Morning:
I try to grant sudo function to an account, newbie, to allow newbie to execute a script priv.sh. This priv.sh can be in different directories, such as /opt, /opt/sub1, /opt/sub1/sub2,... How do I define Cmnd_Alias to accomindate this?
I did:
Cmnd_Alias Priv_Sh /*/priv.sh
With such configuration, newbie can only sudo /opt/priv.sh, not others.
Thanks.
O/S: Solaris 8
sudo: V1.6.7
_______________________________________________
sunmanagers mailing list
sunmanagers@xxxxxxxxxxxxxxx http://www.sunmanagers.org/mailman/listinfo/sunmanagers
Re: history ... > You should really stay away from 3rd party applications if possible. ... Not only on Solaris; but yes, ... > and any bugs or exploits in sudo can go unnoticed because its not part of ...RBAC is appropriate for larger organizations with a central authority ... (comp.unix.admin)
Re: history ... > You should really stay away from 3rd party applications if possible. ... Not only on Solaris; but yes, ... > and any bugs or exploits in sudo can go unnoticed because its not part of ...RBAC is appropriate for larger organizations with a central authority ... (comp.unix.admin)
Re: (mis)using RBAC... ...sudo will not help you on Solaris 10 with the introduction ... updated to have knowledge of the Solaris 10 privilege model. ... with the ability to selectively allocate root... > user account I can start and restart our webservers.... (Focus-SUN)
sudo, solaris 10, ldap, tls:simple ... We have an LDAP environment using DS 5.2 and are migrating clients from ...solaris 8 to solaris 10. ...sudo on the solaris 10 boxes. ... I believe that some of the pam stuff changed with solaris 10. ... (SunManagers)
Re: history ... very easy to setup but Solaris has a much more powerfull utility called RBAC... one reason I recommened avoid 3rd party tools is because 1) sudo is setuid ... >> I work on Solaris and on theses hosts everybody is root.... (comp.unix.admin)
