sudo setup
Here is another sudo posting from me.,
I have a user x belongs to group X and a user y belongs to group Y. These two groups are not related to each other by any means. I want user x to sudo into y as sudo su - y How can I setup that? I don't want others in group Y to do that. |
/etc/sudoers
Code:
x ALL=(y) ALL E.g Code:
sudo -u y /bin/ls |
troop,
Do you mean in /etc/sudoers? . AM using Redhat EL4 |
yes, add the string to your /etc/sudoers
|
Quote:
|
Quote:
|
Quote:
Quote:
Quote:
|
Quote:
After 'su -y' x can do whatever y can do. troop suggested solution that allows run any command as y. Why it's weaker security ? It seems to me that in both cases x can do anything y can. |
The fact that allowing user x to 'su' to y undermines the purpose of Sudo should be mentioned, yes, and while you're right to conclude that after 'su' x can do whatever y can do but the OP asked for a specific command which is in line with the purpose of Sudo: to allow granular control over what specific commands a user may run.
|
Quote:
Quote:
And I don't think it's undermines the purpose of Sudo: after all ALL is built into sudo exactly for the cases OP asked about. |
Thanks for everyone here to help me.
Thanks for everyone here to help me.
It worked for me with Code:
x ALL=ALL Am sorry to say, it may be my fifth(or more) posting here regarding sudo. I don't know why am allergetic to "sudo" . I have a learn a lot in sudo. Thanks again for a useful discussion from all. |
All times are GMT -5. The time now is 03:23 PM. |