savevg & mksysb by nonroot user 1

[enriqcore]

Do anybody know the way of allowing a nonroot user(although he is an administrative user and has the role of mangebackrestore and member of secutity,system,bin groups) to execute mksysb and savevg(without touching /etc/password file)?
Thanks in advance
Enrique

 

[Yegolev]

I would make a setuid wrapper. Or maybe a restricted shell, but I'd have to read up on how to set one up.

 

[aixqueen]

Well there is always sudo which is a shareware product that can be gotten
at the Bull site..

http://www.bullfreeware.com/

or you can set up roles?

http://publib.boulder.ibm.com/doc_l...xbman/baseadmn/mng_backup.htm#A3BAB5A7265stue

http://publib.boulder.ibm.com/doc_link/en_US/a_doc_lib/aixbman/admnconc/admin_roles.htm

 

[enriqcore]

I chose the sudo option. I found it at.

http://www.courtesan.com/sudo/sudo.html

Thank you for your advices.

 

[gheist]

http://sudo.ws/

SUDO is safe only since v 1.6.6 ntil next discovered bug