Re: Associating Unix User Accounts with Servers

From: Kushal Agarwal (kushal.agarwal_at_gmail.com)
Date: 09/22/04 

Date: 22 Sep 2004 08:02:44 -0700

joe durusau <joe.durusau@lmco.com> wrote in message news:<4150939E.4FA9FD13@lmco.com>...
> Kushal Agarwal wrote:
>
> > Dave Hinz <DaveHinz@spamcop.net> wrote in message news:<2r8u70F17275sU2@uni-berlin.de>...
> > > On 20 Sep 2004 13:46:47 -0700, Kushal Agarwal <kushal.agarwal@gmail.com> wrote:
> > > > Hello,
> > > >
> > > > I was wondering, how can I associate unix user accounts to work with
> > > > various servers, such as Database servers, Administration servers,
> > > > etc.
> > >
> > > Details will be environment-specific. NIS+, LDAP, lots of options.
> > >
> > > > Additionally what interface does unix provide for this type of
> > > > association?
> > >
> > > It depends.
> >
> > Sorry.. my mistake, I actually meant application, and not server.
> >
> > The problem is that I don't want the application to store its own list
> > of users inside it, rather, it should use the list already defined in
> > the UNIX network. So is there any interface that UNIX provides to
> > allow the application to access the UNIX user accounts/authentication
> > procedures.
> >
> > Kushal.
>
> How secure does this mechanism have to be? If it is just a matter
> of Jones always wants app X to start automatically, but there is no
> reason to be afraid of Jones doing something else, you could define a
> shell that would do waht you want. If it has to be hard to break out
> of the defined app, there would be more trouble.
>
> Speaking only for myself,
>
> Joe Durusau

More specifically.. the mechanism has to be quite secure. Therefore I
was thinking of getting the application to make the system calls that
the OS makes during logon.

I know some of the top level system calls that are called during logon
to a machine.. but what exactly are they all?

Thanks,

Kushal

Relevant Pages

  • Re: MS Terminal Server application session breakout
    ... I would never recommend the "start program at logon" as anything other than ... as a convenience. ... When using a profile that launches an app at RDP logon, ... There is a vulnerability in Microsoft Terminal Server when an application is ...
    (Bugtraq)
  • Re: Associating Unix User Accounts with Servers
    ... >> of Jones always wants app X to start automatically, ... >> of the defined app, ... the mechanism has to be quite secure. ... spearate machine with only the capabilities you want, ...
    (comp.unix.admin)
  • Re: "multi user" in Windows 2000
    ... >He started a program on a windows 2000 box, ... has the ability to start an app as user A, logoff, logon as user B ... startup folder. ...
    (borland.public.delphi.nativeapi)
  • Forms Authentication doesnt protect specified pages.
    ... I've used this same exact setup ... the authentication does not stop at the logon page AT ... app worked a few times and then began to fail. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Provide backend location on separate logon DB.
    ... I have a separate logon DB that a user opens when they want to logon to my ... button on the logon app, then in addition to creating the shortcut to the ... secure front-end file, code will check to make sure that the back-end folder ...
    (microsoft.public.access.externaldata)