LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 05-10-2005, 03:52 AM   #1
hinetvenkat
Member
 
Registered: Nov 2004
Location: Mumbai
Posts: 80

Rep: Reputation: 15
Sudoers problem


Hi all

I want to protect the one user named as "dummyadmin". he can change the password of all employees. But he should not change the password of users who are having the UID 0.

If it is possible in scripts.. i can do that scripts. But kindly tell me the definition in sudoers file.

Thanks
 
Old 05-11-2005, 02:42 PM   #2
makuyl
Senior Member
 
Registered: Dec 2004
Location: Helsinki
Distribution: Debian Sid
Posts: 1,107

Rep: Reputation: 54
From man sudoers:
Quote:
pete HPPA = /usr/bin/passwd [A-z]*, !/usr/bin/passwd root

The user pete is allowed to change anyone's password except for root on the HPPA machines. Note that this
assumes passwd(1) does not take multiple usernames on the command line.
 
Old 05-14-2005, 06:21 AM   #3
hinetvenkat
Member
 
Registered: Nov 2004
Location: Mumbai
Posts: 80

Original Poster
Rep: Reputation: 15
Hi

I have the main admin users who have UID 0. the dummyadmin should not change the password of the users who have UID is 0. so tell me the sudoers definition.

Thanks
 
Old 05-14-2005, 11:47 AM   #4
makuyl
Senior Member
 
Registered: Dec 2004
Location: Helsinki
Distribution: Debian Sid
Posts: 1,107

Rep: Reputation: 54
Did you look at "man sudoers"?
You can set the admin names in an alias and keep the dummyadmins from changing their passwords.
Don't know how to use an UID here.


User_Alias MAINADMINS = will, wendy, wim
User_Alias DUMMYADMIN = millert, mikef, dowdy

Host_Alias HPPA = boa, nag, python

DUMMYADMIN HPPA = /usr/bin/passwd [A-z]*, !/usr/bin/passwd root, !/usr/bin/passwd MAINADMINS


This would let millert, mikef and dowdy change anybody's password except for root, will, wendy and wim

Last edited by makuyl; 05-14-2005 at 11:48 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
I deleted /etc/sudoers and creates a new file call sudoers but now it doesnt for visu abefroman Linux - Software 1 11-10-2005 05:03 PM
Regarding SUDOERS hinetvenkat Linux - Networking 1 09-02-2005 01:47 PM
sudoers problem kzar Linux - General 5 12-09-2004 04:59 PM
Sudoers Fonke0412 Linux - Newbie 3 08-10-2003 03:54 PM
help with /etc/sudoers keevitaja Linux - Newbie 5 08-17-2002 01:00 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:25 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration