I want to make sure I am not wrong:
in Linux you can give a group Execute permission to a folder or file, you can also give a group permissions in the Sudoer file to run certain commands.
to my understanding you can give Execute permission to groupX to a folder /usr/bin they can run tcpdump ,
Or you can give groupX Execute permission directly to tcpdump file and they can run the file.
The other way is :
under Sudoer.d directory, you can also create a file for instance(accountants), then type the following commands:
%GroupX ALL= /user/sbin/tcpdump
another thing that I want to know whether it is the same when we grant permissions inside the Sudoer file or it is better to create a file under Sudoer.d directory, then specify permissions inside the file.?