Re: Limiting admin privileges

To: Debian List <debian-user@lists.debian.org>
Subject: Re: Limiting admin privileges
From: Sven Hoexter <sven@telelev.net>
Date: Thu, 13 Dec 2001 17:18:04 +0100
Message-id: <[🔎] 20011213171804.A30875@voyager.telelev.de>
Mail-followup-to: Debian List <debian-user@lists.debian.org>
In-reply-to: <[🔎] Pine.HPX.4.33.0112130902250.29166-100000@prague.et.byu.edu>; from kerrr@et.byu.edu on Thu, Dec 13, 2001 at 09:05:01AM -0700
References: <[🔎] Pine.HPX.4.33.0112130902250.29166-100000@prague.et.byu.edu>

On Thu, Dec 13, 2001 at 09:05:01AM -0700, Robert Kerr wrote:
> Hi all,
> My group is looking into providing Linux workstations to the engineers,
> but we're worried about future problems regarding admin privileges.  We
> would like to give our engineers root on their boxes so they can set them
> up and provide patches and such.  But, su-ing to root will also allow them
> to access any other users' files (since we have an automount NFS daemon
> which will mount the other users' home directories when accessed).  What
> kind of utilities are available that would allow the users admin-type
> privileges, but disallow their munging others' files?
hm complex task. Try out sudo and look if you configure it to match your
enviroment.
Maybe a special patched Linux Kernel with LIDS or other secure enhancements is
able to do this for you.

Sven

-- 
>Lamer! :)\n Lokaler Admin mit enormen Rechten[tm]
[Christian Schneider und Jens Himmelrath in alt.hacker.org-gcf]
http://www.linux-secure.de http://www.linuxboard.de
http://www.bluephod.net http://www.disconow.de

Reply to:

References:
- Limiting admin privileges
  - From: Robert Kerr <kerrr@et.byu.edu>

Prev by Date: Re:Limiting admin privileges
Next by Date: Re:[3] Advice on upgrading Potato to Sid
Previous by thread: Re: Limiting admin privileges
Next by thread: Re: Limiting admin privileges
Index(es):
- Date
- Thread