sudo and /etc/sudoers
Derek Broughton
derek at pointerstop.ca
Mon Dec 29 15:25:40 UTC 2008
Matthew Flaschen wrote:
> Karl F. Larsen wrote:
>> Yes and it is seldom used.
>
> How on earth do you know?
>
> With a lot of thought, if I was running a
>> Unix computer with many users I would disable sudo, get me a root
>> password, and handle the users with which groups they belong to.
>
> Except magical groups alone will not let users have limited access to
> root programs, which is of course the whole point.
Let's see: I can add some group to /etc/sudoers to be able to run some list
of programs; or, I can change every individual program to be setuid root,
executable by the group - and do that _every_ time each of those programs
gets upgraded. It's nice that Linux gives us so many options :-)
More information about the ubuntu-users
mailing list