when I allow something like this in sudo: /usr/bin/tail /var/log/*
I allow read-access to all of /var/log. However, I also allow read access to /etc/shadow: /usr/bin/tail /var/log/../../etc/shadow does work. How can I best restrict that? I've tried /usr/bin/tail /var/log/[!\.]* but that generates a syntax error, and kind of doesn't do what I want anyway. The regexp to do what I want is: /usr/bin/tail /var/log/[^\.].* How can I do that in sudo? -- Please do not CC me! Mutt (www.mutt.org) can handle this automatically. .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, admin, and user `. `'` `- Debian - when you have better things to do than fixing a system NOTE: The pgp.net keyservers and their mirrors are broken! Get my key here: http://people.debian.org/~madduck/gpg/330c4a75.asc
msg25376/pgp00000.pgp
Description: PGP signature
