01-30-2013
Deny to edit a specific file in sudoers
How do I deny a user to edit a specific file in directory but the user will have a capability to use sudo and execute any command? I will just deny him/her to edit sayy 5files in different directories in linux?
example. He cannot edit /etc/modprobe.d/blacklist.conf and /etc/sshd.config? Then the rest he can use sudo command.
thanks
10 More Discussions You Might Find Interesting
1. Linux
Hi,
I have edited 'sudoers' file to allow 'cads' user shutdown the system without providing a password.
Can someone tell me what's wrong with my file?
It's not working when I 'sudo SHUTDOWN' command:
sudo: SHUTDOWN: command not found
Thanks a lot!
# Host alias specification... (4 Replies)
Discussion started by: whatisthis
4 Replies
2. UNIX for Advanced & Expert Users
how to forbid deleting a file even though the file is owned by the user?
I thought of setfacl command on solaris. Any hints please?
thx (2 Replies)
Discussion started by: melanie_pfefer
2 Replies
3. UNIX for Dummies Questions & Answers
What is the difference between ALL and localhost in the bellow?
# %users ALL=/sbin/mount /cdrom,/sbin/umount /cdrom
# %users localhost=/sbin/shutdown -h now
Thank you. (2 Replies)
Discussion started by: hemangjani
2 Replies
4. AIX
Dear AIX/UNIX experts:
I have a demand to restricted a file to be copy by others, but this file must can be read by others/Applications.
As I tried, the chmod command cannot fulfill this requirement. But not sure if the ACL can achieve this function or not ?
Could anybody give me your... (8 Replies)
Discussion started by: devyfong
8 Replies
5. UNIX for Advanced & Expert Users
i have defined a rule in the sudoers file so a specific user is able to run some commands as sudo with no password.
my question is: is it possible to restrict a user to run commands as sudo only in a certain directory? for example: chown only the files that are located in /var/tmp.
Thank you.
... (2 Replies)
Discussion started by: noam128
2 Replies
6. Shell Programming and Scripting
HI guys i have a question.
Question 1: how do i modify a particular string?
e.g
echo "Please enter Book Title: "
read a
echo "Please enter Author: "
read b
if ]
then echo " Record found!"
which will then pop out a menu with the follow output
1. Update Name
2.... (1 Reply)
Discussion started by: ichar
1 Replies
7. Shell Programming and Scripting
How to edit file content at the specific line? For example at below
The things to edit --> This is line 2. And it is below line 1.
This is line 1.
This is line 2. # i want to append some words at this row line. How?
This is line 3. (8 Replies)
Discussion started by: alvin0618
8 Replies
8. HP-UX
Hi All,
I've made a script in order to delete the users. The script is deleting the users and removing its entry from the /etc/sudoers however it is changing the permissions of the /etc/sudoers file to the user from which it is executing the script.
#!/bin/ksh
#set -x
print "The script... (2 Replies)
Discussion started by: Kits
2 Replies
9. UNIX for Dummies Questions & Answers
Hi
using Solaris 10. trying to update /etc/sudoers file
I need to add all the fist level operation team. This is what I have but it doesn't seem to work. Please help.Error message
sudo su -
>>> sudoers file: parse error, line 9 <<<
>>> sudoers file: parse error, line 9 <<<
... (2 Replies)
Discussion started by: samnyc
2 Replies
10. Solaris
In the sudoers file in Solaris...
I am trying to limit the DEVELOPER user privileges to where those users can only use the “rm” command in certain directories. This is to prevent them from deleting directories or files and destroying a server. I want them to be able to use the "rm" command but... (1 Reply)
Discussion started by: nzonefx
1 Replies
LEARN ABOUT DEBIAN
config::model::openssh
Config::Model::OpenSsh(3pm) User Contributed Perl Documentation Config::Model::OpenSsh(3pm)
NAME
Config::Model::OpenSsh - OpenSsh config editor
SYNOPSIS
invoke editor
The following will launch a graphical editor (if Config::Model::TkUI is installed):
sudo cme edit sshd
command line
This command will add a "Host Foo" section in "~/.ssh/config":
cme modify ssh Host:Foo ForwardX11=yes
programmatic
This code snippet will remove the "Host Foo" section added above:
use Config::Model ;
use Log::Log4perl qw(:easy) ;
my $model = Config::Model -> new ( ) ;
my $inst = $model->instance (root_class_name => 'Ssh');
$inst -> config_root ->load("Host~Foo") ;
$inst->write_back() ;
DESCRIPTION
This module provides a configuration editors (and models) for the configuration files of OpenSsh. ("/etc/ssh/sshd_config",
/etc/ssh/ssh_config and "~/.ssh/config").
This module can also be used to modify safely the content of these configuration files from a Perl programs.
Once this module is installed, you can edit "/etc/ssh/sshd_config" with run (as root) :
# cme edit sshd
To edit /etc/ssh/ssh_config, run (as root):
# cme edit ssh
To edit ~/.ssh/config, run as a normal user:
# cme edit ssh
user interfaces
As mentioned in cme, several user interfaces are available with "edit" subcommand:
o A graphical interface is proposed by default if Config::Model::TkUI is installed.
o A Curses interface with option "cme edit ssh -ui curses" if Config::Model::CursesUI is installed.
o A Shell like interface with option "cme edit ssh -ui shell".
AUTHOR
Dominique Dumont, (ddumont at cpan dot org)
SEE ALSO
cme, Config::Model,
perl v5.14.2 2012-10-29 Config::Model::OpenSsh(3pm)