Answer the question
In order to leave comments, you need to log in
D
D
Denis2011-09-26 22:06:06
Denis, 2011-09-26 22:06:06
Need help setting up sudo?
Hello. Please read the question before downvoting "nubolinuksoid".
You need to allow a specific user to execute 2 scripts via sudo. And that's it. Only 2 scripts.
In this regard, the following entry appeared in /etc/sudoers:
username ALL=NOPASSWD:/home/username/hard_update.sh, /home/username/update.shWhen trying to execute one of the scripts, a password is requested, and after entering the correct user password, I get the following whack: Sorry, user username is not allowed to execute '/home/username/update.sh' as www-data on hostname.domain.ru.
I start like this:
sudo -u www-data /home/username/update.shOS - Debian 6.0.1 (squeeze)
Maybe it's a matter of rights? The rights to the home directory are now 700, to the scripts 766.
But I already played with the rights as best I could.
Previously, there was already such a problem on centos. At that time, the inflamed brain gave birth to such a crutch:
username ALL=/home/username/hard_update.sh, /home/username/update.sh<br/>
username ALL=(ALL) NOPASSWD:/home/username/hard_update.sh, /home/username/update.sh 4 answer(s)
@syncer
@syncer
@Kopart
Y
Yuriy Andamasov, 2011-09-27 @syncer
Cmnd_Alias RUNASAPACHE /home/username/hard_update.sh, /home/username/update.sh
username ALL=(www-data) NOPASSWD: RUNASAPACHE
and then
sudo -u www-data /home/username/hard_update.sh
sudo -u www -data /home/username/update.sh
will run as apache and not as root
Y
Yuriy Andamasov, 2011-09-27 @syncer
Specially checked now on another host with 6.0.2
Everything works fine.
K
Kopart, 2011-09-30 @Kopart
Maybe try another option:
Add to sudoers the launch of all commands from the script, and not the script itself.
Similar questions
R
M
M
M
J
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question