Just a point of note: When adding the wheel group to the sudoers file via visudo, it does not mean that the users in the wheel group can execute commands directly. It means that they can type: #sudo command options For each enabled command in the sudoers file. Now lets walk through some examples from my sudoers file: jpyeron ALL=(ALL) NOPASSWD: ALL ## allows user jpyeron logged in from ALL locations to act as ALL users without confirming jpyeron's password and execute ALL programs. # Uncomment to allow people in group wheel to run all commands # %wheel ALL=(ALL) ALL ## allows users in the wheel group logged in from ALL locations to act as ALL users executing ALL programs. # Same thing without a password # %wheel ALL=(ALL) NOPASSWD: ALL ## allows users in the wheel group logged in from ALL locations to act as ALL without confirming his password users executing ALL programs. # Samples # %users ALL=/sbin/mount /cdrom,/sbin/umount /cdrom ## allows users in the users group logged in from ALL locations to act as root and run either "/sbin/mount /cdrom" or "/sbin/umount /cdrom" without deviation of the command line. # %users localhost=/sbin/shutdown -h now ## allows users in the users group logged in from localhost (or console?) to act as root and execute "/sbin/shutdown -h now" only. /* I gave up on quoting html emails... */ -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - - - Jason Pyeron PD Inc. http://www.pdinc.us - - Principal Consultant 10 West 24th Street #100 - - +1 (443) 269-1555 x333 Baltimore, Maryland 21218 - - - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- This message is for the designated recipient only and may contain privileged, proprietary, or otherwise private information. If you have received it in error, purge the message from your system and notify the sender immediately. Any other use of the email by you is prohibited. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos