Who gets "root" at your site?
Neil Rickert
rickert at mp.cs.niu.edu
Tue Oct 2 23:36:26 AEST 1990
In article <1990Oct2.042650.15413 at agate.berkeley.edu> et at ocf.Berkeley.EDU (Eric Thompson) writes:
>#4: What do they use this access for?
>
>#5: Other info: do you have separate administrative passwords, or
> other pseudo-root logins, and how are they implemented, etc.
I created a front end command which allows those in the operator group
to execute certain commands as if they were root, but without having to
login as root.
I named the command 'RootMode', and it sits in /operator. If executed
directly it complains and exits. But if I make a hard link to it, also
in /operator, with say the name 'lpc', then anyone in the operator group
can execute /operator/lpc which just execs to the real /etc/lpc after first
becoming root. This enables those who need root privileges for special
purposes to gain them without needing to login/su as root. A syslog record
is written for each access using this facility.
Currently available commands by this procedure include:
lpc, lpr, lprm - to deal with printer problems.
dump - to make backup tapes.
shutdown - to bring the system down gracefully.
updatenameserver - a shell script to do a 'make' in the name server
database directory, and to force a reload of the nameserver.
(the above is not a complete list).
--
=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=*=
Neil W. Rickert, Computer Science <rickert at cs.niu.edu>
Northern Illinois Univ.
DeKalb, IL 60115. +1-815-753-6940
More information about the Comp.unix.questions
mailing list