I want a group to nice and renice the processes of other users of the same group
I have a group of users in a group called 'admin'. I want them to be able to nice and renice the processes of the other users of the 'admin' group.
And, quite frankly, I haven't got a clue!
Can anyone help?
Only superuser (root) is able to "renice" other people's processes.
You could use "sudo" and set the /etc/sudoers file up so that all people in the "admin" group are able
to run "renice" as root.
A. the 'admin' group now can also renice processes of users outside the 'admin' group;
B. each time the group changes (ie users added/deleted), /etc/sudoers will have to be adjusted accordingly,
which is quite inconvenient.
If you want to overcome these options, I think you'll have to write a script that is:
1. given setUID permission;
2. owned by root:admin
3. execute permission only for group admin and user root (owner)
4. placed in a safe directory where only "admin" users have access
5. checks if the processes that are to be renice'd indeed belong to any of the users in the 'admin' group.
The fifth point will be the tricky part, but isn't needed if only want to overcome problem B (above), without solving A.
|All times are GMT -5. The time now is 01:56 PM.|