From owner-freebsd-current@FreeBSD.ORG Wed Jan 23 20:24:24 2013 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id D23D9943; Wed, 23 Jan 2013 20:24:24 +0000 (UTC) (envelope-from kob6558@gmail.com) Received: from mail-lb0-f173.google.com (mail-lb0-f173.google.com [209.85.217.173]) by mx1.freebsd.org (Postfix) with ESMTP id 1A6ACCF7; Wed, 23 Jan 2013 20:24:23 +0000 (UTC) Received: by mail-lb0-f173.google.com with SMTP id gf7so5535731lbb.4 for ; Wed, 23 Jan 2013 12:24:17 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:cc:content-type; bh=mq8Zajx6crQEELE7LUURctnd+aBHpC7PbJF5snm0I94=; b=ccrdu4itPypgqmMLnkw7OO4RR3j6CvOJcR5JsKTxgPCRMoOlkH+Pqk9XoQthJb7XYF Dg3xR+sKd2U1O+atEoHjGAf8RzCmHYuYhk08KW1N0wYNQgTzcL6xkbmfnwGvsoVKnL6r ovQ8rK1bZXStQ4xK2ZsYAW21wyhqn5dERrOd4A8PiRHdGyLT4dpoPPuxo7MDfyOLRg3h gBED+o4wzZFSxNQbZWHus0ii2PIVcNAGhQWuTI13rBy5DtP0eJagUn2IFnGCGzDyb6go YxNbpng7kTIVEIx6AC8LX5Lzb+7eudMNTd6j7v/4r4mb1YQ7yi57KxjKJPgN/syCV0Ty Ikfw== MIME-Version: 1.0 X-Received: by 10.112.8.231 with SMTP id u7mr1135559lba.45.1358972657151; Wed, 23 Jan 2013 12:24:17 -0800 (PST) Received: by 10.67.2.65 with HTTP; Wed, 23 Jan 2013 12:24:16 -0800 (PST) In-Reply-To: References: <20130122175933.GD41700@FreeBSD.org> Date: Wed, 23 Jan 2013 12:24:16 -0800 Message-ID: Subject: Re: Adding more tools to be used by operator group members From: Kevin Oberman To: Gleb Smirnoff Content-Type: text/plain; charset=UTF-8 Cc: Olivier Cochard-Labb? , "freebsd-current@freebsd.org" X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Jan 2013 20:24:24 -0000 On Tue, Jan 22, 2013 at 10:38 AM, Adrian Chadd wrote: > Ah, the historical difference between shutdown -r and reboot.... > > > adrian > > On 22 January 2013 09:59, Gleb Smirnoff wrote: >> On Tue, Jan 22, 2013 at 02:03:12PM +0100, Olivier Cochard-Labb? wrote: >> O> There are only 2 useable tools by "operator" group members: >> O> shutdown (and its child: poweroff, halt, etc?) and mksnap_ffs. >> O> >> O> On my HAL-less laptop, I've put my user in the operator group that let >> O> me reboot/power-off it with shutdown. >> O> But I would to be able to suspend-resume it too (with zzz). >> O> >> O> Here is what I've did: >> O> for f in "/usr/sbin/acpiconf /usr/sbin/apm"; do >> O> chown :operator $f >> O> chmod 4550 $f >> O> done >> O> >> O> What about configuring this permission by default on FreeBSD ? >> O> And why /sbin/reboot isn't useable by operator too ? >> O> Are there somes security issue ? >> >> +1 here. I was always annoyed and surprised by this fact. >> >> -- >> Totus tuus, Glebius. While reboot is dangerous and should really only be used in single user mode or an emergency, I don't understood why operator was not allowed to do it. for those who assume that "reboot" is short for "shutdown -r now", it is not. Reboot does not bother shutting down stuff in rc.d while shutdown does. This can result in shutdown not working, but reboot can leave things like database files in bad shape. -- R. Kevin Oberman, Network Engineer E-mail: kob6558@gmail.com