Comments on: Assign Read/Write Access to a User on Specific Directory in Linux

By: Ravi Saive

Ravi Saive — Wed, 15 Feb 2023 05:20:09 +0000

In reply to Nguyentony. @Nguyentony, Actually not possible, but you can do it with the following exception. 1. First, add the users you want to lock down to a group. 2. Next, edit the sudoer's file with the visudo command. 3. Add the following lines to the sudoer's file (testgroup is the group you added the users to).

%testgroup    ALL = (ALL)       ALL
%testgroup    ALL = /usr/bin/passwd [A-Za-z]*, !/usr/bin/passwd root
%testgroup    ALL = !/usr/sbin/visudo

Note: This prevents the sudo users from changing the root password.

By: Nguyentony

Nguyentony — Tue, 14 Feb 2023 15:12:10 +0000

Is there a way you can ban the: change root password?

Here I have a case where the user is granted root privileges, the user enters the admin’s root change password by themselves.

By: Amitesh Sahay

Amitesh Sahay — Mon, 24 May 2021 06:20:55 +0000

Hi,

I need to let the normal users create their own subdirectories and upload any document to that directories. I have enabled a shared location via nginx, and I could see the shared location when I type the server’s IP in a web browser. But I am not sure how to enable the other part of the requirement. Can you help, please?

I have given full permission to the group thru setfacl. but it is not giving me any option in the web browser to create any directory there itself and upload files. Please suggest