0
Am wondering whether it's possible to create a user in ubuntu 11.10 server with custom sudo rights.I mean by that an use who can start and shutdown the box but who can't access /var/www
for example or be able to change ip of the box via /etc/network/interfaces
and restart the networking and only access specific files both system and custom in /etc/init.d/*
.
Such things can be done? thanks
EDIT:
This is the first time we are deploying a software on the linux box. so it's a combination of php application running in apache2 with a reporting server in tomcat with other applications bundled in 2 jars. these jars are used as services to their configurations have been added to /etc/init
folder. So Ideally we would want to protect the /var/www/ourapp
folder, /var/lib/tomcat6/webapps/ourreporting
if possible.allow the client user to restart the box, change the ip restart the networking, start and stop our services, apache2, tomcat6 see the logs /var/logs/apache2|tomcat6
and that should be all
this is actually really dangerous. Once they're in vi as root, they can do pretty much anything. – Bron Gondwana – 2012-07-25T11:59:10.787
thanks for your hint. I edited my suggestion to show that it's not save. I'll leavy it there in case someone will come to that thought without reading it here so he'll read that it's not save. – wullxz – 2012-07-25T12:32:39.783