On Mon, 19 Mar 2012, Tim wrote: > I recommend you move your homenet.sh script out of the user's home > directory. After all, that would probably allow them to modify the > contents of the script, which defeats the whole purpose of restricted root > privileges. It is also possible that sudo has a problem with this and is > trying to prevent you from configuring something dangerously. Try putting > the script in /usr/local/sbin instead.
Tim, I've no concerns about the user modifying the script; she has insufficient reason and knowledge to do so. What I would prefer is to put the cp command in her ~/.bash_logout file. > As for debugging your sudo config, have you looked at your system logs to > see if sudo is complaining about anything? Are you using visudo to edit > the file? I think it's best to use that instead of editing it directly. From everything I've read (since I don't use sudo on the machines on which I work), the only reason for the file saying to use visudo is to protect us from ourselves. One can put 'Default editor=/usr/bin/<editor_name>' as the first line in /etc/sudoers and happily use whatever editor you wish. I initially needed to edit /etc/sudoers with a line found on a Web forum to allow her to be able to shut down the machine (or reboot) when logging out of Xfce4. I used joe for that edit; sudo is happy. Thanks, Rich _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
