Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
08-25-2007, 02:17 PM
|
#1
|
Member
Registered: Dec 2006
Distribution: CentOS 4.4 (2.6.9-42.0.2.ELsmp)
Posts: 55
Rep:
|
Granting limited user a specific restricted cmd privilege
Hi Folks,
Is there a way I can grant a user with limited privileges access/permission to execute a command which only the root can? For obvious reasons, I don't want to grant the limited user sweeping rights, however it needs access to certain information which can be obtained by the root only.
For example, the limited user needs to obtain the disk serial number using , for eg, % sginfo -a /dev/sda , which can't be run as a limited user. Is there a way I can grant this limited user access to run this command?
Thanks.
|
|
|
08-25-2007, 03:20 PM
|
#2
|
Member
Registered: Jan 2005
Location: germany
Distribution: suse, opensuse, debian, others for testing
Posts: 307
Rep:
|
sudo !
--> /etc/sudoers
|
|
|
08-25-2007, 03:50 PM
|
#3
|
Member
Registered: Dec 2006
Distribution: CentOS 4.4 (2.6.9-42.0.2.ELsmp)
Posts: 55
Original Poster
Rep:
|
Thanks rtspitz!!
|
|
|
08-26-2007, 04:00 PM
|
#4
|
Member
Registered: Dec 2006
Distribution: CentOS 4.4 (2.6.9-42.0.2.ELsmp)
Posts: 55
Original Poster
Rep:
|
Haalp!! Goin' insane...
Am using visudo to edit the /etc/sudoers file. But, keeping getting syntax error at the following line:
root ALL =(ALL) ALL
And I haven't even touched this line, an original entry, in any fashion...
Am editting sudoers via an ssh session. Could it be inserting an unpalatable character or two (ok, wild one...grasping at straws here...) ??
|
|
|
08-26-2007, 04:18 PM
|
#5
|
Member
Registered: Dec 2006
Distribution: CentOS 4.4 (2.6.9-42.0.2.ELsmp)
Posts: 55
Original Poster
Rep:
|
Separately, on the subject of sudo & it's use within a script, in the following thread,
...use without a tty...
it was suggested that one needs to add in the default section,
Defaults !requiretty
As per my understanding this change would apply to all sudoers. If I wanted to restrict this to a User_Alias, is the correct directive:
Defaults:XYZ !requiretty
where XYZ is the User_Alias ??
Thanks.
|
|
|
All times are GMT -5. The time now is 06:36 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|