Oggetto: Re: [OpenIndiana-discuss] User roles and acting as root
On Jun 14, 2011, at 1:35 PM, Gabriele Bulfon wrote:
Up until OpenSolaris, my first and only command was some enters on a #.
Just root, and just commands, for a life.
Now I had times with opensolaris wanting me to pfexec everything
When I need a root terminal, I tend to simply:
$sudo sh
In a Solaris only environment I advise RBAC , but in a mixed Unix/Linux
world, sudo makes more sense.
With RBAC and root being a Role, we should su - to assume the root
role.
Mike
On Tue, 2011-06-14 at 14:24 -0700, Gregory Youngblood
I'm confused. I use 'sudo -i' exclusively, and whenever I get in, I have
valid command history.
-Original Message-
From: David Brodbeck [mailto:bro...@uw.edu]
Sent: Wednesday, June 15, 2011 3:49 PM
To: Discussion list for OpenIndiana
Subject: Re: [OpenIndiana-discuss] User roles
Hi, I was trying to figure out how to let the default install user (sonicle, in
my case) be able
to run commands as root completely, with no pfexec nor sudo.
The user has a root role, in the user_attr file.
If not possible, how can I enable root login normally?
I tried commenting out the root
give your user the Primary Administrator profile and then assign him a
profile shell like pfksh.
need i say this is insecure?
nacho
On Tue, Jun 14, 2011 at 12:49 PM, Gabriele Bulfon gbul...@sonicle.com wrote:
Hi, I was trying to figure out how to let the default install user (sonicle,
in my
Data: 14 giugno 2011 17.52.39 CEST
Oggetto: Re: [OpenIndiana-discuss] User roles and acting as root
give your user the Primary Administrator profile and then assign him a
profile shell like pfksh.
need i say this is insecure?
nacho
On Tue, Jun 14, 2011 at 12:49 PM, Gabriele Bulfon
wrote:
Hi, I
--
Da: Ignacio Marambio Catán
A: Discussion list for OpenIndiana
Data: 14 giugno 2011 17.52.39 CEST
Oggetto: Re: [OpenIndiana-discuss] User roles and acting as root
give your user the Primary Administrator profile
On 6/14/11 1:10 PM, Ignacio Marambio Catán wrote:
Sudo asks for a password even if it is the user's password
Well, it *can*, but that's not universally true. You can have it prompt
for a password or not.
___
OpenIndiana-discuss mailing list
On Tue, 2011-06-14 at 11:23 -0700, Alan Coopersmith wrote:
On 06/14/11 10:05 AM, Gabriele Bulfon wrote:
Thanx for your reply,
I understand the security issue.
But, is it so much more secure when you can just sudo commands?
Where is the difference?
With sudo, you choose to only run
Ken Gunderson wrote:
Which is useful in environments where you have jr. sysadmins, backup
operators, etc., i.e. different roles, not all of which you want/trust
to have full root access, so tasks can be limited to only those
necessary to fulfill that role.
On a boxes where I, or one or two
Oggetto: Re: [OpenIndiana-discuss] User roles and acting as root
Ken Gunderson wrote:
Which is useful in environments where you have jr. sysadmins, backup
operators, etc., i.e. different roles, not all of which you want/trust
to have full root access, so tasks can be limited to only those
necessary
11 matches
Mail list logo
