Re: /etc/sudoers precedence question

To: Dan MacNeil <omacneil@brave.cs.uml.edu>
Cc: debian-isp@lists.debian.org
Subject: Re: /etc/sudoers precedence question
From: MB <sparkynine@yahoo.com>
Date: Sat, 21 Feb 2004 10:55:19 -0800
Message-id: <[🔎] 4037A997.6010006@yahoo.com>
In-reply-to: <[🔎] Pine.LNX.4.44.0402201941460.7285-100000@brave.cs.uml.edu>
References: <[🔎] Pine.LNX.4.44.0402201941460.7285-100000@brave.cs.uml.edu>

Dan,

Are you running the "update" command using the full path?

/usr/cs/2002/omacneil/sbin/update

Your sudo file allows running the above command only with no password.Also you should note that a sudo file like this allows for you to get aroot shell via "sudo bash", which may or may not be what you want to allow.


Mark

Dan MacNeil wrote:

Given the sudoers file below omacneil (as a member of wheel) should be
able to do anything with a password and should be able to run "update"
with no password.

I can run everything but only with a password.

What am I missing?

reversing the order of %wheel & omacneil lines doesn't change things.


###########
# User privilege specification
root    ALL=(ALL) ALL
ken     ALL=(ALL) ALL

Defaults        !lecture, insults
%wheel  ALL=(ALL)       ALL
omacneil localhost=NOPASSWD: /usr/cs/2002/omacneil/sbin/update

Reply to:

Follow-Ups:
- Starting isp and going to use Debian
  - From: "Chris Hoover" <revoohc@sermonaudio.com>
- Re: /etc/sudoers precedence question
  - From: Dan MacNeil <omacneil@brave.cs.uml.edu>

References:
- /etc/sudoers precedence question
  - From: Dan MacNeil <omacneil@brave.cs.uml.edu>

Prev by Date: squid-wccp-kernel-2.6
Next by Date: Starting isp and going to use Debian
Previous by thread: /etc/sudoers precedence question
Next by thread: Starting isp and going to use Debian
Index(es):
- Date
- Thread