[rsbac] How can I do after installation

ghorvath at minolta.hu ghorvath at minolta.hu
Thu Jun 5 11:01:12 MEST 2003 

Hi !
I suppose you are using AUTH modul. This restricts setuids. Please check 
in a maintance kernel, that /bin/login has AUTH capabilities 400 to change 
its uid to so. Or simple set AUTH May Setuid to 1 thus allowing for it to 
change to anybody.

To set it or use rsbac_menu
auth_set_cap FILE add /bin/login 400

Or with may_setuid:
attr_set_fd AUTH FD auth_may_setuid 1 /bin/login

Bye, Gabor





"cyq" <cyq at dislab.nju.edu.cn>
Sent by: rsbac-bounces at rsbac.org
2003.06.05 05:54
Please respond to RSBAC Discussion and Announcements

 
        To:     "rsbac at rsbac.org" <rsbac at rsbac.org>
        cc: 
        Subject:        [rsbac] How can I do after installation


Dear rsbac:
          I am grduate student at Nanjing University in China. I am glad 
to use your rsbac. After I install rsbac,but I can't log in rsbac kernel 
with uid=400 security officer.Please tell me how can I do? thank you .The 
following is my installation's process:
  1.download rsbac-v1.2.0 ,patch-2.4.18-v1.2.0 and rsbac-admin-v1.2.0 to 
/usr/src/ in Redhat8.0; and I also download linux kernel 2.4.18.
  now I begin install:
   1.cd /usr/src/
   2.tar -zxvf linux-2.4.18.tar.gz
   3.cd linux
   4.tar -zxvf ../rsbac-v1.2.0.tar.gz
   5.gzip -dc patch2.4.18-v1.2.0.gz| patch -p1
   6.make menuconfig(I don't change any default options)
   7.touch Makefile
   8.make dep bzImage modules modules_install
   9.now install successfully.
   10. install rsbac-admin-v1.2.0
   11.tar -zxvf ../rsbac-admin-v1.2.0.tar.gz
   12.cd rsbac-admin-v1.2.0
   13. ./configure 
   14. make ;make install
   15. now also install successfully and some commands about rsbac at 
/usr/local/bin/
   16. adduser -u 400 -g 500 -n secoff
   17 passwd ***
   18.reboot linux with rsbac kernel and log in with root ,but can't log 
in with secoff(uid =400)
   19.please tell me how can I do, thank you very much .

 

¡¡¡¡¡¡¡¡¡¡¡¡¡¡                                           Your Sincerely
                                                          YueQuan Chen     
  ¡¡¡¡¡¡¡¡¡¡¡¡                                          e-mail:¡¡
cyq at dislab.nju.edu.cn
¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡ 



_______________________________________________
rsbac mailing list
rsbac at rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac



-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://gateway.compuniverse.de/pipermail/rsbac/attachments/20030605/f0e50971/attachment.htm

More information about the rsbac mailing list