- 17.9K All Categories
- 3.4K Industry Applications
- 3.3K Intelligent Advisor
- 62 Insurance
- 536K On-Premises Infrastructure
- 138.2K Analytics Software
- 38.6K Application Development Software
- 5.7K Cloud Platform
- 109.4K Database Software
- 17.5K Enterprise Manager
- 8.8K Hardware
- 71.1K Infrastructure Software
- 105.2K Integration
- 41.6K Security Software
sudo rule to allow group to edit all files (using * in the path)
Have a situation wherein a group needs to edit all files in an applications path. I have the following to allow the edit to occur.
%GROUPNAME ALL=NOPASSWD: NOEXEC: /bin/vi /path/to/files/*
Other than a file ACL is there a better way to allow the edits to happen. If memory serves I think the "*" posed a security risk, but cant find a supporting article.
The NOEXEC prevents the shell escape and I considered sudoedit but that's retraining endusers who aren't necessarily versed in routine cli.