Does anyone know what the preferred way is to eliminate the restriction that crontab only be available to users in the trusted group? I would like all local users to be able to use cron. I changed the ownership of the crontab command from root:trusted to root:users, but it appears there must be something else I should change because certain command complain (the rpmbuild command even reset the permissions back to root:trusted). Any help would be greatly appreciated. This is SLES 9 SP3 Thanks, Paul
Does anyone know what the preferred way is to eliminate the restriction
man crontab Usually users are not allowed to access cron commands unless they are in the cron.allow file in /etc If that file does not exist, then they are allowed to run crontab unless they are in the cron.deny file. You might have to check /etc/pam.d/crond if access control is managed by PAM. Otherwise it is probably something else... :-) John S. Gaythorpe CISSP Sr Director Systems that crontab only be >>>>>>
discip@pjm.com wrote:
Does anyone know what the preferred way is to eliminate the restriction that crontab only be available to users in the trusted group? I would like all local users to be able to use cron.
I changed the ownership of the crontab command from root:trusted to root:users, but it appears there must be something else I should change because certain command complain (the rpmbuild command even reset the permissions back to root:trusted). Any help would be greatly appreciated.
SLES is set to level 'secure' by default which removes or restricts access to some setuid binaries. # echo "/usr/bin/crontab root:users 4750" >> /etc/permissions.local # SuSEconfig cu Ludwig -- (o_ Ludwig Nussel //\ SUSE LINUX Products GmbH, Development V_/_ http://www.suse.de/
participants (3)
-
discip@pjm.com
-
John S. Gaythorpe
-
Ludwig Nussel