Linux text editors and permissions

Linux Fedora C2
I have a LAN of some 20 semi-trusted users with very little knowledge, this could be improved if I could give them access to a text editor like "gedit", the trouble is "gedit" has one option too many: the ability to run a command.
These users have RO permission on the files accessible to them but scripts they have permission to use change that permission to RW for selected files.
My question:
with the use of "gedit", is the risk limited to the files mentioned above or is there bigger risks to contemplate?  If so, what are those risks?
Thank you for your help.
rblampainAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

arombergCommented:
If the users can run a command, then they can theoretically run bash, or any other shell program and escape out.  OpenOffice has a text editor also, and it may be easier for them to learn.
0
wesly_chenCommented:
Hi,

   In addition to OpenOffice (big giant package), you might want to try abiword, which is in Fedora Core 2 CD or
you can do
rpm -ivh http://download.fedora.redhat.com/pub/fedora/linux/core/2/i386/os/Fedora/RPMS/abiword-2.0.5-1.i386.rpm

   If the gedit is not run as root or have SUID bit enable, to run the shell command should be ok since the regular users
have only limited permission/privilege.

   All you need to do is make sure the directory and file permission so they have no permission to overwrite/delete
the files which they suppose not allowed to.

   vi can start another shell or execute a shell command, too.

Regards,

Wesly
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
rblampainAuthor Commented:
Thank you both. Nobody knows how to fix this, we might have to hire a pro to hack the code when funds permit (we're a NFP).
I'll have a look at "abiword" but I've found a few others suggested to me are further from our specs than "gedit".
0
arombergCommented:
if the user doesn't have to have a graphical interface, nano looks to be something where they cannot escape out of it.
0
rblampainAuthor Commented:
Thanks to aromberg but the GUI is vital.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.