Hi,

I have group problem. Lets say I do reseller and end-user account. I want reseller can manage end-user files. BUT reseller and end-user must have a different group otherwise end-user can delete reseller files. BUT if they are in a different group, how can a reseller edit end-user files?

Can anybody help me with this?

Bye!

Hmm... You might try puting the reseller's account in /etc/sudoers

You do that by using visudo....

THAT" WORKS?? :confused:
I'll try... i am fixing the damn web-based file manager! it is all massed up!!! :mad:

Originally posted by YUPAPA
THAT" WORKS?? :confused:
I'll try... i am fixing the damn web-based file manager! it is all massed up!!! :mad:

I honestly don't know.. Best guess at the time.. I'll talk to a few people though..

Would adding the reseller to the user's group work? Each user would then have their own group (preventing them from reading other users files) and the only members would be any accounts for that site and the reseller who created the package. The only thing I'm not sure of is if there's a limit on the max number of groups an account can belong to.

I hope this sort of makes sense.

Chris Spangler

:viperzpit: no, just add the ****in reseller to all of their sub-users groups
:viperzpit: ;)
:viperzpit: resellergroup:15:x:reselleruser
:viperzpit: subgroup:16:x:subuser,reselleruser
:viperzpit: the sub user isnt in the reseller's group
:viperzpit: but
:viperzpit: the sub user
:viperzpit: could chmod 700
:viperzpit: and then the reseller couldnt
:viperzpit: the best work around
:viperzpit: is for the reseller
:viperzpit: to lock the user in their account
:viperzpit: and chmod thier folder
:viperzpit: 711
:viperzpit: so that the group has no perms
:viperzpit: i'll think about this more
:viperzpit: and try it ;)
:viperzpit: hmm
:viperzpit: you know
:viperzpit: sudo might not be such a bad idea
:viperzpit: sudo -u blah pico asdf
:viperzpit: hehe
:viperzpit: i'll do it ;)
:Prohacker: ok


From the man himself.. A good friend of mine who knows more about *nix/BSD than any other person I know...


Mind you, he's just a weeeeeeeeeeeeeee bit drunk :D

:viperzpit: Runas_Alias RESELLER123 = subuser
:viperzpit: reseller ALL = (RESELLER123) ALL
:viperzpit: Prohacker
:Prohacker: yo
:viperzpit: those are the settings
:viperzpit: those are the settings
:viperzpit: to let a reseller run anything as their client
:viperzpit: just add their clients to the runas_alias
:viperzpit: there are a lot of ways to solve that prob
:viperzpit: but i think sudo or runas is the best way actually
:viperzpit: just... hard/risky to script
:viperzpit: you need root to run something to edit the sudoers file
:viperzpit: so if the user adds a client
:viperzpit: it would need to call something that edits the sudoers file
:viperzpit: that can be dangerous
:viperzpit: anything automated that's done by root
:viperzpit: is dangerous
:Prohacker: yeah
:Prohacker: cpanel is dangerous :P
:viperzpit: yea
:viperzpit: its a pos too


Told you he was good :D