called comline.sh and the file is made executable. Then, try running the script using the commands: ./comline.sh ./comline.sh a b ./comline.sh -a b -c d Study the script and the output from the above commands to understand how to process command line arguments. 3. You can read in a given file in a bash script. Consider the following bash script: #!/bin/bash echo enter file name read fname exec<$fname i=1; while read -a line; do echo Line No. $i : ${line[*]}; i=$(($i+1)); numWords=${#line[@]}; echo This line has $numWords words; if [ $numWords -gt 0 ]; then echo The first word is ${line[0]}; fi done Suppose the above script is saved in a file called readfile.sh and the file is made executable. Then, try running the script using the command: ./readfile.sh and type the name of a file (e.g., comline.sh) when the script asks for input. Study the script and the output from the above command to understand how to read from a file, and how to process individual words on each line of the file. 4. As a system administrator, you need to create several users, each with a different uid (=gid). You would like assign the values for the uid (and hence gid). You would also like to assign the home directory for each user. Assume that you have a file that contains information about each user to be created on one line of the file. The information is the user name, the uid (= gid) and the home directory. A sample file with two users may look like: john 6000 /home/insects/john paul 7000 /home/wings/paul (a) Write a script that gets the name of the file containing user information on the command line and creates the users specified in the file. You may assume that the uids specified in the file are not used for any other users/groups on the system, and that the parent directories for the home directories (in the above example, the directories /home/insects and /home/wings) exist. (b) Write a second script for the same task, but without making the two assumptions above, i.e., your script will need to make sure that (1) the uid specified is not currently in use as a uid for any user, or as a gid for any group, and (2) the parent directories of the home directories specified do exist..
Load more

Recommended publications
  • Filesystem Hierarchy Standard
    Filesystem Hierarchy Standard LSB Workgroup, The Linux Foundation Filesystem Hierarchy Standard LSB Workgroup, The Linux Foundation Version 3.0 Publication date March 19, 2015 Copyright © 2015 The Linux Foundation Copyright © 1994-2004 Daniel Quinlan Copyright © 2001-2004 Paul 'Rusty' Russell Copyright © 2003-2004 Christopher Yeoh Abstract This standard consists of a set of requirements and guidelines for file and directory placement under UNIX-like operating systems. The guidelines are intended to support interoperability of applications, system administration tools, development tools, and scripts as well as greater uniformity of documentation for these systems. All trademarks and copyrights are owned by their owners, unless specifically noted otherwise. Use of a term in this document should not be regarded as affecting the validity of any trademark or service mark. Permission is granted to make and distribute verbatim copies of this standard provided the copyright and this permission notice are preserved on all copies. Permission is granted to copy and distribute modified versions of this standard under the conditions for verbatim copying, provided also that the title page is labeled as modified including a reference to the original standard, provided that information on retrieving the original standard is included, and provided that the entire resulting derived work is distributed under the terms of a permission notice identical to this one. Permission is granted to copy and distribute translations of this standard into another language, under the above conditions for modified versions, except that this permission notice may be stated in a translation approved by the copyright holder. Dedication This release is dedicated to the memory of Christopher Yeoh, a long-time friend and colleague, and one of the original editors of the FHS.
    [Show full text]
  • Consolidate Home Directories to Improve Workforce Productivity
    Solution brief Consolidate home directories to improve workforce productivity HPE 3PAR File Persona Software Empower and enable users while increasing security Efficient: Improve your primary storage efficiency and control • One-third the data center footprint and significant power savings • One converged capacity eliminates Challenge Truly converged storage for wasted block or file space reservation home directory consolidation Localized user data with inadequate and Effortless: Simplify your storage inefficient protection and control HPE 3PAR StoreServ is highly efficient, deployment and administration Every IT organization has a need to store • Autonomic provisioning of all capacity flash-optimized storage engineered for and manage user-generated data such as the true convergence of block, file, and • Single, simple, and streamlined business documents, images, audio, and administration of block, file, and object access. HPE 3PAR Operating System object access video files. Traditionally, this has been done and converged controllers incorporate in local home directories on individual users’ multi-protocol support into the heart Bulletproof: Deploy your file shares laptops and desktops resulting in higher of the system architecture. This unique with confidence than necessary client device costs, ineffective • Resilient Mesh-Active architecture solution delivers tightly integrated, truly and intrusive backup processes, complex converged storage for provisioning both • Mission-critical proven HPE file system and time-consuming restore processes, and block volumes for server workloads and file poor data governance. IT needs a solution and object shares for client workloads such that maximizes workforce productivity while as home directory consolidation—efficiently, ensuring that data is effectively protected, effortlessly, and without compromise. secured, and controlled—all with minimal cost and effort.
