Creating a restricted shell user?

R

RJF_Lifetime

New Member
Dec 12, 2019
2
0
1
Hello,
I'm trying to implement some secure automation by creating a PAM user that can only run qm commands. Currently, the user can only run commands in their home directory, but softlinking qm into that directory gives the following error.
Code: 
ipcc_send_rec[1] failed: No such file or directory
ipcc_send_rec[2] failed: No such file or directory
ipcc_send_rec[3] failed: No such file or directory
please run as root
Is there a way to run qm without having root privileges?
Many thanks.
 
no, the CLI tools are all root-only (they use the perl code directly, and much of that code needs to be privileged to access storage, create network devices, etc.pp.).
 
fabian said:
no, the CLI tools are all root-only (they use the perl code directly, and much of that code needs to be privileged to access storage, create network devices, etc.pp.).
Click to expand...
Perfect, thank you for a prompt and clear answer. We found that we can achieve what we want by giving the account sudo access to only the commands we want, in this case qm.
 
You must log in or register to reply here.
Top Bottom