Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: sudo question
Special Forums Cybersecurity sudo question Post 302198958 by melias on Sunday 25th of May 2008 09:17:42 AM
Old 05-25-2008
Thank you Era, I suspected the prohibit unless permitted policy was going to be my only option. I was hoping that someone had worked some magic so that I didn't need to go down that path since, in my environment, the number of permitted commands far outweighs the number of restricted commands. As they say, the easy way is seldom the right way.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

sudo question

how do i go about adding a file to sudo so a user name oracle can run the file??? for some reason my man pages dont have anything for sudo. files sudoers exist in /etc can anyone help this is urgent thank you (1 Reply)
Discussion started by: TRUEST
1 Replies

2. UNIX for Advanced & Expert Users

SUDO question - please help

Hi, I was wondering if someone can give me some pointers about configuring SUDO. I am trying to configure SUDO to have about 30 users run about 200 scripts as a different user. I understand that I can create an User_Alias but how do I give that User_Alias rights to run all the scripts in a certain... (5 Replies)
Discussion started by: sajjad02
5 Replies

3. UNIX for Dummies Questions & Answers

Sudo question

Folks; I have a sudo question: - I have a real user named "greg" and another generic user named "devuser" & application that must be run like start/stop as "devuser" user. Is there a way to: Have user Greg login into the Solaris 10 box as himself then sudo as "devuser" to be able to... (10 Replies)
Discussion started by: Katkota
10 Replies

4. Linux

Sudo question

Hello, I would like to know what should I put on the sudoers file to block a determined group os using just one specific command as root? He can do anything, but not execute program X, how can I do this? Thank you very much. (2 Replies)
Discussion started by: Zarnick
2 Replies

5. Ubuntu

sudo question.

Hello all, Anyone fimilar with su -l command? So when I do su -l <user> any user it doesn't prompt me for password for that user. How I enable sudo to prompt for password whenever su -l command is used. Please help! thanks, -Lalit :D (7 Replies)
Discussion started by: email-lalit
7 Replies

6. UNIX for Dummies Questions & Answers

Sudo question

Folks; I have SUDO configured on my SUSE boxes to allow a specific groups to run specific duties so one group has ALL permission & other group has permission to run a few commands only. when i look at the sudoer log, i see people login info only, Is there a way to capture every thing users do... (3 Replies)
Discussion started by: Katkota
3 Replies

7. UNIX for Dummies Questions & Answers

Question about sudo

Hello all, I have a script (script.sh) that is owned and executed by root. Now I need to give another user (user1) sudo access to execute that script. I edited the /etc/sudoers file, and created the following: # Runas alias specification Runas_Alias RO = root user1 ALL=(RO)... (1 Reply)
Discussion started by: designbc
1 Replies

8. UNIX for Advanced & Expert Users

Sudo question

Hi All I want to grant elevated privs to a user that will be running a script as a background task. It will be launched from an ssh session via an embedded command in its key that just allows that account to run that script. I'm reading up on sudo and notice that - user ALL=(ALL) ALL ... (2 Replies)
Discussion started by: steadyonabix
2 Replies

9. AIX

Sudo question

I am running AIX 6.6.5.115 and am experiencing a problem using sudo. I have shell scripts that I created for our HR user and shell scripts that I created for root administrators. I do have a need to embed a sudo command in the user shell script to run one command as root. However the two... (8 Replies)
Discussion started by: RonDeF
8 Replies

LEARN ABOUT DEBIAN

chrootuid

CHROOTUID(1)						      General Commands Manual						      CHROOTUID(1)

NAME

       chrootuid - run command in restricted environment

SYNOPSIS

       chrootuid [-i] newroot newuser command...

DESCRIPTION

       The  chrootuid  command sets up a restricted environment for executing command. Access to the file system is restricted to the newroot sub-
       tree; privileges are restricted to those of the newuser account (which must be a known account in the unrestricted environment).  The  ini-
       tial working directory is changed to newroot.

       chrootuid  combines  chroot(8)  and su(1) into one program, so that there is no need to have commands such as /usr/bin/su in the restricted
       environment.

       Only the superuser can use the chrootuid command.

OPTIONS

       There is only one option for chrootuid: -i. That option makes it run in interactive mode. Errors will  be  printed  on  stderr  instead	of
       through syslog and the exit status will be 1 if there are any errors.

RETURN CODES

       The exit status of chrootuid when running on daemon mode (default) is always 0.

       If  it  is  running  on interactive mode, it will exit with an exit status of 1 if there is any error in its invocation, otherwise the exit
       status is the exit status of command.

DIAGNOSTICS

       Problems are reported to the syslog daemon if running on daemon mode.  If running on interactive mode, errors are reported on stderr.

SEE ALSO

       chroot(8), su(1)

AUTHOR(S)
       Wietse Venema
       Eindhoven University of Technology
       Department of Mathematics and Computer Science
       Den Dolech 2, P.O. Box 513, 5600 MB Eindhoven, The Netherlands

       IBM T.J. Watson Research
       P.O. Box 704
       Yorktown Heights, NY 10598, USA

CREATION DATE

       Tue Oct 13 11:37:29 MET 1992

LAST MODIFICATION

       Mon May 20 22:49:02 CEST 2007

VERSION
/RELEASE
       1.3

																      CHROOTUID(1)
All times are GMT -4. The time now is 11:17 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy