logo
Free, unlimited AI code reviews that run on commit
git-lrc git-lrc GitHub Install Now We'd appreciate a star git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt

please - a tool for access elevation.

Contents

Authors

       Ed Neville (ed-please@s5h.net).

please 0.5.6                                    06 September 2024                                      please(1)

Bugs

       Found a bug?  Please either open a ticket or send a pull request/patch.

Contributions

       I welcome pull requests with open arms.  New features always considered.

Description

please and pleaseedit are sudo alternatives that have regex support and a simple approach to ACL.

       The  aim  is  to  allow  admins  to  delegate  accurate  principle  of  least privilege access with ease.
       please.ini allows for very specific and flexible regex defined permissions.

       pleaseedit adds a layer of safety to editing files.  The file is copied to /tmp, where it can be updated.
       When EDITOR exits cleanly the file is copied alongside the target, the file will then be renamed over the
       original, but if a exitcmd is configured it must exit cleanly first.  resume will continue  editing  when
       exitcmd fails.

       -a/--allowenvlist
              allow environments separated by , to be passed through

       -c/--checkfile
              will check the syntax of a please.ini config file.  Exits non-zero on error

       -d/--dir
              will change directory to dir prior to executing the command

       -g/--groupgroupname
              run or edit as groupname

       -h/--help
              print help and exit

       -l/--list
              to list rules

       -n/--noprompt
              will not prompt for authentication and exits with a status of 1

       -p/--purge
              will purge your current authentication token for the running user

       -r/--reason[reason]
              will add reason to the system log

       -t/--target[username]
              to execute command, or edit as target username-u/--user[username]
              to execute command, or edit as target username-v/--version
              print version and exit

       -w/--warm
              will warm an authentication token and exit

Example Usage

please-thttpd/bin/bash
              run a shell as the httpd user

       please-l
              to list what you may run

       please-t"username"-l
              to show what username may run.  username must match the target regex in a type=list rule

       please-r'reloadingapache2,change#123'systemctlreloadapache2
              to reload apache2 with a reason

       pleaseedit-r'addingnewstorage,ticket#24365'/etc/fstab
              to use pleaseedit to modify fstab

       Please see please.ini for configuration examples.

Files

       /etc/please.ini

Name

       please - a tool for access elevation.

See Also

please.ini(5)

Synopsis

please/bin/bashpleaseedit/etc/fstabpleaseedit[-r/--reason"newfs"]/etc/fstabpleaseedit[-g/--groupgroupname]filenamepleaseedit[-t/--targetusername]filenamepleaseedit[--resume]filenameplease[-a/--allowenvlist]please[-c/--check]/etc/please.iniplease[-d/--dirdirectory]commandplease[-e/--envenvironment]commandplease[-g/--groupgroupname]commandplease[-h/--help]please[-t/--targetusername]backuptar-cvf-/home/data|...please[-u/--userusername]backuptar-cvf-/home/data|...please[-l/--list]please[-l/--list][-t/--targetusername]please[-l/--list][-u/--userusername]please[-n/--noprompt]commandplease[-r/--reason"sshdreconfigured,ticket24365"]/etc/init.d/sshrestartplease[-p/--purge]please[-w/--warm]

See Also

Man Pages
please Man Pages
List
List PNG Icons
Man Pages
CURLOPT_TLSAUTH_USERNAME Man Pages
Reason
Reason PNG Icons
Target
Target PNG Icons
Filing
Filing PNG Icons
Exit
Exit PNG Icons
← View User commands Category← Back to User and authentication🙏  Credits & Acknowledgments