| 1 |
On 22 December 2011 15:41, Tanstaafl <tanstaafl@×××××××××××.org> wrote: |
| 2 |
> On 2011-12-20 11:00 AM, Florian Philipp <lists@×××××××××××.net> wrote: |
| 3 |
>> |
| 4 |
>> You should probably also restrict which files can be edited (not |
| 5 |
>> /etc/passwd, /etc/shadow or /etc/sudoers, for sure!). You can do this |
| 6 |
>> with globs. For example: |
| 7 |
>> %sudoroot sudoedit/var/www/* |
| 8 |
> |
| 9 |
> |
| 10 |
> Ok, just found out that subdirectories are not included when doing it this |
| 11 |
> way, and haven't found a way to include them... |
| 12 |
> |
| 13 |
> Please tell me there is a way, and I won't have to explicitly define every |
| 14 |
> subdirectory under /var/www that they will need to be able to work in... |
| 15 |
|
| 16 |
Perhaps I missed it, but my approach to this would be to create a |
| 17 |
'webadmin' group, and change the group of the directory (and |
| 18 |
applicable subdirs). |
Archives