home *** CD-ROM | disk | FTP | other *** search
- Newsgroups: comp.sys.next.sysadmin
- Path: sparky!uunet!zaphod.mps.ohio-state.edu!moe.ksu.ksu.edu!ux1.cso.uiuc.edu!lemson
- From: lemson@ux1.cso.uiuc.edu (David Lemson)
- Subject: Re: A non-root user running UserManager?
- Message-ID: <BryC9r.Ksr@ux1.cso.uiuc.edu>
- Organization: University of Illinois at Urbana
- References: <1992Jul25.061510.4351@cs.ucla.edu>
- Distribution: na
- Date: Sat, 25 Jul 1992 15:56:01 GMT
- Lines: 26
-
- gungner@cs.ucla.edu (David Gungner) writes:
-
- >Does anybody know of a way to reconfigure UserManager so that a few
- >non-root users (but they are in the group "wheel") can add new users?
- >I want to grant a few maintenance people the ability to add new users
- >without giving out the root password.
-
- Couple ways to do it:
- Theoretically, if you make UserManager mode 4750, and make its group
- 'wheel', then anyone in wheel can run it and it should think that
- you are root (it's setuid). I haven't tried this, though. It's
- possible that this won't work, though (as a security precaution
- inside UserManager).
-
- Another way to do it would be to whip up a little perl script that
- takes userid, name, uid, password in from the user and then does a
- call to nu -A that creates users from the command line. The perl
- script would have to be setuid. That ought to work, too.
- (I say do a Perl script because it's more secure than a shell
- script - or put a C wrapper around a shell script and that would be
- OK too)
- --
- David Lemson (217) 244-1205
- University of Illinois NeXT Campus Consultant / CCSO NeXT Lab System Admin
- Internet : lemson@uiuc.edu UUCP :...!uiucuxc!uiucux1!lemson
- NeXTMail accepted BITNET : LEMSON@UIUCVMD
-