PDA

View Full Version : tool to report access rights on linux



Lance Haig
25-Jun-2007, 05:06 PM
I have the unenviable task of trying to determine what rights which user
or group has to the system.

Anyone know of a tool I can use to give me pretty pictures for an audit.

Thanks

Lance

Elrey
25-Jun-2007, 06:07 PM
This is what Deloitte and Touche make us use for our IT audits...

http://www.cxlsecure.com/


"Lance Haig" <lhaig@NO.haigmail.SPAM.com> wrote in message
news:9KRfi.1484$Rg7.1385@prv-forum2.provo.novell.com...
>I have the unenviable task of trying to determine what rights which user
> or group has to the system.
>
> Anyone know of a tool I can use to give me pretty pictures for an audit.
>
> Thanks
>
> Lance

Lance Haig
25-Jun-2007, 08:09 PM
Elrey wrote:
> This is what Deloitte and Touche make us use for our IT audits...
>
> http://www.cxlsecure.com/
>
>
> "Lance Haig" <lhaig@NO.haigmail.SPAM.com> wrote in message
> news:9KRfi.1484$Rg7.1385@prv-forum2.provo.novell.com...
>> I have the unenviable task of trying to determine what rights which user
>> or group has to the system.
>>
>> Anyone know of a tool I can use to give me pretty pictures for an audit.
>>
>> Thanks
>>
>> Lance
>
>


Thanks Elrey,

I don't run windows though :-(

Lance

Incognito
25-Jun-2007, 09:14 PM
HAHAHAHAHAHAHHA your kidding right!

Just VM an instance for this purpose...

no really .. no windows!

Lance Haig
25-Jun-2007, 10:07 PM
Incognito wrote:
> HAHAHAHAHAHAHHA your kidding right!
>
> Just VM an instance for this purpose...
>
> no really .. no windows!
>
>

No Windows at work

I have to run windows at home :-)

Accounting software only runs on windows

Lance

Jim Pye
25-Jun-2007, 10:21 PM
Incognito wrote:

> HAHAHAHAHAHAHHA your kidding right!
>
> Just VM an instance for this purpose...
>
> no really .. no windows!
No windows here, Its Linux all the way down!!!


--
Pye, James Pye, chmod 007
The Ultimate Open Source

Mark (mgh)
26-Jun-2007, 04:43 PM
Lance Haig wrote:

> I have the unenviable task of trying to determine what rights which
> user or group has to the system.
>
> Anyone know of a tool I can use to give me pretty pictures for an
> audit.
>
> Thanks
>
> Lance

You've asked a very interesting question. How would one determine (i.e.
audit) user & group rights on a Linux system they've not encountered
before.

You might try going to sf.net & doing a search on 'tripwire'. I got 20
hits. Open Source Tripwire plus alternatives.
http://sourceforge.net/projects/tripwire/

with some googling, I found this ...
http://www.ibm.com/developerworks/linux/library/l-security-audit.html

Lee Garner
28-Jun-2007, 02:19 AM
Lance Haig wrote:
> I have the unenviable task of trying to determine what rights which user
> or group has to the system.
>
> Anyone know of a tool I can use to give me pretty pictures for an audit.
>
> Thanks
>
> Lance

You'll have to massage it into a spreadsheet or something, but you could
try something like "find / -type d | getfacl --tabular -"