How about something like this (you will have to allow this script to run as root via sudo config so it can sudo su to another userid:
Code:
HPADMINUSERS=","$(grep "^hpadmin:" /etc/group | cut -d: -f4)","
if [ -n "$1" ] && [ $# -eq 1 ]
then
echo "$HPADMINUSERS" | grep -q ",$1,"
if [ $? -eq 0 ]
then
exec sudo su "$1"
else
echo "cannot su: $1 is not in group hpadmin"
fi
else
echo "usage: $0 userid" >&2
exit 1
fi
I just need to know what should be done on a login user so that no one can access it except through sudo
i.e.
telnet server
login: user
NO ACCESS
telnet server
login: mylogin
sudo - user <any command>
ACCESS GRANTED
thanks (0 Replies)
Hi All,
I got lots of request with sudo, a manager request, verbal command, do this and do that.
The problem with this kind of request is when I added that script and that. It will not be perfect, it's because I can't verify the userid sudo access, I can't reset their password as well, I... (2 Replies)
I have installed sudo on AIX 6100-04 and want to know how do I set it up for a user to be able to run only some commands? I want to give the user the rights to only cd to certain directories and run the ls command to name a few? Are there any issues with running sudo when the user is forced to... (2 Replies)
I'm actually working with a Ubuntu-System here and have a question about executing a command with 'sudo'.
I tried and got a error message like "not allowed".
After this I logged in with 'sudo -s' and typed the command without 'sudo'. This worked well.
Can please somebody explain me this... (0 Replies)
Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux
Hi Folks,
Please help me. I am bit struck here.
Here is the OS info.
Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux
I have a... (17 Replies)
I want to give root access to a user called denielr on server - tsprd01, but do not want to share root password. I have sudoers configured already.
He should have all access equal to root. I made this entry in /etc/sudoers, but it is not working
denielr tsprd01 =(root) NOPASSWD: ALL
I tried to... (2 Replies)
Install the sudo pkg SFWsudo.tar
bash#tar -xvf SFWsudo.tar
bash#pkgadd -d . SFWsudo
path may be /opt/sfw/bin
Make entry the user name in sudoer file
path of the sudoer file
/opt/sfw/etc/sudoers
check with the below command as a user (not as a root user)
user1$... (1 Reply)
Hi,
I have given access to user mwadmin in shudders file as :
mwadmin ALL:NOPASSWD:/www/* /usr/* /opt/*
However, not able to execute below command:
sudo mkdir -p /usr/test
password for mwadmin:
Sorry, user mwadmin is not allowed to execute '/bin/mkdir -p /usr/test' as root.
... (4 Replies)
I had a question on users inheriting SUDO capabilities of another account. Let's say that there are three users A, B, and C. A has access to Sudo into B. B has access to Sudo into C. Does this give A access to sudo into B and then sudo into C.
A -> B
B -> C
A -> B -> C ?
Another example. My... (2 Replies)
I have similar issue as mentioned in
167174-how-run-script-using-batch-file.html
It works good, but the control is not coming back to source i tried adding exit to remote script.
Thanks,
Suresh (0 Replies)
Discussion started by: snsuresh
0 Replies
LEARN ABOUT DEBIAN
viewsudo
VIEW-OS(1) General Commands Manual VIEW-OS(1)NAME
viewsudo - execute a command as another (virtual) user
SYNOPSIS
viewsudo [-g groupname|#gid] [-u username|#uid] command
DESCRIPTION
viewsudo allows a user to execute a command as the superuser or
another user in View-OS.
OPTIONS
viewsudo accepts the following command line options:
-g group
Normally, viewsudo sets the primary group to root. The -g option causes sudo to run the specified command with the primary group set
to group. To specify a gid instead of a group name, use #gid. When running commands as a gid, many shells require that the '#' be
escaped with a backslash ('[u2019]). If no -u option is specified, the command will be run as the invoking user (not root). In
either case, the primary group will be set to group.
-u user
The -u option causes viewsudo to run the specified command as a user other than root. To specify a uid instead of a user name, use
#uid. When running commands as a uid, many shells require that the '#' be escaped with a backslash ('[u2019]).
RETURN VALUES
Upon successful execution of a program, the exit status from viewsudo will simply be the exit status of the program that was executed.
SEE ALSO viewsu(1), sudo(1), linux.defs(5)AUTHORS
View-OS is a project of the Computer Science Department, University of Bologna. Project Leader: Renzo Davoli.
<http://www.sourceforge.net/projects/view-os>
Howto's and further information can be found on the project wiki <wiki.virtualsquare.org>.
NOTE
Most part of the text is taken from sudo(1).
VIEW-OS: a process with a view August 8, 2009 VIEW-OS(1)