[sudo-users] Allowing command through pipe only
onuryalazi at mersin.edu.tr
Thu Jan 3 03:01:42 EST 2013
On 01/02/2013 03:56 PM, Aaron Lewis wrote:
> Say I want to grant user only the permission to run (only count how
> many lines in the output),
> iptables -L | wc -l
> But to accomplish that, I will have to grant the permission to run this command:
> iptables -L
> That's not secure enough, 'cause user can view the rules now, any thoughts?
Create a script that counts and give permission only to run this script.
More information about the sudo-users