    [Show full text]
  • The Complete Freebsd
    The Complete FreeBSD® If you find errors in this book, please report them to Greg Lehey <grog@Free- BSD.org> for inclusion in the errata list. The Complete FreeBSD® Fourth Edition Tenth anniversary version, 24 February 2006 Greg Lehey The Complete FreeBSD® by Greg Lehey <[email protected]> Copyright © 1996, 1997, 1999, 2002, 2003, 2006 by Greg Lehey. This book is licensed under the Creative Commons “Attribution-NonCommercial-ShareAlike 2.5” license. The full text is located at http://creativecommons.org/licenses/by-nc-sa/2.5/legalcode. You are free: • to copy, distribute, display, and perform the work • to make derivative works under the following conditions: • Attribution. You must attribute the work in the manner specified by the author or licensor. • Noncommercial. You may not use this work for commercial purposes. This clause is modified from the original by the provision: You may use this book for commercial purposes if you pay me the sum of USD 20 per copy printed (whether sold or not). You must also agree to allow inspection of printing records and other material necessary to confirm the royalty sums. The purpose of this clause is to make it attractive to negotiate sensible royalties before printing. • Share Alike. If you alter, transform, or build upon this work, you may distribute the resulting work only under a license identical to this one. • For any reuse or distribution, you must make clear to others the license terms of this work. • Any of these conditions can be waived if you get permission from the copyright holder. Your fair use and other rights are in no way affected by the above.
    [Show full text]
  • Filesystem Hierarchy Standard
    Filesystem Hierarchy Standard Filesystem Hierarchy Standard Group Edited by Rusty Russell Daniel Quinlan Filesystem Hierarchy Standard by Filesystem Hierarchy Standard Group Edited by Rusty Russell and Daniel Quinlan Published November 4 2003 Copyright © 1994-2003 Daniel Quinlan Copyright © 2001-2003 Paul ’Rusty’ Russell Copyright © 2003 Christopher Yeoh This standard consists of a set of requirements and guidelines for file and directory placement under UNIX-like operating systems. The guidelines are intended to support interoperability of applications, system administration tools, development tools, and scripts as well as greater uniformity of documentation for these systems. All trademarks and copyrights are owned by their owners, unless specifically noted otherwise. Use of a term in this document should not be regarded as affecting the validity of any trademark or service mark. Permission is granted to make and distribute verbatim copies of this standard provided the copyright and this permission notice are preserved on all copies. Permission is granted to copy and distribute modified versions of this standard under the conditions for verbatim copying, provided also that the title page is labeled as modified including a reference to the original standard, provided that information on retrieving the original standard is included, and provided that the entire resulting derived work is distributed under the terms of a permission notice identical to this one. Permission is granted to copy and distribute translations of this standard into another language, under the above conditions for modified versions, except that this permission notice may be stated in a translation approved by the copyright holder. Table of Contents 1. Introduction........................................................................................................................................................1 1.1.
    [Show full text]
  • CS 103 Lab 1 - Linux and Virtual Machines
    CS 103 Lab 1 - Linux and Virtual Machines 1 Introduction In this lab you will login to your Linux VM and write your first C/C++ program, compile it, and then execute it. 2 What you will learn In this lab you will learn the basic commands and navigation of Linux/Unix, its file system, the GNU C/C++ compiler and a few basic applications such as Gedit. Important: The Linux operating system and environment shares a vast majority of commands and methods with Unix. 3 Background Information and Notes 3.1 Software to Install on your PC Start by following the course virtual machine installation instructions found at the link below. http://cs103.usc.edu/tools-and-links/installing-course-vm/ Below is a list of recommended software you should install that will be helpful over multiple courses in CS and EE. These tools allow you to access remote servers, run GUI apps on those servers, and transfer files between your PC and those servers. For Windows: FileZilla FTP – Available from : https://software.usc.edu/index.aspx XWin-32 – Available from : https://software.usc.edu/index.aspx PuTTY – Available from : https://software.usc.edu/index.aspx For Mac: X Server: http://developer.apple.com/opensource/tools/runningx11.html Fetch FTP – Available from : https://software.usc.edu/index.aspx Reference: http://www.usc.edu/its/unix/ Last Revised: 8/29/2014 1 CS 103 Lab 1 - Linux and Virtual Machines 3.2 Getting Started with Unix1 and Accessing your Account Solaris vs. Unix vs. Linux UNIX was developed by AT&T Bell Labs in 1969.
