-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hello,
Am Do den 4. Nov 2010 um 11:11 schrieb hywl51: > Yes, you said it. Unfortunately, we have some users running as root > privilege on server, because they cann't work without it. For me that sounds that you should never give such users root rights. If you give it to them they will have all rights. Surely there are ways to prevent alternation of files (like /etc/passwd or /etc/shadow) but if you or someone has root rights he or she can easily change this back. > But we don't want them to add new users on their own, so we hope find > a way that will delete all illegal users on the system every 30 > minute. And what if such a user disable puppet at all? This sounds like a human problem. You can not solve them technical. Regards Klaus - -- Klaus Ethgen http://www.ethgen.de/ pub 2048R/D1A4EDE5 2000-02-26 Klaus Ethgen <[email protected]> Fingerprint: D7 67 71 C4 99 A6 D4 FE EA 40 30 57 3C 88 26 2B -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEVAwUBTNO5fZ+OKpjRpO3lAQo3LAf/WHFZ5Ka5VnF28BHssYcbhXCzDdQ17S3k TI6N1aMrxsjlnv+QfZg9AKCvgFxOAYwMVJc/55fxbS77bbiRUcixpD98kolrV2nw 0c2f12qjmRoBkUNL2O5BziiTinR74QJSXarxfgthlArS9MbYCW7kJliB7wt/3PlY LUgNldqsAMLqRwuyvkswEkglTRgDcPSoClC5Fs+QgfBYy2rRG5MHGFUtPFhNcgi2 okVM0sdsBv3fmX4FfIuL1GRqrifXqRx99cqjV6eZJTpfgj5GXLE5TvSku4LdseGI SXpVc9KMhNXnjhiP/gZ+E/6rDh+Jg8X6/KN/CvxgtOxaoJF8GVVJJw== =ik4m -----END PGP SIGNATURE----- -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
