1 |
On Tue, Dec 20, 2011 at 11:51 AM, Tanstaafl <tanstaafl@×××××××××××.org> wrote: |
2 |
> On 2011-12-20 10:13 AM, Michael Mol <mikemol@×××××.com> wrote: |
3 |
>> |
4 |
>> So, incidentally, would 'sudo passwd root'... |
5 |
> |
6 |
> |
7 |
> Ouch... any way to avoid that? |
8 |
> |
9 |
> I guess the best way would be to simply give them access to the commands |
10 |
> they need... |
11 |
> |
12 |
> I'll look into that... |
13 |
|
14 |
The best way would probably be to work with UNIX privileges or ACLs. |
15 |
You've got a file you want people other than root to be able to edit. |
16 |
|
17 |
groupadd $SPECIALGROUP |
18 |
usermod -a -G $SPECIALGROUP $THEIRUSERNAME |
19 |
chown :$SPECIALGROUP $FILENAME |
20 |
chmod g+w $FILENAME |
21 |
|
22 |
(You might want to chmod g-x $FILENAME, too, just for safety's sake.) |
23 |
|
24 |
-- |
25 |
:wq |