    [Show full text]
  • Downloading and Installing the Mobile Map for IOS, Android, Or Windows Device (See * Below) Common to All Devices: 1
    Downloading and Installing the Mobile Map for IOS, Android, or Windows device (See * below) Common to all devices: 1. Open your browser (see ** below) and return to www.mobilehuntingmaps.com, login and your My Account page will open. 2. On the left side, click on Orders. 3. Your order will appear on the right side of the page. 4. At the end of the order row, click on View to open the details of your order. 5. Beneath the name of the State you will see Download: Download Now and the password needed to open the map file with the CarryMap app. 6. Write down the password then click on Download Now. IOS Devices: (see ** below) 1. Dependent on your version of IOS (Apple operating system) you might be asked a second time to confirm the download. 2. How the download progress is displayed on your phone’s screen varies dependent on the IOS version on your phone. On IOS 12.0 or newer, a blue circle with a down pointing arrow inside will appear and a tiny blue line will move from left to right just under the circle as the download is in progress. Be patient as some of the map data files are large. Dependent on your internet speed and your WIFI strength, the download can take several minutes. Do not try to download a file using a cell phone service, more than likely it will drop before the download is complete. 3. Once the download progress is complete (the blue circle moves up and down and the blue line disappears), the file has been downloaded.
    [Show full text]
  • Introduction to Unix From
    Introduction to Unix from http://cnl.web.arizona.edu Index • Operating Systems • Files • Unix File System o The Path • Ownership and Permissions o Ownership o Permissions • Copy, Move and Remove Files and Directories • Archiving and Zipping • Viewing and Editing Text Files • Size • Unix Help • Tips and Tricks o Cut and Paste o Filename Completion o Find Command o History • Clients and Servers • Communicating across machines Related Resources • Glossary • Printing • Shell Scripts Operating Systems An Operating System (e.g., Windows 95, Windows 98 etc. from Microsoft; Unix systems like Linux, Irix, and Solaris) organizes your files and talks to the hardware. This means the OS translates from the very crude organization system that really exists on your hard drive to the hierarchical system that it presents to you. Essentially, it works like this: The Hard Drive has an area set aside that holds a table of addresses or "pointers" to blocks of information on the rest of the HD. The table's content and organization, the number and size of blocks on the HD etc. are dependent upon the particular OS. Although Unix systems are not exactly the same as each other, they are very similar to one another; just as Windows 95 and Windows 98 are very similar to one another. Files (A Comparison of Windows and Unix) Under Microsoft Windows, file names consist of two parts: a main part and an extension, separated by a special character, the dot (e.g., bird.jpg, fred.xls). The extension tells Windows which program to use to open the file (e.g., *.xls files are opened by MS Excel).
    [Show full text]
  • Linux File System and Linux Commands
    Hands-on Keyboard: Cyber Experiments for Strategists and Policy Makers Review of the Linux File System and Linux Commands 1. Introduction Becoming adept at using the Linux OS requires gaining familiarity with the Linux file system, file permissions, and a base set of Linux commands. In this activity, you will study how the Linux file system is organized and practice utilizing common Linux commands. Objectives • Describe the purpose of the /bin, /sbin, /etc, /var/log, /home, /proc, /root, /dev, /tmp, and /lib directories. • Describe the purpose of the /etc/shadow and /etc/passwd files. • Utilize a common set of Linux commands including ls, cat, and find. • Understand and manipulate file permissions, including rwx, binary and octal formats. • Change the group and owner of a file. Materials • Windows computer with access to an account with administrative rights The Air Force Cyber College thanks the Advanced Cyber Engineering program at the Air Force Research Laboratory in Rome, NY, for providing the information to assist in educating the general Air Force on the technical aspects of cyberspace. • VirtualBox • Ubuntu OS .iso File Assumptions • The provided instructions were tested on an Ubuntu 15.10 image running on a Windows 8 physical machine. Instructions may vary for other OS. • The student has administrative access to their system and possesses the right to install programs. • The student’s computer has Internet access. 2. Directories / The / directory or root directory is the mother of all Linux directories, containing all of the other directories and files. From a terminal users can type cd/ to move to the root directory.
    [Show full text]
  • Permissions and Ownership
    Getting Started with Linux: Novell’s Guide to CompTIA’s Linux+ Objective 1 Understand User and Group Configuration Files Information on users and groups on a Linux system is kept in the following files: ■ /etc/passwd ■ /etc/shadow ■ /etc/group Whenever possible, you should not modify these files with an editor. Instead, use the Security and Users modules in YaST or the command line tools described in the next objective, “Manage User Accounts and Groups from the Command Line” on 7-12. Modifying these files with an editor can lead to errors (especially in /etc/shadow), such as a user—including the user root—no longer being able to log in. To ensure consistency of these files, you need to understand how to ■ Check /etc/passwd and /etc/shadow ■ Convert Passwords to and from Shadow /etc/passwd The file /etc/passwd stores information for each user. In the past, UNIX and Linux users were handled in a single file: /etc/passwd. The user name, the UID, the home directory, the standard shell, and the encrypted password were all stored in this file. The password was encrypted using the function crypt (man 3 crypt). In principle, the plain text password could not be deciphered from the encrypted password. 7-2 Version 2 Use the Command Line Interface to Administer the System However, there are programs (such as john) that use dictionaries to encrypt various passwords with crypt, and then compare the results with the entries in the file /etc/passwd. With the calculation power of modern computers, simple passwords can be “guessed” within minutes.
