1# Host definitions 2SWAPOFF_ORG=(blink|iris|seraph|cavern) 3FAILOVER_ORG=(thoth|ash|oak|widow) 4SELLICK_ID_AU=(beholder|kraken) 5ASN=(SWAPOFF_ORG|FAILOVER_ORG|SELLICK_ID_AU) 6 7# User definitions 8SWAPOFF_ORG_USERS=(athomas) 9SELLICK_ID_AU_USERS=(psellick) 10FAILOVER_ORG_USERS=(dcooper) 11ASN_USERS=(SWAPOFF_ORG_USERS|SELLICK_ID_AU_USERS|FAILOVER_ORG_USERS) 12 13# ACL definitions 14FAILOVER_ORG_ACL=FAILOVER_ORG_USERS@FAILOVER_ORG 15SWAPOFF_ORG_ACL=SWAPOFF_ORG_USERS@SWAPOFF_ORG 16SELLICK_ID_AU_ACL=SELLICK_ID_AU_USERS@SELLICK_ID_AU 17ASN_ACL=root|FAILOVER_ORG_ACL|SWAPOFF_ORG_ACL|SELLICK_ID_AU_ACL 18 19# Group definitions 20ASN_GROUPS=asn 21 22# Actions requiring authentication 23shell /bin/su -; users=ASN_ACL environment password 24sh /bin/su -; users=ASN_ACL environment password 25vi /usr/bin/vi $*; users=ASN_ACL password 26reboot /sbin/reboot; users=ASN_ACL environment password 27 28# Password-less commands 29shutdown /sbin/shutdown -h $1; users=ASN_ACL environment 30 $1=now|[0-1]?[0-9]:[0-9][0-9]|2[0-3]:[0-5][0-9]|\+[0-9]+ 31ethereal /usr/bin/ethereal $*; users=ASN_ACL environment 32nomad /usr/bin/nomad $*; users=ASN_ACL environment 33tcpdump /usr/sbin/tcpdump $*; users=ASN_ACL environment 34nmap /usr/bin/nmap $*; users=ASN_ACL environment 35updatedb /usr/bin/updatedb; users=ASN_ACL environment 36makewhatis /bin/sh -c ' 37 /usr/sbin/makewhatis & 38 echo makewhatis running in the background 39 '; 40 users=ASN_ACL environment 41cdrom /sbin/mount /mnt/cdrom; users=ASN_ACL 42eject /usr/bin/eject; users=ASN_ACL 43nmap /usr/bin/nmap $*; users=ASN_ACL environment 44grip /bin/sh -c '/usr/bin/nice -n 19 /usr/bin/grip &'; 45 users=ASN_ACL 46 user=athomas 47 group=audio 48 umask=007 49 environment 50 51# Cavern local commands 52gtkam /usr/bin/gtkam; users=athomas environment $DISPLAY $GTKRC=/home/athomas/.gtkrc 53drip /usr/bin/drip; users=athomas environment $DISPLAY $GTKRC=/home/athomas/.gtkrc 54evms /bin/sh -c 'PATH=/sbin:/usr/sbin:$PATH /sbin/evmsgui &'; users=athomas environment $DISPLAY $GTKRC=/home/athomas/.gtkrc 55xine /usr/bin/xine; users=athomas environment $DISPLAY 56 57# An example of how to use 58mount /bin/sh -c ' 59 case $1 in 60 cdrom) /bin/mount /mnt/cdrom ;; 61 dvd) /bin/mount -o ro /dev/dvd /mnt/dvd ;; 62 burner) /bin/mount -o ro /dev/burner /mnt/burner ;; 63 *) echo "op: you do not have permission to mount \'$1\'" ;; 64 esac 65 '; 66 users=athomas environment 67 68apache /usr/sbin/apachectl $1; 69 users=athomas 70 environment 71 $1=start|stop|restart 72 73umount /bin/sh -c ' 74 case $1 in 75 cdrom) /bin/umount /mnt/cdrom ;; 76 dvd) /bin/umount /mnt/dvd ;; 77 burner) /bin/umount /mnt/burner ;; 78 *) echo "op: you do not have permission to unmount \'$1\'" ;; 79 esac 80 '; 81 users=athomas environment 82 83tail /usr/bin/tail -f $1; users=athomas 84