[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: exploring debian's users and groups

On Mon, Aug 06, 2001 at 11:11:18PM -0700, Daniel Jacobowitz wrote:
> > sudo:
> > 
> > 	HELP: Nothing uses it here, and I have sudo installed.. Maybe
> > 	      there's a way to only let users in this group use sudo?
> There is, sure, but the group isn't special in any way...

users in group sudo don't have to type their password when running sudo.

useful for, e.g., writing sudo wrapper scripts that are forked by an MTA
such as postfix that refuses to run anything as root.

also useful for sudo wrappers to adduser or chg passwd type programs
that are executed from a CGI script (after appropriate taint checking

TMTOWTDI - the sudo group isn't strictly needed for this, you can also
use the NOPASSWD keyword in /etc/sudoers.


craig sanders <cas@taz.net.au>

Fabricati Diem, PVNC.
 -- motto of the Ankh-Morpork City Watch

Reply to: