sudo is certainly one of the most important aspects of *nix administration. Recently I had been tasked with allowing a number of individual users (which we could have created an OS group to contain) to sudo to another user, without a password. That user should then be able to run some specific commands, also without a password. NOTE: If you happen across this post, and know of a better way to do this, feel free to correct me. This just happened to have worked for me and seemed clean and easy to follow. This is what I had come up with: /* Allow APPUSERS (techies) to su to approot without a password Allow approot to run specific commands without a password on APPHOSTS (localhost) */ [root@localhost ~] # adduser approot [root@localhost ~] # visudo ## TESTING ## ALIASES Host_Alias APPHOSTS = cypher,cypher.matrix.private User_Alias ...
Linux: The whole world made it for you... This blog is a collection of things I come across either at home or at work as a Linux Administrator. I have worked as an Admin working with Solaris, SAN, Backups and Linux at the Enterprise level for over 16 years.