mdipietro Absent Member.
Absent Member.
585 views

EAc Probelm


this is my pseudocode and doesn't work



Begin Rule :EAC Rule
IF ((command IN Cpcksh shell login))
THEN
Set Authorize : yes
Set Session Capture : yes
Set Script : Enhanced Access Control Policy( policy:path default
read:l!all path /bin/* exec:!all path /var/**/* !read:log=9 path/var/*
!read:log=9 path /var/** !read:log=9)
END IF
END RULE :EAC Rule

the command "Cpcksh shell login" is
-cpcksh
-crush


i login in with "putty" and after switch to another user but all users
can perform "ls -la /var/"

what is the problem?


--
mdipietro
------------------------------------------------------------------------
mdipietro's Profile: https://forums.netiq.com/member.php?userid=12214
View this thread: https://forums.netiq.com/showthread.php?t=57613

0 Likes
2 Replies
Knowledge Partner
Knowledge Partner

Re: EAc Probelm

Just to be sure, do all of your users have 'cpcksh' as their login shell?
If they are no within that environment, then they will not be constrained
by PUM, and normally /var is a public directory at least to list at that
top level, so what you see would be expected in that case.

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below...
0 Likes
mdipietro Absent Member.
Absent Member.

Re: EAc Probelm


I edited the /etc/passwd as below
pamuser2:x:1002:1002::/home/pamuser2:/usr/bin/cpcksh

so I expect that if I perform "su pamuser2" the user can't run "ls
/var/"

is it right?


--
mdipietro
------------------------------------------------------------------------
mdipietro's Profile: https://forums.netiq.com/member.php?userid=12214
View this thread: https://forums.netiq.com/showthread.php?t=57613

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.