Re: Debian 12.9 and use of sudo for regular accounts

To: debian-user@lists.debian.org
Subject: Re: Debian 12.9 and use of sudo for regular accounts
From: Timothy M Butterworth <timothy.m.butterworth@gmail.com>
Date: Thu, 20 Feb 2025 19:20:58 -0500
Message-id: <[🔎] CAO6YxPynpvbMWdBWAN3+6Fzo_9-yjg2GU69=-q8d+PppK00nLA@mail.gmail.com>
In-reply-to: <[🔎] Z7ewrIcdyTAB-en8@phare.normalesup.org>
References: <[🔎] CAH8yC8kq8-qyp6i6m5a4g6hy-_Xtpe2c2tPj__GG42XdSFNvXQ@mail.gmail.com> <[🔎] Z7ewrIcdyTAB-en8@phare.normalesup.org>

On Thu, Feb 20, 2025 at 5:46 PM Nicolas George <george@nsup.org> wrote:

Jeffrey Walton (HE12025-02-20):
> and members of sudo can run any command.

Is it because of this last line:

> root ALL=(ALL:ALL) ALL
>
> sudo ALL=(ALL:ALL) ALL

# User privilege specification
root ALL=(ALL:ALL) ALL

# Allow members of group sudo to execute any command
%sudo ALL=(ALL:ALL) ALL

Root is the user account, %sudo is the sudo group.

? But does it mean the previous one gives sudo privileges to all members
of the root group? Or is it that the last line gives sudo privileges to
the sudo user, not group?

Regards,

--
Nicolas George

--

⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org/
⠈⠳⣄⠀⠀

Reply to:

References:
- Debian 12.9 and use of sudo for regular accounts
  - From: Jeffrey Walton <noloader@gmail.com>
- Re: Debian 12.9 and use of sudo for regular accounts
  - From: Nicolas George <george@nsup.org>

Prev by Date: Re: Debian 12.9 and use of sudo for regular accounts
Next by Date: Re: Debian 12.9 and use of sudo for regular accounts
Previous by thread: Re: Debian 12.9 and use of sudo for regular accounts
Next by thread: Re: Debian 12.9 and use of sudo for regular accounts
Index(es):
- Date
- Thread