Different log files in sudo?
felipe.salum at eds.com
Mon Dec 17 13:31:33 EST 2001
The problem here is to tell to all the administrators to use sudo for each
command that they need to do with super-user privileges :)
We are going to make a plan so they will must use sudo for each command or
they will have problems like you said, they need to follow the rules!
From: George Meharry II [mailto:gmeharry at yahoo.com]
Sent: Friday, December 14, 2001 11:13 AM
To: sudo-users at sudo.ws
Subject: Fwd: Different log files in sudo?
The problem you are presenting is one of culture -
that is the culture of UNIX administration. The law
MUST be laid down such that:
"thou shall not do 'sudo su -' nor shall thou do 'sudo
Now it's always been a cop-out of a UNIX admin that "I
can't do such-and-such command using sudo" ect. This
is because the UNIX admin has gotten complacent in
their usage/knowledge of UNIX regular expression.
There's ALWAYS a way to do ANY command via sudo so it
gets logged! You've just got to change the culture.
Make it an ISO requirement! In doing so, it is now a
"business rule" and there are now penalties for not
following the ISO documentation ...
and so on, and so on ... It won't be an easy task, but
it is one worth pursuing!
FWIW, take with a grain of salt.
The soapbox has been back to the masses .. :-)
Note: forwarded message attached.
Do You Yahoo!?
Check out Yahoo! Shopping and Yahoo! Auctions for all of
your unique holiday gifts! Buy at http://shopping.yahoo.com
or bid at http://auctions.yahoo.com
More information about the sudo-users