Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 10 Apr 2000 13:19:16 +1000
From:      Danny <dannyh@idx.com.au>
To:        cjclark@home.com, "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com>, cache manager <cache@scnc.jps.k12.mi.us>
Cc:        freebsd-questions@FreeBSD.ORG
Subject:   Re: group rights
Message-ID:  <00041013204900.00326@freebsd.freebsd.org>
References:  <20000408155638.B14643@cc942873-a.ewndsr1.nj.home.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
Assuming all your users are like IT people and you want a group of people (like
the IT guys in your building) to restart squid or restart apache you should
install "sudo"

http://www.courtesan.com/sudo/ or install sudo from the ports 

On Sun, 09 Apr 2000, Crist J. Clark wrote:
> On Sat, Apr 08, 2000 at 02:38:02PM -0400, cache manager wrote:
> > My problem is this : I want to allow a user to execute
> > a file normally owned by root. I hope to have the user do all this from
> > a shell batch file.
> > I want them to be able to restart squid after they have changed a config
> > file. I have created a group localadmins and added the user to the group
> > localadmins I then chown :localadmins squid
> > and now the group localadmins own squid. When I log on as this user and
> > try to restart squid it fails I have fooled around with permissions even
> > assigned 777 to squid with no luck.  
> > Any suggestions would be helpfull I have searched the archives and man
> > group. What am I missing?
> 
> A setuid bit? See 'man chmod' and look at '4000' in the MODES
> section.
> 
> You run root owned binaries all of the time, ls, more, rm, etc. Pretty
> much all of the system binaries are root owned. This gives no special
> permissions to the user executing them.
> 
> I think the permissions and ownership you are looking for on your
> squid start-up script are,
> 
>   # chown root:localadmins squid
>   # chmod 4750 squid
> 
> -- 
> Crist J. Clark                           cjclark@home.com
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
--



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00041013204900.00326>