RE: Wheel and YUM!!

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



Just a point of note:


When adding the wheel group to the sudoers file via visudo, it does not mean
that the users in the wheel group can execute commands directly. It means that
they can type:

#sudo command options


For each enabled command in the sudoers file.


Now lets walk through some examples from my sudoers file:

jpyeron ALL=(ALL) NOPASSWD: ALL

## allows user jpyeron logged in from ALL locations to act as ALL users without
confirming jpyeron's password and execute ALL programs.

# Uncomment to allow people in group wheel to run all commands
# %wheel        ALL=(ALL)       ALL

## allows users in the wheel group logged in from ALL locations to act as ALL
users executing ALL programs.


# Same thing without a password
# %wheel        ALL=(ALL)       NOPASSWD: ALL

## allows users in the wheel group logged in from ALL locations to act as ALL
without confirming his password users executing ALL programs.

# Samples
# %users  ALL=/sbin/mount /cdrom,/sbin/umount /cdrom

## allows users in the users group logged in from ALL locations to act as root
and run either "/sbin/mount /cdrom" or "/sbin/umount /cdrom" without deviation
of the command line.

# %users  localhost=/sbin/shutdown -h now

## allows users in the users group logged in from localhost (or console?) to act
as root and execute "/sbin/shutdown -h now" only.


/* I gave up on quoting html emails... */

--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
-                                                               -
- Jason Pyeron                      PD Inc. http://www.pdinc.us -
- Principal Consultant              10 West 24th Street #100    -
- +1 (443) 269-1555 x333            Baltimore, Maryland 21218   -
-                                                               -
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

This message is for the designated recipient only and may contain
privileged, proprietary, or otherwise private information. If you
have received it in error, purge the message from your system and
notify the sender immediately.  Any other use of the email by you
is prohibited. 

 

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos

[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux