, that seems like it would work well i think, then
i could use sudo to resrict to only rndc and let them have group write
access on the zones folder, i think that would be better then
sudoedit.
On 6/2/06, N.J. Thomas [EMAIL PROTECTED] wrote:
* Lawrence Horvath [EMAIL PROTECTED] [2006-06-01 22:13:39
, if you know the names of the files
that they need to edit, something like this is sufficient:
DNSOPS ALL = sudoedit /etc/named.conf
DNSOPS ALL = sudoedit /etc/rndc.conf
DNSOPS ALL = sudoedit /var/named/zone1
DNSOPS ALL = sudoedit /var
, N.J. Thomas [EMAIL PROTECTED] wrote:
* Kirk Strauser [EMAIL PROTECTED] [2006-05-30 16:30:45 -0500]:
luser ALL = (root) sudoedit /home/luser/foo/*
Why not give them root while you're at it:
luser$ cd ~/foo; ln -s /etc/master.passwd; sudoedit ~/foo/master.passwd
Yikes, he's right. Don't put
* Kirk Strauser [EMAIL PROTECTED] [2006-05-30 16:30:45 -0500]:
luser ALL = (root) sudoedit /home/luser/foo/*
Why not give them root while you're at it:
luser$ cd ~/foo; ln -s /etc/master.passwd; sudoedit ~/foo/master.passwd
Yikes, he's right. Don't put that in your sudoers file.
I found
I am trying to get sudoedit to only work on a certain folder.
So that you can only sudoedit files with in the /home/named folder.
Cmnd_Alias COPY = /usr/local/bin/sudoedit /home/named/, /bin/cp, /bin/mv
it would be something like that only that's not working.
$ uname -a
FreeBSD ns1
* Lawrence Horvath [EMAIL PROTECTED] [2006-05-30 13:46:33 -0700]:
I am trying to get sudoedit to only work on a certain folder. So that
you can only sudoedit files with in the /home/named folder.
The following works for me:
luser ALL = (root) sudoedit /home/luser/foo/*
(Sudo
On Tuesday 30 May 2006 16:22, N.J. Thomas wrote:
The following works for me:
luser ALL = (root) sudoedit /home/luser/foo/*
(Sudo 1.6.8p12, FreeBSD 5.4)
Why not give them root while you're at it:
luser$ cd ~/foo; ln -s /etc/master.passwd; sudoedit ~/foo/master.passwd
--
Kirk