adduser_proc(8) - procedure for adding new users

Delegating superuser tasks with sudo

Smart Cards or SecurID tokens and *BSD? [ 1999/10/18]

Why shouldn't I run as root all the time? [ 1999/06/01]

How does the BSD password system work? [ 1999/04/01]

How can I reboot without su'ing to root? [ 1999/04/01]

Questions and Answers

mkalias(8) - a YP map convertion program {oss}

makedbm(8) - create a YP database {oss}

mknetid(8) - a YP filter program {oss}

pwd_mkdb(8) - generate the password databases {oss}

rpc.yppasswdd(8) - YP update password file daemon {oss}

skeyprune(8) - prune commented out and old entries from keys file {oss}

vipw(8) - edit the password file {oss}

rmuser(8) - remove users from the system {oss}

rmgroup(8) - delete a Unix group {oss}

last(1) - indicate last logins of users and ttys {oss}

passwd(1) - modify a user's password {oss}

chpass(1) - add or change user database information {oss}

encrypt(1) - encrypt passwords from the command line or standard input {oss}

logname(1) - display user's login name {oss}

whoami(1) - display effective user id {oss}

su(1) - substitute user identity {oss}

sudo(8) - execute a command as the superuser {oss}

visudo(8) - edit the sudoers file {oss}

groups(1) - show group memberships {oss}

id(1) - return user identity {oss}

chown(8) - change file owner and group {oss}

chroot(8) - change root directory {oss}

nologin(8) - politely refuse a login {oss}

chrootuid-1.2 - A simple wrapper that combines chroot(8) and su(1) into one program

calife-2.8.4c - A lightweight alternative to sudo

su2-1.3 - an enhanced su, allows users to su with own password + more

super-3.14.0 - Allow others to run commands as root

op-1.11 - Allow others to run commands as root (like sudo but different)

indir.pch - Patch to indir -- safely execute (set[ug]id) scripts {oss}

ckpasswd - a password checker, {oss}

indir - Safe way to run setuid shell scripts {oss}

npasswd - replacement for passwd(1) {oss}

pwget - Programs to retrieve /etc/passwd info {oss}

op - a tool to allow customizable super user access {oss}

opcom - permit unprivileged users to run selected commands {oss}

saudi - provide a syslog audit of 'su' users {oss}

suadi - (SU AUDIT) /bin/su replacement (V2) {oss}

surun - Run commands as another (or super) user {oss}

getpw - Public-domain getpw*(3) routines {oss}

sXid - All in one suid/sgid monitoring script written in C {GPL}

initgroups (3) - initialize supplementary group IDs {oss}

getgrent getgrnam getgrgid setgroupent setgrent endgrent (3) - group database operations {oss}

getpwent getpwnam getpwuid setpassent setpwent endpwent (3) - password database operations {oss}

getuid geteuid (2) - get user identification {oss}

getgroups (2) - get group access list {oss}

getlogin setlogin (2) - get/set login name {oss}

getpgrp (2) - get process group {oss}

getpw (3) - get name from uid {oss}

group_from_gid user_from_uid (3) - cache password and group entries {oss}

pw_abort (3) - passwd file update functions {oss}

pw_init pw_setdir pw_file pw_edit pw_prompt pw_copy pw_scan pw_error (3) - utility functions for interactive passwd file updates {oss}

pw_getconf (3) - passwd configuration access function {oss}

setuid seteuid setgid setegid (2) - set user and group ID {oss}

setgroups (2) - set group access list {oss}

setpgid setpgrp (2) - set process group {oss}

setsid (2) - create session and set process group ID {oss}

getgid getegid (2) - get group process identification {oss}

issetugid (2) - is current executable running setuid or setgid {oss}

getsid (2) - get process session {oss}

login logout logwtmp (3) - login utility functions {oss}

setregid (3) - set real and effective group ID's {oss}

setreuid (3) - set real and effective user ID's {oss}

setruid setrgid (3) - set user and group ID {oss}

getgrouplist (3) - calculate group access list {oss}

pwcache (3) - cache password and group entries {oss}

tcgetpgrp (3) - get foreground process group ID {oss}

tcsetpgrp (3) - set foreground process group ID {oss}

cuserid (3) - get user name {oss}

getpw - Public-domain getpw*(3) routines {oss}

Libraries and Functions

(The following links to subjects at this site retain your personalized selections.)

See also: Identity Authentication - verifying the identity of the originator of a connection (passwords, radius, identd, crypto methods, et al.)

See also: Kerberos related at Data integrity and Security, Checksums and Digests - cryptography, message digests, etc.

Up to Execution

Up to Process Limits - Permission and access restriction (files, resources, etc)

Process Limits: File Access - Process Limits on File access (permissions, ownership, modes, et al)

Process Limits: Resources - Process Limits on resource usage (disk, CPU, memory, et al)

(Metalab at UNC) /pub/linux/system/admin/su/ - utilities to allow selected users to run root programs