On Sun, Apr 09, 2000 at 04:29:11PM -0700, Steven Ackerman wrote:
> Hey all,
>
> I've created a new user and would like that user to have administrative
> (in other words root) priviledges.
administrative != root
There are many administrative duties that can be done by non-root
users. Mailing list, CVS, and web admin all come to mind.
> I've used linuxconf and tried adding
> them to the wheels group, root group and adm group but still can't do
> things like start linuxconf or run ipchains commands. I've also tried
> granting them all access. I get an error that says I don't have
> permissions.
>
> Thanks in advance.
>
> Steve
>
I can't comment on linuxconf, and I can't really comment on 'do things
like' , but root is the only one who will be able to successfullly
run ipchains commands.
The easiest solution is to tell the owner of the new account the root
password and allow them to "su" to root.
If you want them to be able to run a few commands, you could do something
like this
add a group 'important' to /etc/group
add the user to the group 'important'
cp /usr/bin/ipchains /usr/bin/ipchains.special
chown root:important /usr/bin/ipchains.special
chmod 4750 /usr/bin/ipchains.special
The 4750 makes it so anyone who runs ipchains.special will become
root for the duration of the command. and since it's 750, only root
and members of the 'important' group are allowed to run it.
But seriously, just tell them the root password. It's the easiest and
most secure way to go.
greg
--
military intelligence. portable C.
-
To unsubscribe from this list: send the line "unsubscribe linux-newbie" in
the body of a message to [EMAIL PROTECTED]
Please read the FAQ at http://www.linux-learn.org/faqs
