littlejohnny
MIS
Hello,
Is it possible to create a uid whose sole function is to issue
shutdown command?
Thank you!
Is it possible to create a uid whose sole function is to issue
shutdown command?
Thank you!
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Userid Security Question
- Thread starter littlejohnny
- Start date
- Status
The Unix system grants superuser privileges to any account with an UID of 0 (zero).
Only the superuser can shutdown an Unix machine. ...
For systems administrator that share responsibility for managing systems with other administrators, or people who only occasionally need superuser access, sudo might come in handy. sudo allows limited superuser power to other people while still maintaining control over the commands that groups or individual users can use. Try out sudo or caclmgr.
You can also create a special user that have root authority but can only apply one command. For instance, to create a user that can only shutdown the system, create a regular user called shutdown and modify the /etc/passwd command to change the user and group ID to 0.
The /etc/passwd entry for shutdown should be
shutdown:!:0:0::/u/shutdown:/usr/sbin/shutdown
Now when user shutdown logs in, the system shuts down waiting 1 minute before stopping the user processes and the init process.
Best Regards,
vivek
Only the superuser can shutdown an Unix machine. ...
For systems administrator that share responsibility for managing systems with other administrators, or people who only occasionally need superuser access, sudo might come in handy. sudo allows limited superuser power to other people while still maintaining control over the commands that groups or individual users can use. Try out sudo or caclmgr.
You can also create a special user that have root authority but can only apply one command. For instance, to create a user that can only shutdown the system, create a regular user called shutdown and modify the /etc/passwd command to change the user and group ID to 0.
The /etc/passwd entry for shutdown should be
shutdown:!:0:0::/u/shutdown:/usr/sbin/shutdown
Now when user shutdown logs in, the system shuts down waiting 1 minute before stopping the user processes and the init process.
Best Regards,
vivek
- Thread starter
- #4
- Status
Similar threads
- Locked
- Question