Su newbie question
Hi, A real dumb question today : Ive always been the only administrator of servers I installed so I never searched too much on the topic A new employee has joined the team and he will need to administer the servers (compile ports, etc) Usually, I do a su when I need to do these tasks, so I wonder if everybody needs to know that password or if he could have his own password to su ? Thanks ~~ Ian Lord MSD Informatique 1711 Montée Major Terrebonne (Québec) J7M 1E6 Tél: (514) 776-MSDI - (514) 776-6734 Sans Frais: 1(877) 776-MSDI - 1(877) 776-6734 http://www.msdi.ca ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Su newbie question
Ian Lord wrote: Hi, A real dumb question today : I’ve always been the only administrator of servers I installed so I never searched too much on the topic… A new employee has joined the team and he will need to administer the servers (compile ports, etc) Usually, I do a su when I need to do these tasks, so I wonder if everybody needs to know that password or if he could have his own password to su ? Thanks sudo's a better idea. -Garrett ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Su newbie question
On Mon, May 28, 2007 at 12:58:51PM -0400, Ian Lord wrote: Hi, A real dumb question today : Ive always been the only administrator of servers I installed so I never searched too much on the topic A new employee has joined the team and he will need to administer the servers (compile ports, etc) Usually, I do a su when I need to do these tasks, so I wonder if everybody needs to know that password or if he could have his own password to su ? It is possible for there to be more than one account that is root. Just make it have UID 0 and GID 0. Use vipw to do that. It is common to make an R id as root for a person. - Say the regular id is joe then you might make an Rjoe account with UID and GID of 0. But that may not be the best way. You really don't want to spread root accounts around a lot. One alternative might be setting up sudo to allow the specific things that this other person needs to do. jerry Thanks ~~ Ian Lord MSD Informatique 1711 Montée Major Terrebonne (Québec) J7M 1E6 Tél: (514) 776-MSDI - (514) 776-6734 Sans Frais: 1(877) 776-MSDI - 1(877) 776-6734 http://www.msdi.ca ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Su newbie question
But that may not be the best way. You really don't want to spread root accounts around a lot. One alternative might be setting up sudo to allow the specific things that this other person needs to do. sudo woul dbe the right way to do: you have fine choice on the various priviledges you give to the various people; each sudo command is logged so you can trace back in case of problem; you use your own password to sudo so you are not tempted to give it away to another user, even temporar. Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]