    [Show full text]
  • User Accounts User Accounts User Info /Etc/Passwd User Info /Etc
    User Accounts Even a single-user workstation (Desktop Computer) uses multiple accounts. Such a computer may have just one user account, but several system accounts help keep the computer running. Accounts enable multiple users to share a single computer without causing each other too much trouble. User Accounts The Users in a Linux system are stored in the /etc/passwd file. If you are on your own VM - somewhere near the bottom you should see yourself and joe. On a brand new install you will see many users listed. Of course if you recall, we only added ourselves and joe. So what are all these other users for? These users are added because we don’t want to give sudo power to all of our programs. So each program installed gets its own user with its own limited permissions. This is a protection for our computer. User Info /etc/passwd Examine the /etc/passwd file using cat or less . Here is what we are seeing: It is colon : separated. So each : denotes a new column. username password The x is just a place-holder. The password is not really in this file User ID (UID) Just like every computer needs a unique ip address, every user needs a unique id. User Info /etc/passwd Group ID (GID) Every user belongs to its own group, with its own group id Comment field This is the Full name, phone number, office number, etc. It is okay if it is blank. Home Directory This is the location of the users home directory - This is how we can know the full path of any users home directory - /home/smorgan vs /home/s/smorgan.
    [Show full text]
  • Linux Filesystem Hierarchy and Hard Disk Partitioning
    LinuxLinux FilesystemFilesystem HierarchyHierarchy andand HardHard DiskDisk PartitioningPartitioning Moreno Baricevic CNR-IOM DEMOCRITOS Trieste, ITALY FileFile SystemSystem A file system is a set of methods and data structures used to organize, store, retrieve and manage information in a permanent storage medium, such as a hard disk. Its main purpose is to represent and organize storage resources. FileFile System:System: elementselements Name space: is a way to assign names to the items stored and organize them hierarchically. API: is a set of calls that allow the manipulation of stored items. Security Model: is a scheme to protect, hide and share data. Implementation: is the code that couples the logical model to the storage medium. 3 FileFile Systems:Systems: BasicBasic ConceptsConcepts (1/2)(1/2) Disk: A permanent storage medium of a certain size. Block: The smallest unit writable by a disk or file system. Everything a file system does is composed of operations done on blocks. Partition: A subset of all the blocks on a disk. Volume: The term is used to refer to a disk or partition that has been initialized with a file system. Superblock: The area of a volume where a file system stores its critical data. 4 FileFile Systems:Systems: BasicBasic ConceptsConcepts (2/2)(2/2) Metadata: A general term referring to information that is about something but not directly part of it. For example, the size of a file is very important information about a file, but it is not part of the data in the file. Ownerships, access permissions, creation/modification/access time, are also part of the metadata information pertaining a file.
    [Show full text]
  • Working with the File System, Configuration Files, and Software Images
    Working with the File System, Configuration Files, and Software Images This appendix describes how to manipulate the router flash file system, how to copy configuration files, and how to download software images to a router. Working with the File System Working with Configuration Files Working with Software Images Working with the File System Commands in this document use URLs as part of the command syntax. URLs used in the Cisco 910 Industrial Router file system contain the following two parts: File system or network prefix File identification suffix The following tables list URL keywords that can be used in the source-url and destination-url arguments for all commands in this document. The prefixes listed below can also be used in the filesystem arguments in this document. Table 5 lists common URL network prefixes used to indicate a device on the network. Table 5 Network Prefixes, Descriptions, and Formats Prefix Description Format ftp Specifies a File Transfer Protocol [[//[username[:password]@]location]/directory]/filename (FTP) network server. For example: ftp://network-config (prefix://filename) ftp://jeanluc:[email protected]/ship-config tftp Specifies a TFTP server. tftp:[[//location]/directory]/filename Table 6 common URL prefixes used to indicate memory locations on the system. Cisco Systems, Inc. www.cisco.com 1 Working with the File System, Configuration Files, and Software Images Table 6 URL Prefixes and Descriptions Prefix Description flash0 On board NAND flash memory, corresponding to /dev/mtd6 which is mounted as /mnt/apps. flash1 On board NAND flash memory, corresponding to /dev/mtd7 which is mounted as /mnt/data.
    [Show full text]