11-16-2017
Well I can see that you have thought about what you want to achieve. Whilst we could organise to grant access to the specific powerful commands, the problem would then be that they could run them anytime, so i think you probably have it about right to only run the whole script as root. I presume you plan to expand it from a single choice later.
I notice that you don't have an audit trail in here to say who did what and when, just in case it goes wrong or needs to be shown. Whilst within the script if started as root through sudo, you can get the calling user as $SUDO_USER so you can write that in your message.
I hope that this helps, but I think have everything you need. Does it make sense or have I/we left you confused?
Robin
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
All,
I want to run a non-root script as the root user with non-root environment variables with crontab. The non-root user would have environment variables for database access such as Oracle or Sybase. The root user does not have the Oracle or Sybase enviroment variables. I thought you could do... (2 Replies)
Discussion started by: bubba112557
2 Replies
2. Shell Programming and Scripting
I'm writing an application (Progress language) that needs to:
1) load the contents of a cron table into the Progress application;
2) display this information in a human manner and allow a select group of people to update it (these people are logged in as themselves, not as root);
3) save... (3 Replies)
Discussion started by: rm-r
3 Replies
3. Shell Programming and Scripting
Dear All
I am running into a situation where I am running a script as another user lets say oracle using su command as below, and the script fails because the .profile of oracle is not executed so the environment variables are not set.
cat /etc/passwd | grep oracle... (4 Replies)
Discussion started by: dbsupp
4 Replies
4. Cybersecurity
Hi all,
I have a situation where I have a shell script that I need to run remotely on multiple *nix machines via SSH. Unfortunately, some of the commands in it require root access. I know that best practices for ssh entail configuring it so that the root account cannot log in, you need to... (4 Replies)
Discussion started by: irinotecan
4 Replies
5. Shell Programming and Scripting
1) Environment:Red Hat Linux, bash shell
Script to be run owned by user :myUser
Home environment of myUser: pathto/home
2) ESP agent with root access will run
JobXXX.sh
su - myUser -c "/pathto/home/bin/script.sh"
where script.sh has some echo statements and an exit statement in the end... (4 Replies)
Discussion started by: cj09
4 Replies
6. Shell Programming and Scripting
So I have a script that runs as a non-root user, lets say the username is 'xymon' .
This script needs to log on to a remote system as a non-root user also and call up a bash script that runs another bash script as root.
in short: user xymon on system A needs to run a file as root user and have... (2 Replies)
Discussion started by: damang111
2 Replies
7. Shell Programming and Scripting
Hi all,
I have to run C++ file using root programming, using following commands:
$root -l
root .L TwoTrees.C++
root TwoTrees t
root t.Loop()
root.q
I wonder if I can write script to do the following.
Thanks
Pooja (12 Replies)
Discussion started by: nrjrasaxena
12 Replies
8. Shell Programming and Scripting
I am using blow script :--
#!/bin/bash
FIND=$(ps -elf | grep "snmp_trap.sh" | grep -v grep) #check snmp_trap.sh is running or not
if
then
# echo "process found"
exit 0;
else
echo "process not found"
exec /home/Ketan_r /snmp_trap.sh 2>&1 & disown -h ... (1 Reply)
Discussion started by: ketanraut
1 Replies
9. Shell Programming and Scripting
Hi All, my script.sh has the below lines, and i need to run the script as root or wam. please tell me if this will work
#!/bin/bash
sudo -t wam /usr/local/wam/stopwam -r ------- this needs run as wam user
/usr/local/web/stopweb -a --- this needs to run as... (18 Replies)
Discussion started by: nanz143
18 Replies
10. Shell Programming and Scripting
Close duplicate thread. (0 Replies)
Discussion started by: denissi
0 Replies
LEARN ABOUT DEBIAN
wicd-wired-settings.conf
WICD-WIRED-SETTINGS.CONF(5) File Formats Manual WICD-WIRED-SETTINGS.CONF(5)
NAME
wicd-wired-settings.conf - controls Wicd's wired network settings
DESCRIPTION
This file contains configuration information for wired interfaces in Wicd.
This file is located at /etc/wicd/wired-settings.conf
SETTINGS
default = <0|1>
This option decides whether to use this profile as the default. 0 = do not use this profile as default.
1 = use this profile as default.
beforescript = <None|arbitrary_script>
This defines a script to run before Wicd brings up the connection. The script should be a Bourne-compatible script and should be
executable.
IMPORTANT - scripts should ONLY be writable by root and located in a directory that is only writable by root.
afterscript = <None|arbitrary_script>
This defines a script to run after Wicd brings up the connection. The script should be a Bourne-compatible script and should be
executable.
IMPORTANT - scripts should ONLY be writable by root and located in a directory that is only writable by root.
predisconnectscript = <None|arbitrary_script>
This defines a script to run before Wicd disconnects the interface. The script should be a Bourne-compatible script and should be
executable.
postdisconnectscript = <None|arbitrary_script>
This defines a script to run after Wicd disconnects the interface. The script should be a Bourne-compatible script and should be
executable.
IMPORTANT - scripts should ONLY be writable by root and located in a directory that is only writable by root.
ip = <None|ip_address>
Use this option if you have a static ip address for your system.
netmask = <None|networkmask>
This setting is only appropriate if a static ip address is configured above.
broadcast = <None|broadcast_address>
This setting is only appropriate if a static ip address is configured above.
gateway = <None|gateway_address>
This setting is only appropriate if a static ip address is configured above.
use_static_dns = <True|False>
True = use static DNS servers instead of accepting what the dhcp server supplies.
use_global_dns = <True|False>
True = use the global DNS servers provided in wicd-manager-settings.conf(5). This option is only appropriate if "use_static_dns =
True"
dns1 = <None|ip_address>
Static DNS address if "use_static_dns = True" and "use_global_dns = False"
dns2 = <None|ip_address>
Static DNS address if "use_static_dns = True" and "use_global_dns = False"
dns3 = <None|ip_address>
Static DNS address if "use_static_dns = True" and "use_global_dns = False"
SEE ALSO
wicd(8), wicd-curses(8), wicd-manager-settings.conf(5), wicd-wireless-settings.conf(5).
wicd-1.7.2.4 WICD-WIRED-SETTINGS.CONF(5)