Linux Restrict Execution of /usr/sbin/userhelper to Console Users

I‘m CentOS Linux version 5.x user and I’d like to restrict execution of /usr/sbin/userhelper to console users only in xusers group?

/usr/sbin/userhelper is a helper interface to pam. From the man page:

This program provides a basic interface to change a user’s password, gecos information, and shell. The main difference between this program and its traditional equivalents is that prompts are written to standard out to make it easy for a GUI wrapper to interface to it as a child process.

Simply run the following command so that users in xusers group can use /usr/sbin/userhelper
groupadd xusers
usermod -aG xusers user1
usermod -aG xusers user2
usermod -aG xusers userN
chgrp xusers /usr/sbin/userhelper
chmod 4710 /usr/sbin/userhelper


🐧 Get the latest tutorials on Linux, Open Source & DevOps via RSS feed or Weekly email newsletter.

🐧 0 comments... add one


CategoryList of Unix and Linux commands
Disk space analyzersdf duf ncdu pydf
File Managementcat cp mkdir tree
FirewallAlpine Awall CentOS 8 OpenSUSE RHEL 8 Ubuntu 16.04 Ubuntu 18.04 Ubuntu 20.04
Modern utilitiesbat exa
Network UtilitiesNetHogs dig host ip nmap
OpenVPNCentOS 7 CentOS 8 Debian 10 Debian 8/9 Ubuntu 18.04 Ubuntu 20.04
Package Managerapk apt
Processes Managementbg chroot cron disown fg glances gtop jobs killall kill pidof pstree pwdx time vtop
Searchingag grep whereis which
User Informationgroups id lastcomm last lid/libuser-lid logname members users whoami who w
WireGuard VPNAlpine CentOS 8 Debian 10 Firewall Ubuntu 20.04
0 comments… add one

Leave a Reply

Your email address will not be published.

Use HTML <pre>...</pre> for code samples. Still have questions? Post it on our forum