root/user stop asking for password

Jean Of mArc · 11-27-2005, 08:50 PM

Some programs (such as a script that tells my laptop to go wireless, or YaST) requires that I enter the root password, which I'm sure is common for everyone here...
Two questions:

A) Is it possible to set things up so that a user has the rights to run a particular program without a password? For example, when I run YaST, it asks for a password... can I set it up so that regular users can start YaST?

B) If you can't at least do that, is it possible to set it up is it possible for the computer to at least remember your password? I note that (in KDE) there is a checkbox under the "input password" dialog that says "Remember my password" (or something like that), but it only seems to for a limited time (like until I close my laptop lid, or reboot, or come out of suspend) before it is asking me for my password again when I try and run certain things.

I know it is good to have it ask for your password on certain things for security reasons, but there are certain things which I always want permission to just run without a password (or at least with a remembered one)

Ideas?

Thanks!

seagley · 11-27-2005, 09:13 PM

For your first question, you may execute the "visudo" then edit the /etc/sudoers file, and add a line like this:

yourname ALL=(ALL) NOPASSWD: ALL

so that if you wanna run yast in your own shell with root priveledge, what you have to do is executing "sudo /sbin/yast".

But please do remember---It is not a recommended setting if your box is running any improtant service ---it wont prompt you to enter the root password when you run "sudo command-name" --- it is very dangerous.It will compromise the security of your GNU/Unix system.

Jean Of mArc · 11-27-2005, 10:20 PM

Thanks
So does this set ALL programs to run without prompting for password?
If so, is there a way so it only does this for specific things, not everything?
I don't want to compromise too much security (though I'm only using this system for personal use... no servers or anything)

seagley · 11-27-2005, 10:47 PM

Of course you can, you may execute "man sudoers" for more info, the sudoers file can control which command can be executed by the particular users from certian host.