Re: Add/Remove Users
From: Roelof Osinga (roelof@nisser.com)
Date: 04/18/01
- Next message: Kris Kennaway: "Re: Latency of security notifications"
- Previous message: Roelof Osinga: "Re: URGENT: Serious bug in IPFilter (fwd)"
- In reply to: Eric Anderson: "Re: Add/Remove Users"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 18 Apr 2001 03:14:13 +0200 From: Roelof Osinga <roelof@nisser.com> To: anderson@centtech.com
Eric Anderson wrote:
>
> You should check out the man page for sudo, since you can set the
> NOPASSWD option to not ask for passwords..
To smooth things over a demo:
#nobody ALL=(root) NOPASSWD: /usr/local/sbin/userdb, /bin/sh, \
# /usr/local/sbin/userdbpw, /usr/local/sbin/makeuserdb
# WEBAPP may run VMAIL without password on NISSER hosts
WEBAPP NISSER = NOPASSWD:VMAIL
The former is explicit whereas the latter depends on having the
various aliasses defined. Suffice to say that the VMAIL alias
does not include /bin/sh, that was for testing purposes only.
Roelof
PS these were some intermediairy steps for a webapp that could
change a virt.users virt.password, nobody being the user apache
runs as.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Kris Kennaway: "Re: Latency of security notifications"
- Previous message: Roelof Osinga: "Re: URGENT: Serious bug in IPFilter (fwd)"
- In reply to: Eric Anderson: "Re: Add/Remove Users"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
