Solved

Root right and user rights

Posted on 2011-03-25
7
384 Views
Last Modified: 2013-12-04
Hi,

How do I create a user that can do more or less the same as root?

I would like to have the users to be able to restart all services, configure systems  etc.

But I DONT want the user to be able to edit any log messages.. I have to be able to trace fraud.. but that the same time the support team must be able to work with the services..


Is that possible??

Thank you
J

0
Comment
Question by:MrJN
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 15

Assisted Solution

by:DonConsolio
DonConsolio earned 166 total points
ID: 35219247
Check out the "sudo" man page, it does what you need.
0
 
LVL 34

Accepted Solution

by:
PsiCop earned 168 total points
ID: 35222086
Look at my EE Profile for a link to my personal website.

On that website, look in my Projects for a paper entitled Controlled Privilege Escalation in Linux/UNIX Environments

Read that and then let me know if you still have questions.
0
 
LVL 4

Expert Comment

by:ReN501
ID: 35334021
in the /etc/group file , add the user name to  the wheel group , like as follows

wheel:*:0:root,<user>

seperated by a comma and without the <>
0
Is Your DevOps Pipeline Leaking?

Is your CI/CD pipeline a hodge-podge of randomly connected tools? You’ve likely got a tool to fix one problem & then a different tool to fix another, resulting in a cluster of tools with overlapping functionality. Learn how to optimize your pipeline with Gartner's recommendations

 
LVL 4

Expert Comment

by:ReN501
ID: 35334036
ok , my comment will not work , disregard plz. sudo is the correct responce.
0
 
LVL 62

Assisted Solution

by:gheist
gheist earned 166 total points
ID: 35405445
You can create another UID 0 user or GID 0 group
This leads to big mess at best because many programs will get the name from id etc etc.

SUDO SUDO SUDO
0
 
LVL 27

Expert Comment

by:Tolomir
ID: 36283904
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question