Shouldn't the employee have only access to only what they need?
justin P. Mattock
On Dec 9, 2008, at 10:19 PM, Casey Schaufler <casey@xxxxxxxxxxxxxxxx>
wrote:
Daniel J Walsh wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Rahul Jain wrote:
Hi All,
I am currently developing a Role Based Access Solution on
Montavista linux using SELiunx. I started my implementaion with
the reference policy from Tresys. In this implementation I had
assigned a role of security officer to one of my non root Linux
user. This user is resposible for maintaining SELinux related
tasks such as creation, building of policy etc. But this user of
mine, being a non root user is not able to execute some
priviledged commands such as semodule and semanage. Is there any
in which I can permit a non root user execute these commands.
Thanks and Regards
Rahul Jain
sudo
File based capabilities, too.
--
This message was distributed to subscribers of the selinux mailing
list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx
with
the words "unsubscribe selinux" without quotes as the message.
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
