From owner-freebsd-questions@FreeBSD.ORG  Thu Sep  6 21:24:22 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 11A9016A421
	for <freebsd-questions@freebsd.org>;
	Thu,  6 Sep 2007 21:24:22 +0000 (UTC)
	(envelope-from gs_stoller@juno.com)
Received: from outbound-mail.dca.untd.com (outbound-mail.dca.untd.com
	[64.136.47.15]) by mx1.freebsd.org (Postfix) with SMTP id A554413C45D
	for <freebsd-questions@freebsd.org>;
	Thu,  6 Sep 2007 21:24:21 +0000 (UTC)
	(envelope-from gs_stoller@juno.com)
Received: from webmail18.dca.untd.com (webmail18.dca.untd.com [10.171.12.158])
	by smtpout04.dca.untd.com with SMTP id AABDQA4PQAWDB2KA
	for <freebsd-questions@freebsd.org> (sender <gs_stoller@juno.com>);
	Thu,  6 Sep 2007 13:57:18 -0700 (PDT)
X-UNTD-OriginStamp: /s5f1SIGSI3+WdnoYQ8yROjR373bknCq7mkmBmj89vExAsG0WR7O9g==
Received: (from gs_stoller@juno.com) 
	by webmail18.dca.untd.com (jqueuemail) id MWYYUUR9;
	Thu, 06 Sep 2007 13:57:13 PDT
Received: from [71.251.0.101] by webmail18.dca.untd.com with HTTP:
	Thu, 6 Sep 2007 20:57:04 GMT
X-Originating-IP: [71.251.0.101]
Mime-Version: 1.0
From: "gs_stoller@juno.com" <gs_stoller@juno.com>
Date: Thu, 6 Sep 2007 20:57:04 GMT
To: robin@reportlab.com
X-Mailer: Webmail Version 4.0
Message-Id: <20070906.165704.14591.0@webmail18.dca.untd.com>
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Content-Type: text/plain; charset=us-ascii
X-ContentStamp: 3:4:1662608668
X-UNTD-Peer-Info: 10.171.12.158|webmail18.dca.untd.com|webmail18.dca.untd.com|gs_stoller@juno.com
Cc: freebsd-questions@freebsd.org
Subject: RE: temporary su login
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Sep 2007 21:24:22 -0000

Robin Becker wrote:
> My collocation supplier is about to move our FreeBSD box and wants som=
e =

> way to shut it down cleanly. Is there a simple way to allow a non-root=
 =

> user to have shutdown rights without just giving them the world. At =

> present I don't even allow login via ssh on that box ie it's purely ke=
y =

> based.
	What I would do is develop a script (owned by  root ) and
callable by everybody which then checks the  user-id  of its caller,
and if it is an acceptable one, the script will issue a warning
(to wall) and then shutdown the system.