User, Group permissions in Redhat Linux ES 3.0
I have Redhat Linux ES 3.0 on HP Hardware and have the following questions.If somebody answers these questions, I will be grateful.
1 I would like a create a user group called 'projectusers' and it contains around 10 users. This individual user(member of projectusers) can login into the machine but s/he should not create, modify files.How can I do that on group level? (ie) The whole group shouldn't create,modify the files when they login but they can su to some group id's.
2 I would like to create another group called 'webadmin' and all web related software will be installed under this account.When I create a group called 'webadmin', Is it necessary to create a userid called 'webadmin'? Because the above users(projectusers) should su to webadmin to work. I want to add some of the members of projectusers to webadmin group and it helps them to su to webadmin.How can I do that?
3 I want to restrict the projectusers and webadmin members to su to root.How can I do that?
I know , these questions are big but I am in a delegate situation to learn these stuffs.Any help will be highly appreciated.