[NTLUG:Discuss] su?
Bug Hunter
bughuntr at one.ctelcom.net
Thu Jul 12 21:27:05 CDT 2001
you can give the www user a password that the target user knows. you
can then allow the target user to su to the www user.
You can also make su executable only by root. Then make a script file
that does "sudo su -l www" and set that script to be executable only by
root. give the target user the ability to execute that script file
under sudo, and with the target user putting in the target user's
password. (That way if the target user keeps a login in session open,
there is less chance of the sudo command being run by unauthorized
personnel.) Call that script file "wwwaccess". the target user then puts
in
sudo wwwaccess
password:*****
and is given the www account and its privileges.
bug
On Thu, 12 Jul 2001, Lance Simmons wrote:
> I need to allow an ordinary iuser to create files and change the
> ownership of the file to another account. The other account is
> www, which is used by a Front-Page enabled web server. (It's an
> AIX system we're talking about, but I know you folks will know
> what to do.)
>
> The easiest way to do this, obviously, would be to allow user A
> to su to the www account. But is this even possible?
>
> I guess my question is: how do I give a single, ordinary user,
> the ability to act as a special user such as www, without giving
> him root access?
>
> Any thoughts?
>
> Lance Simmons
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss
>
More information about the Discuss
mailing list