[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: user access to network scripts



On Mon, 11 May 1998, Tuvik Beker wrote:


To make a long story short:  use sudo, it works, it's simple, and solves
all your problems.

--Ariel

> Hi,
> 
> I have a rather strange situation.
> I have to allow user acces on a system to one of the network interfaces. 
> More precisely:
> The interface should be connected to one of two networks. The host
> should never be connected to both networks concurrently, and is is
> physically switched between them.
> Each time such a switch is made, the interface should be brought sown,
> then up again with new parameters.
> 
> Up to this point there's no specia difficulty. The problem is that the
> whole procedure should be made not only by the superuser, but by a wide
> group of users, possibly all users. The system is physically secured, so
> generally security is considered a secondary issue on it, but this is an
> extreme case.
> I have to allow users to perform the procedure, but would like to
> minimize the changes to permissions of system files. 
> 
> What's your suggestion for the 'cleanest' way to do this?
> 
> Thanks head,
> Tuvik
> -- 
> --------------------------------------------
>                Tuvik Beker
>       P.O. Box 571, Givatayim 53104
> Tel. (972) 3 5714436    Fax. (972) 3 5334349
>          becket@shum.huji.ac.il
> --------------------------------------------
> 

   +---------------------------------------------------------------+
   | Ariel Biener                                                  |
   | e-mail: ariel@post.tau.ac.il        Work ph: 03-6406086       |
   | fingerprint = 07 D1 E5 3E EF 6D E5 82 0B E9 21 D4 3C 7D 8B BC |
   +---------------------------------------------------------------+