On Tuesday 20 March 2007 14:47, M Harris wrote:

        The wheel group is a unix legacy thing...  it allows users in the wheel group to have access to root ( su sudo ) in a more controlled way. Sorry forgot something important...

... you will need to add the pam wheel.so module to the auth config of su and sudo in the directory /etc/pam.d -- Kind regards, M Harris <>< -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org

On Tuesday 20 March 2007 15:50, Dave Crouse wrote:

In general I would STRONGLY suggest that you do NOT do this.... Strong words... good words...

... if you are tempted to do it... read them again... -- Kind regards, M Harris <>< -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org

On Tue, 2007-03-20 at 15:50 -0500, Dave Crouse wrote:

In general I would STRONGLY suggest that you do NOT do this.... however... if your bent on doing it -- do it at your own risk.

Before making any changes BACKUP any files you might be editing.

Local user accounts are stored in: /etc/passwd copy the root line.....paste it back in right under the original root line....changing the "root" to "whatever" in that second line will give you a second user with UID 0

Have you ever actually done this and had a working system? I have seen several reports of the various ways in which the system dies subsequent to this kind of effort, so I would be interested if you have a 'known good' recipe. And to the OP - you have been warned, repeatedly! Don't do this. Cheers, Dave -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org

On Tuesday 20 March 2007 15:11, Flextron wrote:

I need to create a new user so the batch process can be easily recognised, Does anybody know how to create a user that has ALL rights to execute ALL commands ? (using PAM...?) Rather than create a wheel user, why not simply set up the program as a setuid. (I would not recommend doing this with a script though). Then you can run the batch process (assuming it is not a script and has been tested) with the setuid and setgid bits on, and the program can run as a regular user, but can become root when it needs to execute some commands. Another solution is to use sudo. -- Jerry Feldman Boston Linux and Unix user group http://www.blu.org PGP key id:C5061EA9 PGP Key fingerprint:053C 73EC 3AC1 5C44 3E14 9245 FB00 3ED5 C506 1EA9

Yes, I have done this with RHEL3 ..... but the second root user was only for accessing files.... with liberal use of chown to correct any owner errors after changing some files with the 2nd user. As for anything "special" .. not really, I just don't recommend doing it. In fact I don't even remember WHY we did it... If you going to use it, you might as well use root anyway. The better way of course is to assign the user to the correct groups and solve the issue that way. Crouse Site Admin. OpenSuse.us ------------------------------ On 3/20/07, Dave Howorth wrote:

On Tue, 2007-03-20 at 15:50 -0500, Dave Crouse wrote:

...

In general I would STRONGLY suggest that you do NOT do this.... however... if your bent on doing it -- do it at your own risk.

Before making any changes BACKUP any files you might be editing.

Local user accounts are stored in: /etc/passwd copy the root line.....paste it back in right under the original root line....changing the "root" to "whatever" in that second line will give you a second user with UID 0

Have you ever actually done this and had a working system?

I have seen several reports of the various ways in which the system dies subsequent to this kind of effort, so I would be interested if you have a 'known good' recipe.

And to the OP - you have been warned, repeatedly! Don't do this.

Cheers, Dave

-- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org

-- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org

Cristian Rodriguez wrote:

Flextron escribió:

...

Hi list,

I need to create a new user so the batch process can be easily recognised, Does anybody know how to create a user that has ALL rights to execute ALL commands ? (using PAM...?)

the answer to your question can be obtained with the following commands

man sudo man sudoers

do not use anything else for that, you have been warned.

That was the first think I though...but that would mean change all commands of batch jobs. -- Flextron - Linux user: 306877 -- GPG keyID: 0xE0EA0B24 -- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org