Re: Using non-root Equivalent ID to Perform User Administration, can this be done?

From: Keith Keller <kkeller-usenet@xxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 12 Dec 2006 22:00:11 -0800

On 2006-12-13, Jenny <yennee_yap@xxxxxxxxx> wrote:

Just wondering if we can use an non-root equivalent ID to perform these
task? I am asking this because in AIX, we can just add our security
admin ID into "security" group and we can use our own user ID (non-root
equivalent) to perform the user administration work. Does Red Hat Linux
got such a feature? If can use an non-root equivalent ID to do all
these, what are the setup needed?

Configure sudo. Read

man visudo
man sudoers
man sudo

--keith

--
kkeller-usenet@xxxxxxxxxxxxxxxxxxxxxxxxxx
(try just my userid to email me)
AOLSFAQ=http://www.therockgarden.ca/aolsfaq.txt
see X- headers for PGP signature information

.

References:
- Using non-root Equivalent ID to Perform User Administration, can this be done?
  - From: Jenny

Prev by Date: Using non-root Equivalent ID to Perform User Administration, can this be done?
Next by Date: Re: better network setup security wise
Previous by thread: Using non-root Equivalent ID to Perform User Administration, can this be done?
Index(es):
- Date
- Thread

Relevant Pages

Re: Root privilege (SOLVED)
... Why should install programs run with the "extreme" privileges I ... Upgrading those binaries is a potential security ... sudo does not seem to go in the right direction. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
(Debian-User)
Re: ssh and root network access
... You could however use 'sudo' ... $ echo bar | ssh machine sudo /tmp/foo ... The problem's been solved for now using Rob Warnock's advice - security isn't exactly a major problem since it's a temporary setup for my home network and all firewalled off the internet. ...
(comp.unix.bsd.freebsd.misc)
Re: FC4 "sudo su -" breaks roots access to X server
... > be a bug - but really, it is a BAD idea to allow sudo to do anything ... > that can result in a root shell. ... almost placed a disclaimer about knowing the security risks. ...
(Fedora)
Re: Training Lab Question
... I would say always make them 'sudo', as its just a good overall practice. ... Also, check out Trinux, a RAM based version that is security specific, has many ... I'm in the process of setting up a Pen Testing training lab. ... The student workstations running Slackware 8.x. ...
(Pen-Test)
Re: Sarge sec update: sudo_1.6.8p7-1.3_i386.deb probs
... >> Lists that can be used in a boolean context: ... The default list of environment variables ... >> to check is printed when sudo is run by root with the -V option. ... Then again, from the security ...
(Debian-User)