Re: exploring debian's users and groups

To: debian-devel@lists.debian.org, debian-doc@lists.debian.org, debian-user@lists.debian.org, base-passwd@packages.debian.org
Subject: Re: exploring debian's users and groups
From: Craig Sanders <cas@taz.net.au>
Date: Tue, 7 Aug 2001 18:14:33 +1000
Message-id: <[🔎] 20010807181432.B5367@taz.net.au>
Mail-followup-to: debian-devel@lists.debian.org, debian-doc@lists.debian.org, debian-user@lists.debian.org, base-passwd@packages.debian.org
In-reply-to: <[🔎] 20010806231118.A31057@nevyn.them.org>
References: <[🔎] 20010807013548.A17529@kitenet.net> <[🔎] 20010806231118.A31057@nevyn.them.org>

On Mon, Aug 06, 2001 at 11:11:18PM -0700, Daniel Jacobowitz wrote:
> > sudo:
> > 
> > 	HELP: Nothing uses it here, and I have sudo installed.. Maybe
> > 	      there's a way to only let users in this group use sudo?
> 
> There is, sure, but the group isn't special in any way...

users in group sudo don't have to type their password when running sudo.

useful for, e.g., writing sudo wrapper scripts that are forked by an MTA
such as postfix that refuses to run anything as root.

also useful for sudo wrappers to adduser or chg passwd type programs
that are executed from a CGI script (after appropriate taint checking
etc).

TMTOWTDI - the sudo group isn't strictly needed for this, you can also
use the NOPASSWD keyword in /etc/sudoers.

craig

-- 
craig sanders <cas@taz.net.au>

Fabricati Diem, PVNC.
 -- motto of the Ankh-Morpork City Watch

Reply to:

References:
- exploring debian's users and groups
  - From: Joey Hess <joeyh@debian.org>
- Re: exploring debian's users and groups
  - From: Daniel Jacobowitz <dan@debian.org>

Prev by Date: Re: exploring debian's users and groups
Next by Date: Re: Cable Modem on Linux
Previous by thread: Re: exploring debian's users and groups
Next by thread: Re: exploring debian's users and groups
Index(es):
- Date
- Thread