Security question - running a root command not being root
Donald Arseneau
asnd at triumf.ca
Tue May 23 11:59:03 UTC 2006
"Vivek J. Patankar" <list307 at gmail.com> writes:
> > Is there a way i can do this? without violating the "normal" security
> > rules? I mean no changing permissions to the command *tcpdump*.
>
> sudo
sudo is the best answer, since you can give them permission to
run any particular command(s).
But for nostalgia's sake, you could create a group "dumpers",
put those users in the group, change ownership of tcpdump to
root.dumpers, and chmod it +s.
--
Donald Arseneau asnd at triumf.ca
More information about the fedora-list
mailing list