Jeremiah DeWitt Weiner wrote On 04/13/2006 10:57 AM:
Michael Trausch <michael.trausch@xxxxxxxxxxxxxxxx> wrote:
However, I'm wondering if there is a (portable) way to configure
something like a server, wherein 'sudo' isn't used, and yet I can
delegate certain tasks to users.
It sounds like what you want is Role Based Access Control (RBAC).
It doesn't exist for all Unix systems, though.
Very interesting. Thank you for this piece of information, I will do
some research on it and see where that leads me.
Re: "Transparent" privilege delegation? ...Michael Trausch wrote: ... something like a server, wherein 'sudo' isn't used, and yet I can ...delegate certain tasks to users. ... (comp.unix.admin)
Re: Sudo: local root compromise with krb5 enabled ... because the Kerberos server... latest sudo distribution like it will suffice: ... There is the argument that you should have keytabs on any host with resources you want to protect, and conversely, if there's no keytab, it doesn't matter if you grant root access. ... For some environments, that's actually reasonably accurate, but not all environments by any means. ... (Bugtraq)
Re: Windows 2003 Time Service ... I can't find anything to do with "Access Control" because the 2004 does not ... The ISA server does not want to sync with an external time source.... "The Windows 2000 and Windows Server 2003 Time Service Does Not Work Through ... (microsoft.public.windows.server.setup)
Re: Delegates, Client-side Events and Remoting ...server without requring server to know about the concrete class of client ...Asynchronous delegate are best in that scenario; ... For client to server communication, however -- it is just a forward method ... To abstract in a "layer of delegation between the proxy class instance on ... (microsoft.public.dotnet.framework.remoting)
delegation through ASP and WSH ... Once the local program has communicated with its server,... but instead with short NTLM style authentication strings.... authenticated using kerberos and the machines are all allowed to delegate,...dim searchQuery... (microsoft.public.scripting.wsh)
