Re: SU privileges
From: Jan-Frode Myklebust (janfrode_at_PARALLAB.UIB.NO)
Date: 06/24/04
- Previous message: Holger.VanKoll_at_SWISSCOM.COM: "Re: SU privileges"
- In reply to: David Zarnoch: "SU privileges"
- Next in thread: Adams Kevin J: "Re: SU privileges"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Thu, 24 Jun 2004 14:10:15 +0200 To: aix-l@Princeton.EDU
On Thu, Jun 24, 2004 at 06:49:06AM -0500, David Zarnoch wrote:
>
> How would I set up a group to allow SU privileges?
To limit that only specific users are allowed to use the 'su' command?
Then adding these users to group=security and changing the permissions
on /usr/bin/su should do the trick:
% ls -ld /usr/bin/su
-r-sr-xr-x 1 root security 18980 Apr 30 2003 /usr/bin/su
% chmod 4550 /usr/bin/su
-r-sr-x--- 1 root security 18980 Apr 30 2003 /usr/bin/su
> Could I create a group "rootprvl" or would I need to use "sudo"?
If you want to give a group of users the possibility to run 'su -
$username' without needing to know the password of $username, then I
think 'sudo' is the best solution.
-jf
(awaiting a flood of vacation messages from misconfigured vacation
programs from the users on this list)
- Previous message: Holger.VanKoll_at_SWISSCOM.COM: "Re: SU privileges"
- In reply to: David Zarnoch: "SU privileges"
- Next in thread: Adams Kevin J: "Re: SU privileges"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
