search for: newgrp

Package: logcheck-database Version: 1.2.69 Severity: wishlist Hello, when newgrp (part of the package login) is used, I see messages like this in my syslog: Aug 27 23:36:16 debian64 newgrp[1975]: user `root' (login `root' on tty1) switched to group `backup' Aug 27 19:28:15 srv1 newgrp[10082]: user `root' (login `mazur' on pts/1) switched to group `backup...

http://bugzilla.mindrot.org/show_bug.cgi?id=826 Summary: RFE: scp and ssh should have an option to set the group- id at login time Product: Portable OpenSSH Version: 3.8p1 Platform: All OS/Version: Linux Status: NEW Severity: enhancement Priority: P2 Component: Miscellaneous

http://bugzilla.mindrot.org/show_bug.cgi?id=555 Summary: If user does a newgrp before envoking ssh, it fails with a setgid error. Product: Portable OpenSSH Version: older versions Platform: UltraSparc OS/Version: Solaris Status: NEW Severity: normal Priority: P2 Component: ssh...

...ups=8513(domain users),31020(sudoer) and added "sudoer" to /etc/sudoers like so %sudoer ALL=(ALL) ALL now when I login as jefftest I can run commands using sudo back to my other user who I also added to sudoer I still can not run commands using sudo but as you suggested I do the "newgrp it" or "newgrp sudoer" and then I can run commands using sudo On Wed, Dec 9, 2015 at 8:20 AM, Mattias Zhabinskiy < mattiasz at thinklogical.com> wrote: > Jeff, > > > After ssh try to run: > > > newgrp it > > > and then sudo. See if it will work,...

All, Could someone explain the purpose of the uidswap functions with respect to ssh ( the client ). From what I gathered , ssh installs as setuid root and swaps ids when reading potential key files that may be read only by root. Also , I think when binding to a privileged port ssh swaps id. Is that so? What are the consequnences if you do not install ssh setuid root? ( As far I as know no uid

...D if changed (test clearing of saved gid) */ if (old_gid != pw->pw_gid && (setgid(old_gid) != -1 || setegid(old_gid) != -1)) fatal("%s: was able to restore old [e]gid", __func__); This causes permanently_set_uid to fail in the following case: $ su Password: ???????? # newgrp bin # ssh remotehost permanently_set_uid: was able to restore old [e]gid # Is this the desired behavior or should the code special case running as root? - Glen Nakamura

So happy for BadLock bug it finally pushed Ubuntu to upgrade samba :-) So many things work better * I can now sudo without having to newgrp first * I can now run id and get a list of all groups I am in * I can now run getent group and get a list of the domain groups but I now have two unexpected groups running the following I get id | sed 's/,/\n/g' | sort > id_without.txt id $USER | sed 's/,/\n/g' | sort > id_...

...- first in the stat command. Only with the -x option. If you execute stat -x on /tmp or /usr/bin/passwd parameters for example, the numeric representation of mode is wrong. The "special" bits are always 0. No suid-bit, no sticky bit! - Second. Because of a missing suid-bit on the newgrp command, this one is not really usable for users other than root. Best regards, Yannick Cadin

...t; > > verify that using the groups command) but I still can't read the > > > > abovementioned file. > > > > > > > > Am I not getting something? > > > > > > Hi Michael, > > > > > > have you already tried the 'newgrp' command? > > > cu - Michael > > > > > > > When I use the newgrp command, I do change to the apache > > group and it works. > > > > Do you mean 'su - Michael'? > > > > su - michael is actually interesting. Before the su -...

Hello, I have a user who shows up as a member of the office_administration group when I run: getent group | grep office_administration However when I login as the user and run: groups or id I don't see the office_administration group listed. And when the user tries to write to a directory that the office_administration group owns and has permission to write to, she is denied access (which

...ns-after-adding-a-user-to-a-new-group #/home is mounted from a NFS export [jpyeron at node000 ~]$ cat /tmp/jobs/foo.txt ~jobs/test.txt ~jobs/userstest.txt afasdasd cat: /home/jobs/test.txt: Permission denied Sun May 5 03:20:36 EDT 2013 #### why does this fix the issue? [jpyeron at node000 ~]$ newgrp jobs [jpyeron at node000 ~]$ cat /tmp/jobs/foo.txt ~jobs/test.txt ~jobs/userstest.txt afasdasd Sun May 5 02:27:17 EDT 2013 Sun May 5 03:20:36 EDT 2013 [jpyeron at node000 ~]$ -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- -...

# cat /proc/sys/kernel/ngroups_max 65536 # sysctl kernel.ngroups_max kernel.ngroups_max = 65536 Is there a way to change/look at AUTH_SYS? Seems I have 28 groups now as my user I tried created a test user with much less groups but it turns out it is on all those other groups. As such I tried winbind nested groups=no but this doesn't seem to change anything. On Tue, Dec 8, 2015 at 5:05

Where did I go wrong? [root at mail busdev]# stat . File: `.' Size: 4096 Blocks: 16 IO Block: 32768 Directory Device: ah/10d Inode: 147591 Links: 5 Access: (0750/drwxr-x---) Uid: (56755/ busdev) Gid: (56755/ busdev) Access: 2008-01-06 15:49:53.000000000 -0500 Modify: 2008-01-06 15:49:15.000000000 -0500 Change: 2008-01-06 15:59:59.000000000 -0500 [root at

...26, 2016 at 12:32 PM, Rowland penny <rpenny at samba.org> wrote: > On 26/04/16 18:44, Jeff Sadowski wrote: > >> So happy for BadLock bug it finally pushed Ubuntu to upgrade samba :-) >> >> So many things work better >> >> * I can now sudo without having to newgrp first >> * I can now run id and get a list of all groups I am in >> * I can now run getent group and get a list of the domain groups >> >> but I now have two unexpected groups >> >> running the following I get >> >> id | sed 's/,/\n/g' | sort...

...$ git clone git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git These files will all have the group ownership of the user's current group. Any sufficiently large directory should work; it doesn't have to be a git repo. 4. Switch to the alternate group (starts a new shell) $ newgrp wheel $ id uid=1000(mvitale) gid=10(wheel) groups=10(wheel),1000(mvitale) 5. Enable the error generator (this also starts a new shell) $ ./sec-kill-chown Running shell. chown() and friends are now unavailable. 6. Create a target directory and run rsync to duplicate the hang. $ mkdir target $ cd t...

...oes RH6.2 ships with /sbin/dump & /sbin/restore root setuid? These are for sysadmins, not for regular users I hope. Is /sbin/unix_chkpwd really used and what is it used for? I haven't find anything about it in pam documentation. Is it really necessary to ship /usr/bin/gpasswd and /usr/bin/newgrp? Does anybody really use them on Linux? Maybe these should be extras ... (maybe they are needed by POSIX or something similar). What is /usr/bin/sperl5.00503 (suidperl) being used for? Why this doesn't have a manpage? Is it necessary? According to glibc documentation /usr/libexec/pt_chown doe...

Hello Everyone, I'm using a centos 7 server. I tried to add my own user to group 'apache' and it works temporarily. When I ssh to it later, I found my user not a member of group 'apache'. What's wrong with it? Thanks. Sincerely, Xuwen

...running id but those 2 groups are listed in each. On Tue, Apr 26, 2016 at 11:44 AM, Jeff Sadowski <jeff.sadowski at gmail.com> wrote: > So happy for BadLock bug it finally pushed Ubuntu to upgrade samba :-) > > So many things work better > > * I can now sudo without having to newgrp first > * I can now run id and get a list of all groups I am in > * I can now run getent group and get a list of the domain groups > > but I now have two unexpected groups > > running the following I get > > id | sed 's/,/\n/g' | sort > id_without.txt > id $USE...

On 26/04/16 18:44, Jeff Sadowski wrote: > So happy for BadLock bug it finally pushed Ubuntu to upgrade samba :-) > > So many things work better > > * I can now sudo without having to newgrp first > * I can now run id and get a list of all groups I am in > * I can now run getent group and get a list of the domain groups > > but I now have two unexpected groups > > running the following I get > > id | sed 's/,/\n/g' | sort > id_without.txt > id $USE...

Hello all, I have a file owned by apache:apache with permissions of 640. I have added myself to the apache group using usermod -G (and I can verify that using the groups command) but I still can't read the abovementioned file. Am I not getting something? Michael -------------- next part -------------- An HTML attachment was scrubbed... URL: