How to remove at job generated by www-data with another Linux user

Question

Script executed by www-data creates an at job.

Afterwards, normal Linux user cannot remove this job (atrm) because "Not owner".

How can this be achieved?

This does not solve the issue: The user I need to cancel the job is not a sudoer (and I don't want it to be sudoer). — Uxio, Dec 31 '18 at 11:16
Then only allow the user to execute `sudo -u www-data /usr/bin/atrm`? would be an option? — Thomas, Dec 31 '18 at 11:32

score 1 · Answer 1 · answered Dec 31 '18 at 12:36

Best would be to use sudo to remove another user's job. To limit thesudo command of the user that should be able to kill the job, add a sudo rule as follows.

user ALL=(www-data) /usr/bin/atrm

Where

user is the username you want to be able to kill the job
ALL is the hostname that is allowed
www-data is the user which is allowed to run this command
/usr/bin/atrm is the command that the user is allowed to run.

Now your user can execute atrm as the user www-data.

sudo -u www-data /usr/bin/atrm <job-number>

Thank you. I did it like this and it worked. Regards. – Uxio Jan 02 '19 at 07:48 — Uxio, Jan 02 '19 at 07:48

How to remove at job generated by www-data with another Linux user

1 Answers1