Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 377
  • Last Modified:

how to set up linux permissions for contractor?

I am setting up a webserver for a contractor to use.  i want to give them permissions to log in, upload files to the website, restart apache if needed, and set up the postrgres db.  what is the best practice for doing this?  i want to give them enough permissions to get the job done, but not too many permissions they dont need.
0
trip008vk
Asked:
trip008vk
1 Solution
 
dacaseyCommented:
Create an account for him.  Add him to the apache group, postgres and other groups as necessary.

adduser consultant

vi \etc\group   <- add the newly created user to al groups you think he will need.
0
 
Hatrix76Commented:
NEVER EVER touch /etc/passwd or /etc/group directly!

You should never do that, but use the tools the system provides you with.

usermod -a -G <group> <user>


to add a user to groups

for sudo, use visudo, etc.


So, having this out of the way, your answer depends deeply on which distribution of linux you will use, in centos i would do:

He should be able to watch the logfiles of httpd, as they are world-readable

allow him to restart apache with sudo (use visudo) add:
<username> ALL=/etc/init.d/httpd start, /etc/init.d/httpd stop,/etc/init.d/httpd restart, /sbin/services httpd restart

then add him to the group you use for the website (like apache) and make sure the upload directory for the webpage has group read-write-execute permissions on them.

Then, create him an postgresql user account which is allowed to create databases and you should be good to go. With this account he should be able to administrate his databases.
0
 
trip008vkAuthor Commented:
Thank you, Hatrix76.  this is along the lines of what i had been thinking.  dacasey's "solution" wasn't helpful at all
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now