Re: basic sudo/sodoers question

2016-07-12 Thread Samuel Sieb
On 07/12/2016 10:59 AM, Tom H wrote: # visudo -f /etc/sudoers.d/dog dog ALL=(cat) NOPASSWD: /cat/*.* [AFAIK, "/cat/*" should be enough] According to the man page, you don't need the *. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://li

Re: basic sudo/sodoers question

2016-07-12 Thread Tom H
On Mon, Jul 11, 2016 at 1:13 PM, bruce wrote: > > I have two (2) users cat - dog > > user cat has access to all files in /cat, and the ability to run the apps > (*.php) > > i want to allow user dog to be able to run as user cat, and therefore run > the *.php in /cat > > As far as I can tell, this

Re: basic sudo/sodoers question

2016-07-12 Thread Samuel Sieb
On 07/11/2016 02:15 PM, Robert Nichols wrote: On 07/11/2016 12:13 PM, bruce wrote: the change I made cat ALL=(ALL) NOPASSWD: /cat/*.* That is granting cat the right to run commands as cat, i.e., it's pretty much a no-op. Try dog ALL=(ALL) NOPASSWD: /cat/*.* That would allow dog to run

Re: basic sudo/sodoers question

2016-07-11 Thread fred roller
On Mon, Jul 11, 2016 at 5:27 PM, Joe Zeff wrote: > On 07/11/2016 02:15 PM, Robert Nichols wrote: > >> On 07/11/2016 12:13 PM, bruce wrote: >> >>> the change I made >>> cat ALL=(ALL) NOPASSWD: /cat/*.* >>> >> >> That is granting cat the right to run commands as cat, i.e., it's pretty >> much a no-

Re: basic sudo/sodoers question

2016-07-11 Thread Joe Zeff
On 07/11/2016 02:15 PM, Robert Nichols wrote: On 07/11/2016 12:13 PM, bruce wrote: the change I made cat ALL=(ALL) NOPASSWD: /cat/*.* That is granting cat the right to run commands as cat, i.e., it's pretty much a no-op. Try dog ALL=(ALL) NOPASSWD: /cat/*.* Wouldn't it be easier to c

Re: basic sudo/sodoers question

2016-07-11 Thread Robert Nichols
On 07/11/2016 12:13 PM, bruce wrote: the change I made cat ALL=(ALL) NOPASSWD: /cat/*.* That is granting cat the right to run commands as cat, i.e., it's pretty much a no-op. Try dog ALL=(ALL) NOPASSWD: /cat/*.* -- Bob Nichols "NOSPAM" is really part of my email address.

Re: basic sudo/sodoers question

2016-07-11 Thread Rick Stevens
On 07/11/2016 10:42 AM, Tod Merley wrote: > .. sounds like something to solve with Linux ownership of files, being > part of groups, and permissions. Perhaps start here? > - https://www.linux.com/learn/understanding-linux-file-permissions > > On Mon, Jul 11, 2016 at 10:13 AM, bruce

Re: basic sudo/sodoers question

2016-07-11 Thread Tod Merley
.. sounds like something to solve with Linux ownership of files, being part of groups, and permissions. Perhaps start here? - https://www.linux.com/learn/understanding-linux-file-permissions On Mon, Jul 11, 2016 at 10:13 AM, bruce wrote: > Hi. > > I have two (2) users cat - dog > > user cat has

basic sudo/sodoers question

2016-07-11 Thread bruce
Hi. I have two (2) users cat - dog user cat has access to all files in /cat, and the ability to run the apps (*.php) i want to allow user dog to be able to run as user cat, and therefore run the *.php in /cat As far as I can tell, this is a sudo/sudoers issue, where I should be able to set up a