21 Apr
2022
21 Apr
'22
18:08
Hi, following issue: A system user (tryton) is created to run a ERP server. The user is a no-login user, and he does not belong to any group. Should this user be able to run 'sudo'? In openSUSE (Leap) it is possible Under e.g. Ubuntu this is prohibited ("not part of the sudo group") What is best practice here? Is it a risk if a no-login user user can run sudo commands without further (group) authorisation? Thanks Axel