I am new to linux and would like to allow a user to use SUDO to change password and also delete/add members to a group without signing in as root or using SUDO. I think you do this in visudo but I dont know the commands to do this.
View 4 RepliesHere is my scenario, I want to create about 3 groups of users:
--Admins-create and manage users
--Support1-Restart basic stack apps(httpd, mysql etc)
--Support2 Backups
So in my sudoers file i have managed to set them all up to perform the tasks above. However, I want to limit the users in the specific groups from running commands from other groups. eg a user in admins shouldnt be able to restart the stack applications etc. I have tried using the ! to create an exception eg !/etc/init.d/httpd start for the users but its not working.
Im trying to config my intranet to be accessible from inside the network (lan) without need of password and ask for a passwd for those who are viewing from Wan ....
Today my intranet can only be accessed from Lan, external access give me an Unauthorized message, I took look around, try #irc and still can get the appropriated help, I hope that someone here could help me on that...
A piece of my config:
Code:
I want to restrict some of my Operating System users running unwanted commands. I just want them to run specified commands only. How can i achieve this?
View 9 Replies View Relatedi am working with linux security auditing project on my Servers.I want to find out all the commands executed by individual users.i think using last command,find out the login details.But how can find out the commands executed by each users on all logins except "history".?
View 2 Replies View RelatedI got myself curious on the possibility to change user's permission to any command, or at least giving other users some command line "power".
It all started a few days ago, when another user here, had a problem so that the computer wasn't answering.
So, after waiting a while, chose to hit the Reset button and start the computer again.
Considering this situation, I thought myself that it would have been better to restart the computer, through command line, on any terminal (F1-F6). Anyway, this user is no administrator, thus wouldn't have permission to use the code...
So, is it possible to let other users to use such commands, in order to safe rebooting the system, without logging as root?
Which commands do you use to output the current users logged into the system and accessing a specific file?
View 5 Replies View RelatedIm trying to setup SYSCP, only to use to make my life easy, and not commercial.When adding a ftp account, the folder it not created, allso there is no files created in the site-enabeld folder when adding domains.Im guessing is it something whit access from the php, but what should i change?
View 2 Replies View RelatedI have this project and it needs me to write a programe that will interface with a hardware device thruogh the parallelport.I did that, but I feel i might be using the wrong commands because when runing it i get a segmentation fault or a 'changing ownership of file ; operation not permitted.
View 2 Replies View RelatedIn order to allow me to shutdown my PC from within fluxbox without being root I ran "visudo" and added the following line:
Code:
psionl0 ALL=(ALL) NOPASSWD: ALL
A check that the line had been accepted showed all ok:
Code:
bash-4.1$ sudo -l
User psionl0 may run the following commands on this host:
(ALL) NOPASSWD: ALL
Yet when I tested it out, I got nowhere:
Code:
bash-4.1$ sudo pkgtool
sudo: pkgtool: command not found
bash-4.1$ sudo shutdown -h now
sudo: shutdown: command not found
bash-4.1$
Have I done something wrong or isn't sudo meant to be used this way?
I need to use visudo in order to make a shell script properly work, certain parts of it require that I can use sudo without being prompted to enter my password and I need to use visudo to properly edit sudoers. I cannot stand vi, I don't know how to use it very well, the documentation/manual is confusing and to be honest i would rather use nano, I personally hate vi or vim and would never in a million years want to use it. Is it possible in fedora 12 to change visudo to sue nano instead? I don't care if I have to recompile visudo to make this a possibility because it beats using vi any day of the week. (In fact I don't get why it is the default, it is very awkward!)
View 3 Replies View RelatedI'm running a server using CentOS 5 x64 I want to disable access of groups to "bin" folder so they cannot execute commands. [info: actually because of a bug in cPanel (the control panel I installed) Perl will give access to all hosting users to execute commands.] so what i wanna do is to ban some groups on 'bin' folder, for example 'my_group1' and 'my_group2" cannot access bin but 'my_trusted_group' can access it.
View 1 Replies View RelatedI have installed Oracle Enterprise Linux Server 5 as host OS and Windows XPP(Guest OS) as virtual Machine by VMWare Player on standalone Desktop PC.Now I want to run all commands of Linux from Windows XPP.How should I proceed?
View 2 Replies View RelatedHow to allow access to some commands having root privleges to be run by non root user. I am new to unix/linux and I have a major assignment. I have to find ways to run particular commands which can be run only by root from a non root user. I know sudo is one of the way but i need some different approach.
View 8 Replies View RelatedI'm running a server using ubuntu 10.04 x64. I want to disable access of groups to "bin" folder so they cannot execute commands.
[info: actually because of a bug in cPanel (the control panel I installed) Perl will give access to all hosting users to execute commands.]
So what I wanna do is to ban some groups on 'bin' folder, for example 'my_group1' and 'my_group2" cannot access bin but 'my_trusted_group' can access it. How is it possible?
I was trying to make shutdown without root user using visudoI tried the following still it did not work for mehawk ALL=NOPASSWD:/sbin/shutdown -h now
View 6 Replies View Relatedwhat is the best way to share visudo file without the need to use ldap.
