System management and system file protection
Steve Green
steveg at umd5.umd.edu
Sun Dec 3 17:24:49 AEST 1989
In article <1989Dec2.214424.5719 at athena.mit.edu> crowston at athena.mit.edu (Kevin Crowston) writes:
< all kinds of stuff deleted >
>
>What I've thought about doing is creating a group, like operator, and
>giving that group read/write permissions on files like /etc/passwd,
>/usr/lib/aliases, the root mail box, so that such a person can do all
>the various routine maintenance operations without being a super-user.
>
< all the rest deleted >
Anyone who has write permission on /etc/passwd might as well be given the root
password. Also, anyone that is doing work on a machine should not be in a mode
where he/she can do any damage. That is, let users be users and give out the
root password to any {trusted} users that will need it.
What kinds of stuff do you want to let people do that they cant already do and
yet, not give them root power??
More information about the Comp.unix.ultrix
mailing list