Listing authorizations and running authorized commands
The
auths(C)
command allows you to list your kernel privileges, and to start up a
shell so that you can issue commands with specific authorizations.
-
The auths command without arguments
lists your kernel privileges. For
example:
$ auths
kernel privileges: execsuid,chown
-
The auths command with the -a
option allows you to specify a restricted set of one or more
of your authorizations. For example, the user with execsuid and
chown
authorizations can restrict their use to the chown authorization:
$ auths -a chown
$ auths
kernel privileges: chown
To restore your authorizations, leave the shell started by the
auths -a command.
-
The auths command with the -r
option allows you to specify which of your authorizations you wish to
remove. For example:
$ auths -r chown
$ auths
kernel privileges: execsuid
Leave the shell started by the
auths -r
command to restore your authorizations.
-
The auths command with the -c
option allows you to issue a command instead of starting an
interactive subshell. In the example below,
chown authorization is removed and then the auths
command is issued. The result is a line listing the
user's authorizations; the
chown authorization is not included.
$ auths -r chown -c auths
kernel privileges: execsuid
When the user executes another list, the
chown authorization is restored:
$ auths
kernel privileges: execsuid,chown
Next topic:
Data encryption
Previous topic:
Authorizations
© 2005 The SCO Group, Inc. All rights reserved.
SCO OpenServer Release 6.0.0 -- 03 June 2005