I have a lot of network experience but after a recent job change I am now learning to administer linux systems for the first time. I'm not a complete Linux novice but please assume I don't know what you talking about when answering my question.
My first course of action here is to stop everyone having root access to the systems but not stop them doing what they need, here is how it works:
our linux servers run Centos V5.3
it runs apache, php, mysql and qmail
users need to work with the database and run php scripts and also edit crontabs
Basically I want to prevent them altering system files and adding/editing users
What do you recommend and how do I do it?