Sudo: Difference between revisions
From wikinotes
No edit summary |
No edit summary |
||
Line 14: | Line 14: | ||
</blockquote><!-- Notes --> | </blockquote><!-- Notes --> | ||
= Sudoers File = | = Sudoers File = |
Revision as of 21:12, 2 April 2022
sudo allows you to assign/limit super-user privileges to users/groups.
Notes
sudo usage sudo configuration sudo troubleshooting
Sudoers File
Basics
USER HOST=(USER:GROUP) ALLOWED_COMMANDS USER localhost = \ /bin/commandA, /bin/commandB # can be split on multiple linesUSER
username # username #1001 # uid %groupname # groupname %#1001 # gidHOST
192.168.1.1 # ip address myhostname # hostname hostA,10.10.10.10,hostC # list of eitherlogic
%wheel,!willjp # all members of wheel, but not willjpaliased lists
If you find you are reusing a list of commands quite a lot, you can create a list of aliases.
Cmnd_Alias BACKUP = \ /sbin/dump,\ /sbin/restore,\ /sbin/mt willjp ALL=BACKUP # allow willjp acess to /sbin/dump, /sbin/restore, /sbin/mt
References
https://www.youtube.com/watch?v=o0purspHg-o sudo: you're doing it wrong (talk by michael w lucas)