Solved

how to set up special user permissions

Posted on 2003-10-21
8
484 Views
Last Modified: 2013-12-16
I am migrating about 700 websites to a new Red Hat server.  Each of these sites will have FTP access by different users.  However, I am the main webmaster for the vast majority of these sites.  Is it even possible to set up a user that can have permission for all of these sites.  

The reason I want to do this is so I can FTP with a single user name and then just move around to each site and make changes to the other users home directories.  Kindof a root without all priviliges and FTP access.

If this can be done, can anyone advise me how to do it?

Thanks alot!
0
Comment
Question by:uksurf
8 Comments
 
LVL 12

Accepted Solution

by:
paullamhkg earned 64 total points
ID: 9596100
well why not use the SSH

SSH™ allows users to log into host systems remotely. Unlike protocols such as FTP or Telnet, SSH encrypts the login session, making it impossible for intruders to collect unencrypted passwords.

SSH is designed to replace older, less secure terminal applications used to log into remote hosts, such as telnet or rsh. A related program called scp replaces older programs designed to copy files between hosts, such as rcp. Because these older applications do not encrypt passwords transmitted between the client and the server, avoid them whenever possible. Using secure methods to remotely log into remote systems decreases the risks for both the client system and the remote host.

have a check www.openssh.org, and RH9.0 ssh already implemented.
0
 
LVL 12

Expert Comment

by:paullamhkg
ID: 9596109
So using SSh, you can login as root without problem, transfer files, system admin, manage all the server/websites bla bla bla in the most secure way :)
0
 
LVL 6

Assisted Solution

by:S0lar
S0lar earned 62 total points
ID: 9597059
Pullamhkg's advice to use ssh+root is ok, but here's another simple one...
Create special group - webadm for example, add your user to this group...
then assign webadm to be owner group for folders which contain your websites and set permission
to 775 (664)... so you'll be able to write/move/erase etc... and have no root privs.

2paul : re :)
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 12

Expert Comment

by:paullamhkg
ID: 9597105
2S0lar, I'm also thinking the same as your idea, but since telnet/ftp is not secure (well vsftp may be or /telnet/ftp with ssl) that's way I suggest ssh ;)

Also uksurf want to make changes to the other users home directories, which mean you need to group eventhings under webadm include the users home directory

eg. /home/paul will be own by paul:webadm and the access right will be drwxrwx--- (770).

Also 700 websites will also owned under the same group name (webadm), may be not easy to separated them if they are on the same groups.
0
 
LVL 1

Assisted Solution

by:mlinford
mlinford earned 62 total points
ID: 9609709
A single user can be a member of multiple groups. I suggest making yourself a member of all groups, and keep the groups that others are members of limited to their directories (sounds backwards but often having a username be the groupname is nice).
That is, of course, if you dont want to use SSH as root. (tho i cant see why).
0
 
LVL 5

Assisted Solution

by:willy134
willy134 earned 62 total points
ID: 9610173
the problem with creatign a webadmin group is that if the user changes his group on his files you have not permssion to move it.  You may need to ad some sudo privilidges to your account that allows you to run root commands without being root.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
iptables limit connection per ip correct way ? 2 96
linux copy files from usb to folder on system 14 60
Access_log 17 101
Determine Who is Runnig my Bash Shell Script 4 65
Setting up Secure Ubuntu server on VMware 1.      Insert the Ubuntu Server distribution CD or attach the ISO of the CD which is in the “Datastore”. Note that it is important to install the x64 edition on servers, not the X86 editions. 2.      Power on th…
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now