Harry Sukumar wrote:
Hi James,
Yes I tried to do this on another machine unfortunately this didn't
work for me, good you raised this topic
On the other machine I edited the visudo
User_Alias PROJECT = emma, paddy, sb
PROJECT ALL = !/usr/su, !/bin/su, !/usr/bin/passwd
I see your
Plant, Dean wrote:
I see your trying to protect your users from becoming root. You do
realise that with that sudo configuration a user can still run sudo
/bin/bash or any of the other shells to gain root access.
Hi Dean,
I don't think that's correct. One of the purposes of the sudoers file
Ian Blackwell wrote:
Plant, Dean wrote:
I see your trying to protect your users from becoming root. You do
realise that with that sudo configuration a user can still run sudo
/bin/bash or any of the other shells to gain root access.
Hi Dean,
I don't think that's correct. One of the
Plant, Dean wrote:
What I was trying to point out is that if is he is disabling commands
like su then they must be enabled somewhere in the groups he is calling
and it is good practice to disable all the shells as well. All my
sudoers lines that call groups like he was trying to do always have a
[EMAIL PROTECTED] wrote:
On Thursday 26 June 2008 10:51:18 pm Harry Sukumar wrote:
Dear All
But even after adding him to wheel, sys and adm group he is unable to
install using yum
Ok, I'm new to CentOS and yum, but it seems to me that installing software
would need to have write
Just a point of note:
When adding the wheel group to the sudoers file via visudo, it does not mean
that the users in the wheel group can execute commands directly. It means that
they can type:
#sudo command options
For each enabled command in the sudoers file.
Now lets walk through some
On Fri, Jun 27, 2008 at 10:17:22AM -0400, Jason Pyeron wrote:
jpyeron ALL=(ALL) NOPASSWD: ALL
## allows user jpyeron logged in from ALL locations to act as ALL users
without
Not logged in _from_ all locations; logged in _to_ all machines which have
that sudoers file.
eg
jpyeron A=(root)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Stephen Harris
Sent: Friday, June 27, 2008 10:31 AM
To: CentOS mailing list
Subject: Re: [CentOS] Wheel and YUM!!
On Fri, Jun 27, 2008 at 10:17:22AM -0400, Jason Pyeron wrote:
jpyeron ALL=(ALL
On Fri, Jun 27, 2008 at 10:34:46AM -0400, Jason Pyeron wrote:
[mailto:[EMAIL PROTECTED] On Behalf Of Stephen Harris
This allows you to have one centrally controlled sudoers file
but have machine specific privileges.
Hmmm, I don't see it in /etc/nsswitch.conf.
By central you mean
In a flurry of recycled electrons Plant, Dean wrote:
All my
sudoers lines that call groups like he was trying to do always have a
!SU, !SHELLS to specifically deny root access.
Anyway I will shut up now as none of this will help fix his problem.
If you ever grant someone ALL commands and
Hi Harry,
Try to implement sudoers and add the group wheel inside from it (you can
modify it from /etc/sudoers or using visudo command). In that way, all your
users can use yum command.
Cheers,
-james
On Fri, Jun 27, 2008 at 12:51 PM, Harry Sukumar [EMAIL PROTECTED]
wrote:
Dear All
I am
:-(
--
Harry
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of James Corteciano
Sent: Friday, 27 June 2008 2:59 PM
To: CentOS mailing list
Subject: Re: [CentOS] Wheel and YUM!!
Hi Harry,
Try to implement sudoers and add the group wheel inside from
On Thursday 26 June 2008 10:51:18 pm Harry Sukumar wrote:
Dear All
But even after adding him to wheel, sys and adm group he is unable to
install using yum
Ok, I'm new to CentOS and yum, but it seems to me that installing software
would need to have write permission to all the directories
13 matches
Mail list logo