From: Bousquet Francois (Francois.Bousquet@cgi.ca)
Date: Thu Aug 19 2004 - 14:34:08 EDT
I would like to have your opinion on how to manage security between
different users.
I have a java application (WebLogic 8.1) installed on Solaris 9 SPARC. That
application is install and runs under the dev7 user authority.
Up to now, there was no problem because only one person was using this
account but a new support team is now requiring to access this application,
change files and start & stop the application.
I am not very pleased with using common account for 5 people so I create
them a username for each one. They are all member of dev7 group so they
can modify files of the application.
But the problem I am facing is that how can I give them the autority to
start/kill the application without giving them the dev7 user password (I
think that if I do that, they will logon directory with it, instead of their
user and I will lost track of who is doing what).
So I looked at Solaris RBAC to help me or the sudo utility or a suid on a
startscript.
But I've heard suid is not recommanded, RBAC seems more related to giving
sub-root privileges and sudo seems not a bad option.
What do you think ?
What would you do ?
Thank you
- Francois
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:29:19 EDT