Date: Sat, 8 Apr 2000 15:56:38 -0400 From: "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com> To: cache manager <cache@scnc.jps.k12.mi.us> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: group rights Message-ID: <20000408155638.B14643@cc942873-a.ewndsr1.nj.home.com> In-Reply-To: <Pine.BSF.4.10.10004081426430.90698-100000@scnc.jps.k12.mi.us>; from cache@scnc.jps.k12.mi.us on Sat, Apr 08, 2000 at 02:38:02PM -0400 References: <Pine.BSF.4.10.10004081426430.90698-100000@scnc.jps.k12.mi.us>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Apr 08, 2000 at 02:38:02PM -0400, cache manager wrote: > My problem is this : I want to allow a user to execute > a file normally owned by root. I hope to have the user do all this from > a shell batch file. > I want them to be able to restart squid after they have changed a config > file. I have created a group localadmins and added the user to the group > localadmins I then chown :localadmins squid > and now the group localadmins own squid. When I log on as this user and > try to restart squid it fails I have fooled around with permissions even > assigned 777 to squid with no luck. > Any suggestions would be helpfull I have searched the archives and man > group. What am I missing? A setuid bit? See 'man chmod' and look at '4000' in the MODES section. You run root owned binaries all of the time, ls, more, rm, etc. Pretty much all of the system binaries are root owned. This gives no special permissions to the user executing them. I think the permissions and ownership you are looking for on your squid start-up script are, # chown root:localadmins squid # chmod 4750 squid -- Crist J. Clark cjclark@home.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000408155638.B14643>