Although I agree with Christopher below, you should be able to do this using Webmin. Just create a Webmin user with access to the firewall module (there's quite a few available for Webmin), and I'd imagine you'd have to also suid the iptables command to allow that user access to it.
Michael. --- christopher cuse <[EMAIL PROTECTED]> wrote: > hi larry, > > it is hard to imagine for what reason you would want > to have apache be able > to su to root -- this could/would spell disaster in > a production environment > and should be discouraged. iptables access from a > non-root user as well is > exceptionally dangerous -- one command could render > the network inoperable. > > apache has very robust security, so you should > attempt your project within > the confines of apache. > > curious what exactly you have in mind ... > > cheers > > christopher cuse > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of > Larry Brown > Sent: Friday, March 28, 2003 5:02 AM > To: Redhat > Subject: iptables access > > > Is anyone familiar with the possibility of running > iptables commands as a > non-root user? I am trying to execute commands from > a web page without > running apache as root or going through > reconfiguration of apache to allow > it to su root. It seems it would be easier to be > able to allow a user > access to iptables commands. > > Larry S. Brown > Dimension Networks, Inc. > (727) 723-8388 > > > > > > -- > redhat-list mailing list > unsubscribe > mailto:[EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > -- > redhat-list mailing list > unsubscribe > mailto:[EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list __________________________________________________ Do you Yahoo!? Yahoo! Platinum - Watch CBS' NCAA March Madness, live on your desktop! http://platinum.yahoo.com -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list