Re: Limiting User Commands
From: Doug Griswold (griswld_at_cio.sc.gov)
Date: 11/05/04
- Previous message: Filip Moritz: "AW: ignoring dependencies"
- Maybe in reply to: Stephen Le: "Limiting User Commands"
- Next in thread: Osamu Aoki: "Re: Limiting User Commands"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 05 Nov 2004 12:57:15 -0500 To: <zeroion@gmail.com>, <debian-isp@lists.debian.org>, <debian-user@lists.debian.org>
Take a look at sudo.
>>> Stephen Le <zeroion@gmail.com> 11/5/2004 12:31:21 PM >>>
Hello all,
Is there an easy way to limit the commands a certain group of users
can execute? I've looked at chroot, and it's too complicated for my
needs and seems too easy to circumvent; users will be able to upload
their own Perl scripts, so it seems that they'll be able to access
commands outside their chroot by getting Apache w/ mod_perl to execute
the script.
I'd like to be able to compile a list of commands/programs that users
in a certain group will be able to execute (ex. cp, mv, rm, etc).
However, I'd also be happy to compile a list of commands users
shouldn't be able to execute. In regards to the latter method, would
it be possible for me to change the group ownership of the commands I
don't want users to have access to and revoke execute permission from
that group?
Thanks,
Stephen Le
-- To UNSUBSCRIBE, email to debian-isp-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org -- To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
- Previous message: Filip Moritz: "AW: ignoring dependencies"
- Maybe in reply to: Stephen Le: "Limiting User Commands"
- Next in thread: Osamu Aoki: "Re: Limiting User Commands"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
