[systemd-devel] grant users access to certain services only
Michael Biebl
mbiebl at gmail.com
Thu Aug 20 14:41:14 PDT 2015
Hi,
say I wanted to grant an unprivileged userA the ability to
systemctl start/stop/restart/reload foo.service
and only grant this for foo.service.
Is there a way to achieve that without resorting to using hacks like
sudo or a suid binary? From a cursory look, the existing PolicyKit
rules are too coarse grained for this.
This was raised as a use case from one of our Debian users, where the
postgres user should be able to start/stop/restart/reload the
postgresql service
Cheers,
Michael
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
More information about the systemd-devel
mailing list