Re: VI wrapper for SUDO? - another bad way ??

To: William R Ward <bill@wards.net>
Cc: debian-security@lists.debian.org
Subject: Re: VI wrapper for SUDO? - another bad way ??
From: Alvin Oga <aoga@Maggie.Linux-Consulting.com>
Date: Thu, 29 Nov 2001 17:32:08 -0800 (PST)
Message-id: <[🔎] Pine.LNX.3.96.1011129172429.23706A-100000@Maggie.Linux-Consulting.com>
Reply-to: Alvin Oga <aoga@Maggie.Linux-Consulting.com>
In-reply-to: <[🔎] m27ks9f61n.fsf@komodo.home.wards.net>

hi ya bill

how about: ( maybe a dumb idea .... but...a temporary answer??

user> vi  /etc/aliases
	- save it to /tmp/aliases

user> sucpaliases

where sucp:  and allow users to run sucp as root
	- add sucpaliases into the sudo file

#!/bin/bash
#
# sucpaliases
#
PATH=/sbin:/bin:/usr/sbin
#
# do some error checking too before executing these commands
#
mv /etc/aliases /etc/aliases.prev.xx
mv /tmp/aliases /etc/aliases
newaliases
#
# end of sucp

c ya
alvin

On 29 Nov 2001, William R Ward wrote:

> William R Ward <bill@wards.net> writes:
> > Is there any kind of wrapper that can be used to allow sudo to grant
> > editing access to only one file?  I am thinking of something similar
> > to vipw or visudo, but with security in mind; following this basic
> > algorithm:
> > 
> > 1. Using user privileges, Copy the desired file to a temp file owned
> >    by the real user.
> > 2. Using user privileges, Edit the temp file.
> > 3. Using root privileges, copy the temp file to the final location.
>

Reply to:

Follow-Ups:
- Re: VI wrapper for SUDO? - another bad way ??
  - From: bill@wards.net (William R. Ward)

References:
- Re: VI wrapper for SUDO?
  - From: William R Ward <bill@wards.net>

Prev by Date: What is the status with wu-ftpd updated potato packages?
Next by Date: Re: What is the status with wu-ftpd updated potato packages?
Previous by thread: Re: VI wrapper for SUDO?
Next by thread: Re: VI wrapper for SUDO? - another bad way ??
Index(es):
- Date
- Thread