Re: [OFF] Sudo
Márcio Luciano Donada wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi People, I wonder if it is possible using the sudo leave with only the user can edit the files that are in /etc/squid. Thank you - -- Márcio Luciano Donada mdonada at auroraalimentos dot com dot br Aurora Alimentos - Cooperativa Central Oeste Catarinense Departamento de T.I. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIPgDXbjyCr4Ixg0wRAuteAJ93+fLmJf9fuuBKTzqSib9Sot8wVgCgjDJM L/Q9uuBGhokb3KtikPVPHbE= =fAnL -END PGP SIGNATURE- Would not ACL also be a good candidate for this? -- Damon L. Chesser [EMAIL PROTECTED] http://www.linkedin.com/in/dchesser -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [OFF] Sudo
Márcio Luciano Donada wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi People, I wonder if it is possible using the sudo leave with only the user can edit the files that are in /etc/squid. A better option would be to chmod g+w the files in /etc/squid and then add the relevant users to that group. If you really want to do it using sudo, I think you should specify the complete command like '/usr/bin/vim /etc/squid/file' in the sudoers file. See the Cmnd_Alias section of sudoers(5) for more details. Thank you - -- Márcio Luciano Donada mdonada at auroraalimentos dot com dot br Aurora Alimentos - Cooperativa Central Oeste Catarinense Departamento de T.I. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIPgDXbjyCr4Ixg0wRAuteAJ93+fLmJf9fuuBKTzqSib9Sot8wVgCgjDJM L/Q9uuBGhokb3KtikPVPHbE= =fAnL -END PGP SIGNATURE- -- If you can't explain it simply, you don't understand it well enough. -- Albert Einstein -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [OFF] Sudo
Hi, Raj Kiran Grandhi [EMAIL PROTECTED] writes: Márcio Luciano Donada wrote: I wonder if it is possible using the sudo leave with only the user can edit the files that are in /etc/squid. A better option would be to chmod g+w the files in /etc/squid and then add the relevant users to that group. If you really want to do it using sudo, I think you should specify the complete command like '/usr/bin/vim /etc/squid/file' in the sudoers file. See the Cmnd_Alias section of sudoers(5) for more details. This is a bad idea since most text editors allow the execution of arbitrary commands. You should give sudoedit /etc/squid/file as the command. This allows users to edit the file with sudo -e /etc/squid/file with their favorite editor. A temporary copy is created for editing, the text editor started as the user, and the edited file is copied back. Regards, Ansgar -- PGP: 1024D/595FAD19 739E 2D09 0969 BEA9 9797 B055 DDB0 2FF7 595F AD19 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
