Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: restrict sudo and chown in specified directory
Operating Systems Solaris restrict sudo and chown in specified directory Post 302595899 by crest.boy on Sunday 5th of February 2012 10:28:51 PM
Old 02-05-2012
Question restrict sudo and chown in specified directory
Hi Dears,

I have one requirement like this:
  1. general user A can execute command C with root privilege by sudo configuration
  2. some folders and files are created during the command C execution
  3. user A cannot access those folders and files because the owner is root user, so I want the user A can execute chown command but restrict the scope as the parent directory created by the command C.
How to make the bold statement the truth?

Thanks!
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Restrict my search to current directory.

Hi every1, There is a folder with .lst files which has email id's of our project group. I want to find files which has my email id starting with sachin but i dont want find command to search subdirectories. I have read about prune but i didnt understand that. I am pretty new in this field.... (7 Replies)
Discussion started by: sachin.gangadha
7 Replies

2. UNIX for Dummies Questions & Answers

chown -R under root directory

Hi I executed command "chown -R xxx:xxx /" with user root... and it was too late when I found the mistake. Ownership of some files under the root directory had already become xxx:xxx. Is there a way that can recovery the ownership of all my files back to the point where they were? I really thanks. (2 Replies)
Discussion started by: password636
2 Replies

3. Red Hat

Restrict user to a particular directory

Hi I have a Fedora10 server and i need a particular user to view files only in a particular folder. All other files in other folders having "read" permission for all shouldn't be accessible to this user. Please let me know if ther's a way. Thanks, HG (5 Replies)
Discussion started by: Hari_Ganesh
5 Replies

4. Shell Programming and Scripting

chown of a Directory

Hi All, I need your help in changing the owner of a directory. I have a created a direcotry TEST with user "abc"....for the group "ftp". Now i wnated to change the owner of the directory TEST. i used the below command to do so: chown abc:sftp TEST This is giving me an error... (5 Replies)
Discussion started by: ch33ry
5 Replies

5. OS X (Apple)

sudo chown -R `whoami` /usr/local

I was following a tutorial on installing Homebrew and I changed the ownership of /usr/local/ to me. Now McAfee Security won't start This is the exact line I typed: sudo chown -R `whoami` /usr/local Then I tried to fix it with: sudo chown -R root /usr/local I still can't start mcafee. It say... (7 Replies)
Discussion started by: chancho
7 Replies

6. Ubuntu

Restrict SUDO Access

Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux Hi Folks, Please help me. I am bit struck here. Here is the OS info. Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux I have a... (17 Replies)
Discussion started by: explorer007
17 Replies

7. Shell Programming and Scripting

excluding a directory with chown, chmod

does anyone know how to exclude a directory with chown or chmod? im trying to do something like this chown $username:$username $directory/* chown $username:$username $directory/.* chown $username:$username $directory and find $directory/* -type f -exec... (1 Reply)
Discussion started by: vanessafan99
1 Replies

8. Shell Programming and Scripting

Chmod working in sudo run script but chown isn't

My git user has permission in sudoers to run a wrapper script to move files into my webroot. Everything is working fine except for the chown line. After the script has run, the files ar still root:root instead of apache:apache. Scratching my head...:confused: #!/bin/sh echo echo "****... (4 Replies)
Discussion started by: dheian
4 Replies

9. AIX

How to restrict user to a particular directory?

hi, I want to restrict some user access to only 1 directory (including all sub-directories/files in it). can you please explain me, how can we do this? example; Filesystem GB blocks Used Free %Used Mounted on /dev/hd4 2.61 1.02 1.59 40% / /dev/hd2 ... (7 Replies)
Discussion started by: aaron8667
7 Replies

10. Red Hat

Restrict sudo -i

Hi, I wanted add a group to the sudoers file so they can run sudo commands and blocked su command but it seems they can just run sudo -i to switch to root which defeats my purpose. Is it possible to block sudo -i with the help of sudoers file or any other way. Please advise. The below... (1 Reply)
Discussion started by: Jartan
1 Replies

LEARN ABOUT FREEBSD

chown

CHOWN(8)						    BSD System Manager's Manual 						  CHOWN(8)

NAME

     chown -- change file owner and group

SYNOPSIS

     chown [-fhvx] [-R [-H | -L | -P]] owner[:group] file ...
     chown [-fhvx] [-R [-H | -L | -P]] :group file ...

DESCRIPTION

     The chown utility changes the user ID and/or the group ID of the specified files.	Symbolic links named by arguments are silently left
     unchanged unless -h is used.

     The options are as follows:

     -H      If the -R option is specified, symbolic links on the command line are followed.  (Symbolic links encountered in the tree traversal
	     are not followed.)

     -L      If the -R option is specified, all symbolic links are followed.

     -P      If the -R option is specified, no symbolic links are followed.  This is the default.

     -R      Change the user ID and/or the group ID of the specified directory trees (recursively, including their contents) and files.  Beware of
	     unintentionally matching the ``..'' hard link to the parent directory when using wildcards like ``.*''.

     -f      Do not report any failure to change file owner or group, nor modify the exit status to reflect such failures.

     -h      If the file is a symbolic link, change the user ID and/or the group ID of the link itself.

     -v      Cause chown to be verbose, showing files as the owner is modified.  If the -v flag is specified more than once, chown will print the
	     filename, followed by the old and new numeric user/group ID.

     -x      File system mount points are not traversed.

     The -H, -L and -P options are ignored unless the -R option is specified.  In addition, these options override each other and the command's
     actions are determined by the last one specified.

     The owner and group operands are both optional, however, one must be specified.  If the group operand is specified, it must be preceded by a
     colon (``:'') character.

     The owner may be either a numeric user ID or a user name.	If a user name is also a numeric user ID, the operand is used as a user name.  The
     group may be either a numeric group ID or a group name.  If a group name is also a numeric group ID, the operand is used as a group name.

     The ownership of a file may only be altered by a super-user for obvious security reasons.

EXIT STATUS

     The chown utility exits 0 on success, and >0 if an error occurs.

COMPATIBILITY

     Previous versions of the chown utility used the dot (``.'') character to distinguish the group name.  This has been changed to be a colon
     (``:'') character so that user and group names may contain the dot character.

     On previous versions of this system, symbolic links did not have owners.

     The -v and -x options are non-standard and their use in scripts is not recommended.

SEE ALSO

     chgrp(1), find(1), chown(2), fts(3), symlink(7)

STANDARDS

     The chown utility is expected to be IEEE Std 1003.2 (``POSIX.2'') compliant.

HISTORY

     A chown utility appeared in Version 1 AT&T UNIX.

BSD
								 February 21, 2010							       BSD
All times are GMT -4. The time now is 09:44 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy