Restricting changing passwd
Ritesh Raj Joshi
ritesh at mos.com.np
Tue Aug 1 10:53:16 EDT 2000
Thanks for the suggestion, Todd. But I have to give permission to a select
group of people to be able to change passwds as we are an ISP and hence I
want that group to be able to change the passwd of our clients sometimes
upon their request though we have a facility to change passwd via web.
Could you let me know how to use the wild cards as you have mentioned.
Maybe you could give me an example so that it will be clear to me.
I want the group of users to be able to change passwds for all the users
except root and the rest of the staff.
| r i t e s h r a j j o s h i
| system administrator
| MERCANTILE COMMUNICATIONS PVT. LTD
On Tue, 1 Aug 2000, Todd C. Miller wrote:
> Is there any reason to give people sudo for /usr/bin/passwd at all?
> If not you can just say !/usr/bin/passwd. You can also use shell-style
> wildcards. Beware, however, that if you are saying something like:
> username machine=ALL, !/usr/bin/passwd
> the user will be able to get around the '!/usr/bin/passwd' if he/she
> really wants to via a root shell or copying the passwd program to
> another name.
> - todd
> sudo-users mailing list <sudo-users at courtesan.com>
> For list information, options, or to unsubscribe, visit:
More information about the sudo-users