Groups and sudo

Matthew Gillen me at mattgillen.net
Fri Dec 1 15:47:28 EST 2006


Scott R Ehrlich wrote:
> I have a Fedora Core 5 user who's user account is part of /etc/sudoers.   The
> user changed all groups from group 'root' to group 'users'. 

I don't understand what you mean.  Did he 'chgrp users /etc/*' or something else?
Why would they do that?  Those files are group 'root' for a reason...sounds
like you need to revoke his sudo access.

> Now, even though
> part of /etc/sudoers, his account has no admin rights to perform various
> functions, such as adding printers, sudo, etc.  Immediate Insufficient perms.

That's odd, since root permissions should still be sufficient to write to any
file.

> I can, though, su directory from a terminal session.
> 
> He does not want to change the group ownership back to group 'root'.

Whatever reasons he has for having that opinion, I'd like to hear them.  I bet
they don't outweigh the drawbacks.

> How do I [re]grant root/sudo access to directories and files that have 'users'
> group ownership?

If you can provide more details on exactly what he did in the first place, it
would help a lot.

Matt

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.




More information about the Discuss mailing list