Isnt it better to NOT add a new user with a full interactive shell? It just seems better to have a user that can ONLY run reboot than a user that can log in, interact with the system AND run reboot. You also sort of add your shell, your .profile and sudo as points of failure (wonderful and bug free tho they all are). just a thought -----Original Message----- From: OKDesign oHG Security Administrator [mailto:security@okdesign.de] Sent: Sunday, January 13, 2002 3:56 AM To: Steffen Dettmer Cc: suse-security@suse.com Subject: AW: [suse-security] creating a normal user just for reboot -----Ursprüngliche Nachricht----- Von: Steffen Dettmer [mailto:steffen@dett.de] Gesendet: Samstag, 12. Januar 2002 17:02 An: suse-security@suse.com Betreff: Re: [suse-security] creating a normal user just for reboot
* Kai-H. Weutzing wrote on Sat, Jan 12, 2002 at 07:56 +0100:
useradd -u 0 -o -g 0 -d $HOMEDIR -s /sbin/reboot -c "Reboot User" reboot
I guess this will fail with "UID 0 is not unique".
BTW, I would prefere sudo a lot!
Me too ! That's why I put this user in the sudoers, but it won't work (this was my original question *g*). How do I have to do this / what did I do wrong ? Stephan -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com