From owner-freebsd-questions  Wed May  1 23:39:10 1996
Return-Path: owner-questions
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id XAA28773
          for questions-outgoing; Wed, 1 May 1996 23:39:10 -0700 (PDT)
Received: from genesis.atrad.adelaide.edu.au (genesis.atrad.adelaide.edu.au [129.127.96.120])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id XAA28768
          for <freebsd-questions@FreeBSD.ORG>; Wed, 1 May 1996 23:39:07 -0700 (PDT)
Received: from msmith@localhost by genesis.atrad.adelaide.edu.au (8.6.12/8.6.9) id QAA28369; Thu, 2 May 1996 16:09:29 +0930
From: Michael Smith <msmith@atrad.adelaide.edu.au>
Message-Id: <199605020639.QAA28369@genesis.atrad.adelaide.edu.au>
Subject: Re: Groups ; Setuid
To: babbleon@mercury.interpath.com (Brian T. Schellenberger - Personal Account)
Date: Thu, 2 May 1996 16:09:29 +0930 (CST)
Cc: freebsd-questions@FreeBSD.ORG
In-Reply-To: <199605020519.BAA12169@mercury.interpath.com> from "Brian T. Schellenberger - Personal Account" at May 2, 96 01:19:34 am
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

Brian T. Schellenberger - Personal Account stands accused of saying:
> 
>   1. I want to be able to su to root from my ID, but did not originally
>      give myself root perms.  When I tried to edit (via vipw) the password
>      file to just change my group, it didn't seem to "take" somehow, so
>      I switched it back.  If I understand the theory, though, I should be
>      able to be in multiple groups.  How?  It doesn't seem to be in the
>      handbook or the FAQ, and my perusal of man pages hasn't show anything.
>      I admit I'm not on speaking terms with info yet, but I don't think
>      that FreeBSD favors it anyway.

Edit /etc/group and add yourself to the 'wheel' group.

>   2. I want to be able to setuid a "script" to root and have it jolly well
>      do whatever I can do logged in as root.  In particlar, I want to have
>      scripts to slattach and associated "stuff" to various places and I
>      want to allow non-root folks to do so.  I can make some stuff work with
>      suidperl, but even then it barfs if I try to invoke an extermal command
>      that's a shell.

You can't have setuid shellscripts.  Suidperl probably won't execute external
shellscripts as root either.  

You could make slattach setuid-root, although I'd be more inclined to use
'startslip'.  Note that ppp and pppd are already setuid-root.

> Brian T. Schellenberger, the Man from Babble-On.

-- 
]] Mike Smith, Software Engineer        msmith@atrad.adelaide.edu.au    [[
]] Genesis Software                     genesis@atrad.adelaide.edu.au   [[
]] High-speed data acquisition and      (GSM mobile) 0411-222-496       [[
]] realtime instrument control          (ph/fax)  +61-8-267-3039        [[
]] Collector of old Unix hardware.      "Where are your PEZ?" The Tick  [[