You must be root to make the chroot call, and you should quickly change to non-root (a root user can escape a chroot environment, so if it's to be effective, you need to drop that privilege).
您必须以root身份来进行chroot调用,而且您应该快速地改变为非root身份(root用户可以脱离chroot环境,所以如果它要生效,您需要解除那个特权)。
Installing portal as non-root, to ensure that portal administrators do not have system root permissions.
将门户安装为非根门户,以确保门户管理员不具有系统根权限。
After you have modified and saved the configuration files, choose a non-root user account to test and log out all instances of that user from the system.
在修改并保存配置文件之后,选择一个非根用户帐户进行测试,然后从系统中退出此用户的所有实例。
To tackle many root causes of ill health, officials need to diagnose causes and consequences in a language that speaks to the core interests of non-health sectors.
为了应对健康不良的众多根源,官员们需要以针对非卫生部门核心利益的语言探讨原因和后果。
As part of this preventive approach, it tackles the root causes of ill health, also in non-health sectors, thus offering an upstream attack on threats to health.
初级卫生保健有助于开展预防工作,处理卫生领域以及非卫生领域中造成不健康的根源因素,从上游根治对健康的威胁。
It has simple configuration and secure communication with integrating RBAC to enable non-root users to collect FFDC data.
它具有简单的配置和安全的通信,并通过集成rbac允许非根用户收集FFDC数据。
You cannot configure a leaf node as the master node because it does not have direct access to all the nodes other than its non-root server.
不能将叶子节点配置成主节点,因为它不能直接访问其非根服务器之外的所有其他节点。
When the installation is complete, continue to follow the setup directions after reboot and choose a non-root account to create.
安装完成后,在重新启动后继续遵循设置说明并选择要创建的非根用户帐户。
Workaround: Ensure that you are using valid, non-expired security certificates issued by a trusted root certification authority.
处理:确保您在使用由可信任的根证书颁发机构颁发的有效的、非过期的安全证书。
This tip can help you publish your product on a non-JRE OS: Just find a platform with JRE installed, copy its JRE directory into the root folder of your exported product, as shown below.
此提示可帮助您在非jreOS中发布您的产品:只需找到安装了JRE的平台,将JRE目录复制到导出产品的根文件夹即可,如下所示。
Note: If you are connected to a non-root node or a leaf node, the information that you can view and the actions that you can take are limited.
注意:如果您连接到非根节点或叶节点,您可以查看的信息和可以采取的操作将受到限制。
When running WebSphere Application Server as non-root, if global security is enabled, the user registry must be either LDAP or a custom registry.
在将WebSphereApplicationServer作为非根运行时,如果启用了全局安全性,用户注册表必须是LDAP或自定义注册表。
If a non-root user runs this program while running with full capabilities, its inheritable set pI is first masked against fI so it is reduced to just cap_sys_admin.
如果一个非根用户在拥有所有能力的情况下运行这个程序,首先计算它的可继承集(pI)和fI 的交集,所以缩减到只包含 cap_sys_admin。
After generating the QDML file from a DTD grammar I had to edit the file to define the document root element and add type information for non-String values (a couple of ints, in this case).
根据DTD文法生成QDML文件之后,必须编辑该文件来定义文档的根元素,并为非string值(在这里,是几个int)添加类型信息。
Log in to the system as a non-root user and run the following commands.
作为一个非root用户登录到此系统并运行如下命令。
With the introduction of RBAC, a feasibility of extending administrator roles and responsibilities to non-root users is provided.
随着RBAC的引入,也带来了将管理权限和责任扩展到非 root用户的可行性。
The quickest way to check whether at could be made to run by a non-root user without being setuid root is to remove the setuid bit and then grant it all capabilities.
要想查明非根用户是否可以运行不带setuid位的at,最快的方法是删除 setuid 位,然后授予所有能力
So in order for capabilities to be useful, a root process must be able to irrevocably switch its uid to non-zero while keeping a few capabilities.
所以为了能够使用能力并保证系统安全,根进程必须能够不可逆转地将它的uid切换到非0,同时保留一些能力。
AIX provides a facility to delegate administrative roles to non-root users through role-based access control (RBAC) mechanism.
AIX提供了一种功能,可通过基于角色的访问控制(RBAC)机制将管理角色委托给非root用户。
user specifies that a non-root user is permitted to mount and unmount the filesystem.
user指定一个非根用户被允许安装或卸载文件系统。
The initrd is also useful as a non-persistent root file system mounted in a RAM disk for embedded Linux systems.
initrd对于在嵌入式系统中加载到RAM磁盘里的非持久性根文件系统来说也非常有用。
This single call implements a variety of actions that can all be performed from user space but only one action for non-root users.
这个调用执行了很多个操作,所有操作都可以在用户空间执行,但是只有一个操作可以被非 root 用户执行。
The VT-x supports two new forms of operation, one for the VMM (root) and one for guest operating systems (non-root).
VT - x支持两种格式的操作,一种用于VMM (root),另外一种用于客户操作系统(非root)。
Except, of course, because you got the path wrong, what you actually did was create a new access control file in the formerly non-existent subdirectory /share/website/corporate/root/.
当然,由于您弄错了路径,您实际所作是在之前不存在的子目录 /share/website/corporate/root/ 中创建一个新的访问控制文件。
The announcement of the Yocto project (see Resources) refers to a component called pseudo that allows non-root users to run project builds that might otherwise require root privileges.
Yocto项目的公告(参见参考资料)提到了一个称为pseudo的组件,该组件允许非root用户执行可能需要root特权才能执行的项目构建。
So the fI set on a binary is only useful for a non-root process with non-empty capability sets.
所以二进制文件上的fi集只对具有非空能力集的非根进程有作用。
This time, the non-root user has an empty capability set, while the process started as a root user has cap_dac_override in its permitted and effective sets.
这一次,非根用户的能力集是空的,作为根用户启动的进程的允许集和有效集中包含cap _ dac_override。
More complicated programs make use of saved uids to switch back and forth between root and a non-root user.
更复杂的程序使用保存的uid在根用户和非根用户之间来回切换。
When used with the -root option, the XWD command is non-interactive because you are capturing everything.
在使用-root选项时,xwd命令不是交互式的,因为要捕获屏幕上的所有东西。
There are two types of non-global zones: one is a sparse root zone and other is a whole root zone.
一共有两种类型的 non-globalzones :一种是稀疏根区域 (sparserootzone),一种是完全根区域 (whole root zone)。
应用推荐