On Tue, Aug 16, 2011 at 5:36 AM, Neil Watson wrote:
>
> If Cfengine or similar is maintaining both the sudoers file and the target
> scripts that will be sudoed then I think you can reasonable trust them
> provided they have gone through enough testing.
I just wanted to share that I put sudoers
Forum: CFEngine Help
Subject: Re: Security Tools and Root Access
Author: neilhwatson
Link to topic: https://cfengine.com/forum/read.php?3,23093,23115#msg-23115
If Cfengine or similar is maintaining both the sudoers file and the target
scripts that will be sudoed then I think you can reasonable
Forum: CFEngine Help
Subject: Re: Security Tools and Root Access
Author: sauer
Link to topic: https://cfengine.com/forum/read.php?3,23093,23107#msg-23107
Tom Tucker Wrote:
---
> My company has recently purchased a new security
> tool. Fo
>> 1) Are you aware of a wrapper, unique shell or simiar tool that could provide
>> root level access at a read only level?
I think you could create a non privledged user and with acls provide read
access to most if not all things. I think a more interesting question is why
you might want to do th
I did :)
>> and then give sudo access to certain people *only* to that program
--Diego
On Aug 13, 2011, at 10:00 AM, "Daniel V. Klein" wrote:
>
> On Aug 13, 2011, at 9:38 AM, Diego Zamboni wrote:
>
>> Hi Tom,
>>
>>> 1) Are you aware of a wrapper, unique shell or simiar tool that could
>>>
"Daniel V. Klein" wrote:
On Aug 13, 2011, at 9:38 AM, Diego Zamboni wrote:
> Hi Tom,
>
>> 1) Are you aware of a wrapper, unique shell or simiar tool that could
>> provide root level access at a read only level?
>
> What comes to mind is to put the read-only functionality you want in a
> speci
On Aug 13, 2011, at 9:38 AM, Diego Zamboni wrote:
> Hi Tom,
>
>> 1) Are you aware of a wrapper, unique shell or simiar tool that could
>> provide root level access at a read only level?
>
> What comes to mind is to put the read-only functionality you want in a
> specific program, and then giv
Hi Tom,
> 1) Are you aware of a wrapper, unique shell or simiar tool that could provide
> root level access at a read only level?
What comes to mind is to put the read-only functionality you want in a specific
program, and then give sudo access to certain people *only* to that program. As
long
On Aug 13, 2011, at 5:48 AM, Aleksey Tsalolikhin
wrote:
> On Fri, Aug 12, 2011 at 5:47 PM, Tom Tucker wrote:
>>
>> 1) Are you aware of a wrapper, unique shell or simiar tool that could
>> provide root level access at a read only level?
>
> There is no such thing in UNIX. If you have super-us
Depends what kind of read access you want. Setuid programs like ps do
essentially this on certain data. If you want access to file change info like
tripwire then cfengine Nova has a portal where you can view info on the web.
Mark
On 13 Aug 2011, at 02:47, Tom Tucker wrote:
>
> My company h
Aleksey Tsalolikhin wrote:
On Fri, Aug 12, 2011 at 5:47 PM, Tom Tucker wrote:
>
> 1) Are you aware of a wrapper, unique shell or simiar tool that could
> provide root level access at a read only level?
There is no such thing in UNIX. If you have super-user privs, you can write.
> 2) Any recom
On Fri, Aug 12, 2011 at 5:47 PM, Tom Tucker wrote:
>
> 1) Are you aware of a wrapper, unique shell or simiar tool that could
> provide root level access at a read only level?
There is no such thing in UNIX. If you have super-user privs, you can write.
> 2) Any recommendations on an open source
Please pardon the non-Cfengine related questions. The Cfengine community
has been a good source of
unix related information in the past. Hopefully they can help me with my
current unix related delimma.
My company has recently purchased a new security tool. For this tool to
operate at maximum ef
13 matches
Mail list logo
