How can I add a user to my server without any rights (no file read, write, execute, no home directory, if possible not even able to see anything on the OS) the only reason I need this user is to open an ssh tunnel for Maria DB access via python from not local networks.
I’ve recently discovered the developer option “quick access toggle” for turning off all sensors on Android 10 on my Redmi and thought: “Finally a way to regain some control for when those apps can access the mic/cam”
But after testing it, i’ve noticed that some apps still are able to access the mic like usually. Whatsapp and the recorder app pick up everything like i didn’t turn it off, in telegram, a voice message is silent, like it’s supposed to be.
How is it possible for Whatsapp to just access the mic anyway?
I’ve successfully used REST in a HTTP call in my SPD 2013 workflow to break permission inheritance and assign unique permissions to various groups. I have another workflow where I want to re-inherit permissions or change the permission level for the existing assigned group on an item that has unique perms but no matter what I do I cannot get it to work.
I build dictionary with Accept and content-type set to application/json;odata=verbose.
I then set a variable with my URL like so: (workflow context:current site url)_api/lists/getbytitle/(‘ListName’)/items(ID)/resetroleinheritance
The request type is POST. Each time I run the workflow the permissions remain unique and nothing changes, I get a Bad Request response in the responsecode. What am I doing wrong?
I must mention that this is a document set, but I successfully broke inheritance via the same method, I now need to do the reverse if possible.
SQL Server 2017 Enterprise (14.0.3356.20), running on Windows Server 2016.
I have a situation where an application’s user needs to join on a table in a separate database in the same instance, but I’m getting permissions errors when I try to run anything cross-database. Basically, what it boils down to is that this works fine:
use DB2 EXECUTE AS user = 'domainappUser' SELECT TOP 1 * FROM dbo.Table REVERT
But this doesn’t:
use DB1 EXECUTE AS user = 'domainappUser' SELECT TOP 1 * FROM DB2.dbo.Table REVERT
I get the following error on the second query:
Msg 916, Level 14, State 1, Line 3 The server principal "domainappUser" is not able to access the database "DB2" under the current security context.
The user is mapped to both databases. There are plenty of places elsewhere in our other applications that we have used this same kind of cross-database join, and they work fine. Logged in as my admin user, this also works fine of course. I admittedly don’t know too much about permissions in SQL Server, and this one has me stumped.
We have an application, with an application user needs to be db_owner on the database (not my choice). All stored procedures are encrypted in this database. At some point they do a shrink of the database files in this application, and they do it every day. I want to prevent this, and I was looking if there was a way to do this either with:
- Deny permission somewhere
- a server or database trigger
- something else
Can someone help me
I wish to run a simple batch file on my server. However, when I try to do so, I am met with the following error:
(root@ns1560 BungeeCord)# ./start.bat -bash: ./start.bat: Permission denied
My first instinct was to then try
(root@ns560 BungeeCord)# sudo ./start.bat sudo: ./start.bat: command not found
This said it had something to do with my filesystem exec, but I tried to find my relevant file and could not find it in the noexec listing. The following output is the result of my
mount | grep noexec command:
(root@ns1060 BungeeCord)# mount | grep noexec securityfs on /sys/kernel/security type securityfs (rw,nosuid,nodev,noexec,relatime) tmpfs on /sys/fs/cgroup type tmpfs (ro,nosuid,nodev,noexec,seclabel,mode=755) cgroup on /sys/fs/cgroup/systemd type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,xattr,release_agent=/usr/lib/systemd/systemd-cgroups- agent,name=systemd) pstore on /sys/fs/pstore type pstore (rw,nosuid,nodev,noexec,relatime) efivarfs on /sys/firmware/efi/efivars type efivarfs (rw,nosuid,nodev,noexec,relatime) cgroup on /sys/fs/cgroup/pids type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,pids) cgroup on /sys/fs/cgroup/net_cls,net_prio type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,net_prio,net_cls) cgroup on /sys/fs/cgroup/cpu,cpuacct type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,cpuacct,cpu) cgroup on /sys/fs/cgroup/memory type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,memory) cgroup on /sys/fs/cgroup/hugetlb type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,hugetlb) cgroup on /sys/fs/cgroup/perf_event type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,perf_event) cgroup on /sys/fs/cgroup/devices type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,devices) cgroup on /sys/fs/cgroup/freezer type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,freezer) cgroup on /sys/fs/cgroup/blkio type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,blkio) cgroup on /sys/fs/cgroup/cpuset type cgroup (rw,nosuid,nodev,noexec,relatime,seclabel,cpuset)
Does anyone see something I’m missing?
User A can add a product one time; user B can add a product 10 times; user C can add a product unlimited times.
Limit access by user permission on Drupal 8. How can I solve it?
I am working on a Sharepoint Online environment. I have a 2013 Main Workflow running sub 2010 workflows. Let me set this straight: everything worked properly until today. I never saw this error before, and I am finding the waste of time trying to search online as to what this generic stupid error could really mean extra-annoying.
The main workflow is being accessed as supposed to, the history logging is being done properly in this first stage. Once the sub workflow is accessed, immediately the error is logged in the history list. And when I say immediately, I mean immediately, the first command is not even done. (In fact Status is saying: Failed on start)
Failed on start (retrying)
The workflow could not create the list item. Make sure the list exists and the user has permissions to add items to the list
The thing is, the ‘Create item’ command in the sub workflow, comes after the Sub workflow would supposedly have already created 2 history logs. These are nowhere to be seen in the history list: I only see the error. So Sharepoint is telling me that the item could not be added because: the list may not exist, or the user may not have permissions, BUT the flow would not have reached that point, as no logs are actually surpassed! Nice one Sharepoint :’)
I changed the permissions of the client experiencing this issue to be global admin, but it didn’t solve the problem. I am trying to run them from my account but still: same problem.
I found somewhere that the problem could be with cache, but I cannot seem to find from where I can reset it. Besides, having to reset the cache because of this idiotic problem. to me, really makes no sense.
Any suggestions would be appreciated.
UPDATE: The workflow is working properly on previously created list items. The issue is happening on newly created list items. Other workflows are working properly too: for example, I have a workflow which runs automatically on creation/update and it’s working as supposed to.
I made a user account in linux, and when i login to it through shell, it has access to all the root files and folders. how can i lock the user account to its /home/ folder, and make it so it cant CD into / ?
Ive tried to chroot it, ive tried chmod and chown, it will not work.
I want to change the user permissions of the folder
C:Program FilesMyProgram so that every user is allowed to write to that folder.
I am able to set the corresponding user rights manually within the windows explorer (no problem).
Because I have many computers I need to do that by a script.
runas /user:Administrator "cacls "C:Program FilesMyProgram" /T /E /G Users:F"
did not work. It tells me that it is trying to run cacls as user Administrator, but I don’t get any output message.
psexec -u Administrator -p MyAdminPassword cacls "C:Program FilesMyProgram" /T /E /G Users:F
cacls exited with error code 1332
For this code I found in the internet the error message
No mapping between account names and security IDs was done, but I did not find any solution which worked.
UAC is disabled (I don’t get any message. Before I also tried to put it on.)
How can I give my user / all users write access to the folder