Download your favorite Linux distribution at LQ ISO.
Go Back > Forums > Linux Forums > Linux - Newbie
User Name
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!


  Search this Thread
Old 04-16-2012, 05:46 AM   #1
Senior Member
Registered: Mar 2003
Location: fasdf
Distribution: Debian / Suse /RHEL
Posts: 1,130

Rep: Reputation: 30
root privilege

As I know , in windows system , there are some privilege group which pre-assigned the specific privilege eg . power user , domain user etc, however , in unix / linux , it seems only have root and general user , if we have webadmin , DBA , system administrator , they should have different privilege to do their work , but now we can not grant a specific privilege to each of them , so it is not easy to trace the log when they have error .

I know some vendor have such solution eg. Beyondtrust PowerBroker , but it seems expensive .

Can advise is there any free or less expensive solution to help it ?

eg. We use RHEL server .

Old 04-16-2012, 05:54 AM   #2
LQ Guru
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295Reputation: 1295

Have a look at sudo, it's free and exactly what you're looking for in my opinion. If you set it up with groups as you require it should fit your needs. Good starting point is the man page:
man sudo
Kind regards,

Old 04-16-2012, 05:55 AM   #3
John VV
LQ Muse
Registered: Aug 2005
Location: A2 area Mi.
Posts: 17,232

Rep: Reputation: 2522Reputation: 2522Reputation: 2522Reputation: 2522Reputation: 2522Reputation: 2522Reputation: 2522Reputation: 2522Reputation: 2522Reputation: 2522Reputation: 2522
add your own groups and add users too them
then set the SELinux context for them
Old 04-16-2012, 05:48 PM   #4
Registered: Mar 2008
Posts: 17,178

Rep: Reputation: 2562Reputation: 2562Reputation: 2562Reputation: 2562Reputation: 2562Reputation: 2562Reputation: 2562Reputation: 2562Reputation: 2562Reputation: 2562Reputation: 2562
Kind of depends on how much your data is worth. I can't fault commercial companies when they come up with solutions. I'd like to know more about how they do this and make the claims. It might be that you can replicate it.
Old 04-17-2012, 12:02 AM   #5
LQ Newbie
Registered: Jun 2006
Location: Lazy Mountain Alaska, USA
Distribution: Red Hat /FC
Posts: 9

Rep: Reputation: 0
Use groups to limit users to certain areas or limit there right on the system , that's what it's there for .. No one except the administrators should have root privileges unless you don't care about security and want to constantly fight hackers and break-ins .


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Privilege Escalation - Getting 'root' privilege Rahil Parikh Linux - Security 2 12-02-2010 02:04 AM
root could not change privilege manojg Linux - General 2 11-19-2009 03:32 PM
root privilege nagavinodh Linux - Newbie 14 11-16-2009 01:02 PM
Identifying non-administrators w/ root privilege/ Multiple root account in use wjeanpaul Linux - Security 4 05-19-2006 09:55 PM
how to get root privilege in a script jpan Linux - General 5 01-07-2005 03:46 PM > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 07:59 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration