best way to add www to wheel
Łukasz Wąsikowski
lukasz at wasikowski.net
Wed Jan 29 21:41:24 UTC 2014
W dniu 2014-01-29 22:26, Aryeh Friedman pisze:
> Cross post on purpose because people on -virtualization@ are likely more
> familur with bhyve and it's requirements as well knowing what petitecloud
> is and what it needs to do (the whole issue is without adding www to wheel
> start/stop do not work from the webui)
Use security/sudo, maybe with config similar to this this:
Cmnd_Alias PETITECLOUD = /usr/sbin/service petitecloud stop,
/usr/sbin/service petitecloud start, /usr/sbin/service petitecloud restart
www ALL=(ALL) NOPASSWD: PETITECLOUD
This way user www can run sudo /usr/sbin/service petitecloud
(stop|start|restart) as root (and only those exact commands with those
exact parameters). It's a "little" bit safer than your approach which is
huge security hole.
--
best regards,
Lukasz Wasikowski
More information about the freebsd-virtualization
mailing list