Ping a Specific Port

Question

Tommaso

Asked: 2012-01-19 05:56:48 +0800 CST2012-01-19 05:56:48 +0800 CST 2012-01-19 05:56:48 +0800 CST

How to run command as user who has /usr/sbin/nologin as Shell?

772

All I need to do is to run a specific script as a particular user who does have the nologin/false shell indicated in /etc/passwd.

I would run the script as root and this should run as another user. Running:

~# su -c "/bin/touch /tmp/test" testuser

would work, but I need a valid shell for the testuser. I know I can disable the password with passwd -d testuser and leave the shell to /bin/bash this way would secure a little bit but I need to have nologin/false shell.

Basically what I need is what crontab does when we set jobs to be running as a particular user, regardless this one has nologin/false shell.

p.s I found this thread Executing a command as a nologin user, but I have no idea how to concatenate the command su -s /bin/sh $user to the script I need to run.

8 Answers

Voted

Iain · Answer 1 · 2012-01-19T06:00:55+08:00

Iain

2012-01-19T06:00:55+08:002012-01-19T06:00:55+08:00

You can use the -s switch to su to run a particular shell

su -s /bin/bash -c '/path/to/your/script' testuser

(Prepend sudo to the above if testuser is a passwordless user.)

148

Handyman5 · Answer 2 · 2012-01-19T10:49:01+08:00

Handyman5

2012-01-19T10:49:01+08:002012-01-19T10:49:01+08:00

You can do this with sudo -u if you have it installed:

# whoami
root
# sudo -u apache whoami
apache
# getent passwd apache
apache:x:48:48:Apache:/var/www:/sbin/nologin

15

adaptr · Answer 3 · 2012-01-19T06:03:09+08:00

adaptr

2012-01-19T06:03:09+08:002012-01-19T06:03:09+08:00

By providing the script as the argument to execute to /bin/sh:

su -s "/bin/sh /your/script/location" username

7

Tommaso · Answer 4 · 2012-01-19T06:01:03+08:00

Tommaso

2012-01-19T06:01:03+08:002012-01-19T06:01:03+08:00

just realized :

su -s "/bin/bash" -c "/bin/touch /tmp/testuser" testuser

maybe there is a better way ?!

2

Y00 · Answer 5 · 2018-02-16T23:18:25+08:00

Y00

2018-02-16T23:18:25+08:002018-02-16T23:18:25+08:00

actually, the best way to do this is via runuser

see the man page for details

this tool is used to deal with the situation as the developer said in his bolg

Whenever an service is running as root and wants to change UID using the shell it should use runuser.

http://danwalsh.livejournal.com/55588.html

i've post this answer in many palaces, forgive me if you find this annoying

2

Michael Böckling · Answer 6 · 2022-07-31T00:26:29+08:00

Michael Böckling

2022-07-31T00:26:29+08:002022-07-31T00:26:29+08:00

All you need is sudo:

sudo -u <user> -g <group> -- <command>

0

Wayne Shelley · Answer 7 · 2016-12-08T11:19:38+08:00

Wayne Shelley

2016-12-08T11:19:38+08:002016-12-08T11:19:38+08:00

Use sudo -u to specify the user. Also use the -i flag to set environment variables of the target user too.

sudo -i -u user command

-1

chetan · Answer 8 · 2019-09-17T22:51:59+08:00

chetan

2019-09-17T22:51:59+08:002019-09-17T22:51:59+08:00

Use su command with shell -s and -c command. As shown below

 su  exec -l -c '/bin/bash /etc/update_conf.sh' -s /bin/bash

-2

How to run command as user who has /usr/sbin/nologin as Shell?

Whenever an service is running as root and wants to change UID using the shell it should use runuser.

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?