logging on sudo.....

Nasır Yılmaz (ATM/Network Grp. Bşk. Sistem Mühendisi) nyilmaz at iski.gov.tr
Wed May 22 00:40:02 EDT 2002


Plaese  help me I realy need to help about sudo 
I want sudo looging all users commands to one files and I still dont
understand how sudo keps logs


-----Original Message-----
From: sudo-users-request at sudo.ws [mailto:sudo-users-request at sudo.ws]
Sent: Tuesday, May 21, 2002 9:02 PM
To: sudo-users at sudo.ws
Subject: sudo-users digest, Vol 1 #336 - 3 msgs


Send sudo-users mailing list submissions to
	sudo-users at sudo.ws

To subscribe or unsubscribe via the World Wide Web, visit
	http://www.sudo.ws/mailman/listinfo/sudo-users
or, via email, send a message with subject or body 'help' to
	sudo-users-request at sudo.ws

You can reach the person managing the list at
	sudo-users-admin at sudo.ws

When replying, please edit your Subject line so it is more specific
than "Re: Contents of sudo-users digest..."


Today's Topics:

   1. sudo error:  Permission denied. (King, Daniel)
   2. sudo error:  Permission denied. (King, Daniel)
   3. Re: sudo error: Permission denied. (Todd C. Miller)

--__--__--

Message: 1
Date: Mon, 20 May 2002 12:12:50 -0500
From: "King, Daniel" <Daniel.King at fiserv.com>
Subject: sudo error:  Permission denied.
To: "sudo-users at sudo.ws" <sudo-users at sudo.ws>

I'm compiling sudo 1.6.6, with:
 
./configure --prefix=/usr/local --exec-prefix=/usr/local
--with-logpath=/usr/local/var/sudo.log --sysconfdir=/usr/local/etc
--with-loggingg=file --with-timedir=/usr/local/var
 
But, when I go to run sudo, I get:
 
sudo: can't open /usr/local/etc/sudoers: Permission denied
 
Any ideas?  Thanks in advance.
 
A. Daniel King, System Analyst
Fiserv - Atlanta Center
1475 Peachtree Street, NE - Suite 700
Atlanta, GA 30309
404-873-2851 x2034
 

--__--__--

Message: 2
Date: Mon, 20 May 2002 12:25:32 -0500
From: "King, Daniel" <Daniel.King at fiserv.com>
Subject: sudo error:  Permission denied.
To: "sudo-users at sudo.ws" <sudo-users at sudo.ws>

I just figured out that sudo requires that the parent directories of sudoers
must be world-execute.  Perhaps this is for navigation purposes?
 
I'd like to put this in a completely hidden location ... ideas?  I'd like
users not to know that they are even using sudo.
 
A. Daniel King, System Analyst
Fiserv - Atlanta Center
1475 Peachtree Street, NE - Suite 700
Atlanta, GA 30309
404-873-2851 x2034
 

--__--__--

Message: 3
To: "King, Daniel" <Daniel.King at fiserv.com>
cc: "sudo-users at sudo.ws" <sudo-users at sudo.ws>
Subject: Re: sudo error: Permission denied. 
Date: Mon, 20 May 2002 14:47:05 -0600
From: "Todd C. Miller" <Todd.Miller at courtesan.com>

In message <EX-20020520-152548-0006 at exchange.fiserv-missive1.fiserv.net>
	so spake "King, Daniel" (Daniel.King):

> I just figured out that sudo requires that the parent directories of
sudoers 
> must be world-execute.  Perhaps this is for navigation purposes?

By default sudo changes to uid 1 when reading the sudoers file and
relies on group read permissions.  This is to make NFS-mounted
sudoer files possible.  You can change this by running configure
with --with-sudoers-mode=0400

 - todd


--__--__--

____________________________________________________________ 
sudo-users mailing list <sudo-users at sudo.ws>
For list information, options, or to unsubscribe, visit:
http://www.sudo.ws/mailman/listinfo/sudo-users

End of sudo-users Digest




More information about the sudo-users mailing list