View 3 Replies View RelatedI Love Jdownloader program but can't solve this old problem.
I'm still a little retard with GNU/Linux
Able to do a reconnect by running the following commands
Quote:
This is the script I'm using.
Quote:
It resembles this one in Window$
The program dhcpcd requires root user privileges.
Avahi daemon and network-manager widget should be disabled or uninstalled for this to work on Ubuntu.
Also I'm using Karmic.
I'm not Cisco certified. What I think it does, in a non technical comparison, is tell the ISP hardware that your ip should be 190.189.48.52 or whatever number you like.
For the ISP this would be the last lease you used.
The ISP hardware does not recognize this last lease in its list, so it assigns a new ip.
That does the trick and you get your new ip!
My ISP promotes the service with dynamic ip so no legal matters here.
The problem is how to automatize it.
Sudo runs the script with no privileges problems.
I am able to run it password-less by modifying sudoers file via visudo command.
I add the following line
Quote:
It can also be like (this would need extra security measures?)
Quote:
Then you can run sudo /usr/bin/cambiar-ip and it won't prompt you for a password.
Password issues solved, I cannot get Jdownloader to run it.
In the Settings > Reconnection tab
Tried to use "External" and "Batch" but i get reconnection failed sad face.
I've tried in "External" /usr/bin/sudo /usr/bin/cambiar-ip
It won't work.
I'm missing something of the Unix security structure.
Here is the wiki of the program
[url]
since a recent upgrade to Mandriva 2010.1 I am not able to 'sudo' as administrator or when I use the 'root' password. I am the only user on this machine (Dell Inspiron 530S multi-booted with Window's Vista Home Premium, Ubuntu 10.4, and Mandriva 2010.1). I can get into the 'Manage Users' section of the control center by authenticating as 'root' but I can't access 'sudoers file' from command line.
View 4 Replies View RelatedHow can i get full command as and when a partially finish typing in Linux Command prompt. or is there a way i can get the command from history of commands executed automatically when i type instead of opening history and looking for the command?
View 7 Replies View RelatedI've tried instralling the c and c++ compilers on my fedora 13 machine and none of them seem to work. For example. i have this extremely simple c program that i try to compile and nothing works.
Code:
#include "stdio.h"
printf("Hello World");
[Code]....
I've written a for loop with a counter i and I want to use the value of i within sed to edit certain lines of text within a fortran file.I want the the x=10 will be replaced by x =1(counter from the loop).. and so on.But from the following code my x = 10 is replacing by x = i.So
I am getting error.
With the command "tail -300 /var/log/apache2/access.log | less" i can look in the log for the 300 latest visitors from my logfile. and i wanted to ask if it's possiblle to get that command to run from a php file and if yes how ?? how i run system commands in php? i use debian if it matters.
View 1 Replies View RelatedI have just installed Debian 8 with Gnome desktop and trying to add my username to sudoers list.
When I open terminal and enter visudo I get the following error message...
Code: Select allfracmo2000@debian:~$ su
Password:
root@debian:/home/fracmo2000# visudo
bash: visudo: command not found
root@debian:/home/fracmo2000#
Although I am quite new to debian, I have done this successfully in the past so not sure why this is happening?
I need to add a user to the sudoers in my vps host and edit a couple of files and I just cannot make sense of visudo, vi or nano. The tutorials I find on the net just take too long to study and they are never complete, can someone explain what I need to do? I am running Debian 506.
View 8 Replies View RelatedDebian 5.02 on an AMD 64. I removed iceweasel and installed Firefox. On my account, I can access the net ok from FF, but when I login as another user, I cannot get out.
During the iceweasel removal, I suddenly got dumped out. Trying to recover I ended up restarting the box. I then again went to the root and 'aptitude remove iceweasel' and it came back ok. Then I installed FF per [url]. This worked fine on my 32 bit laptop btw. I even added a guest acct and FF worked, but not so on my 64 bit box. Any ideas on where to go?
And the reason for FF was that some media was not playing with iceweasel as it was perhaps too old? I didn't think 3.06 was that old myself, but when I installed FF, the sites that weren't playing fired right up.
I want to restrict access to certain directories to my ssh users but allow them to read files by known path from there(mostly it's meant to be done by applications).
View 2 Replies View RelatedI am creating a new user for my son, but I don't want him to have access to M15+ games that are installed (eg Freedoom). Is there a way to deny a user's access to individual programs (or groups of programs). Also for the moment, I would really want him to only have access to a folder with his name on it and not to all of my drives and files on them. Is this possible? I couldn't find it anywhere...
View 9 Replies View RelatedI'm having all kind of problems with my ubuntu 10.04 which I updated to from the 9.10. I'm doing a clean install so I'd like to have this very clear. Right now I have three users:
1-the administrator
2-the one I use for music production
3-a general one.
The only one in which I can access synaptic is user 1. My question is: is there a way I can access to synaptic from the other users? I thought that you picked an admin password and if you were on a non admin account, by typing it you could use synaptic.
I'm a windows convert and need to know what the command for finding out all the users on a system would be. Did a ps -ef for the processes, now I Need to find out what the users are for IA.
View 3 Replies View Related