logging on sudo.....
Nasır Yılmaz (ATM/Network Grp. Bşk. Sistem Mühendisi)
nyilmaz at iski.gov.tr
Wed May 22 00:40:02 EDT 2002
Plaese help me I realy need to help about sudo
I want sudo looging all users commands to one files and I still dont
understand how sudo keps logs
-----Original Message-----
From: sudo-users-request at sudo.ws [mailto:sudo-users-request at sudo.ws]
Sent: Tuesday, May 21, 2002 9:02 PM
To: sudo-users at sudo.ws
Subject: sudo-users digest, Vol 1 #336 - 3 msgs
Send sudo-users mailing list submissions to
sudo-users at sudo.ws
To subscribe or unsubscribe via the World Wide Web, visit
http://www.sudo.ws/mailman/listinfo/sudo-users
or, via email, send a message with subject or body 'help' to
sudo-users-request at sudo.ws
You can reach the person managing the list at
sudo-users-admin at sudo.ws
When replying, please edit your Subject line so it is more specific
than "Re: Contents of sudo-users digest..."
Today's Topics:
1. sudo error: Permission denied. (King, Daniel)
2. sudo error: Permission denied. (King, Daniel)
3. Re: sudo error: Permission denied. (Todd C. Miller)
--__--__--
Message: 1
Date: Mon, 20 May 2002 12:12:50 -0500
From: "King, Daniel" <Daniel.King at fiserv.com>
Subject: sudo error: Permission denied.
To: "sudo-users at sudo.ws" <sudo-users at sudo.ws>
I'm compiling sudo 1.6.6, with:
./configure --prefix=/usr/local --exec-prefix=/usr/local
--with-logpath=/usr/local/var/sudo.log --sysconfdir=/usr/local/etc
--with-loggingg=file --with-timedir=/usr/local/var
But, when I go to run sudo, I get:
sudo: can't open /usr/local/etc/sudoers: Permission denied
Any ideas? Thanks in advance.
A. Daniel King, System Analyst
Fiserv - Atlanta Center
1475 Peachtree Street, NE - Suite 700
Atlanta, GA 30309
404-873-2851 x2034
--__--__--
Message: 2
Date: Mon, 20 May 2002 12:25:32 -0500
From: "King, Daniel" <Daniel.King at fiserv.com>
Subject: sudo error: Permission denied.
To: "sudo-users at sudo.ws" <sudo-users at sudo.ws>
I just figured out that sudo requires that the parent directories of sudoers
must be world-execute. Perhaps this is for navigation purposes?
I'd like to put this in a completely hidden location ... ideas? I'd like
users not to know that they are even using sudo.
A. Daniel King, System Analyst
Fiserv - Atlanta Center
1475 Peachtree Street, NE - Suite 700
Atlanta, GA 30309
404-873-2851 x2034
--__--__--
Message: 3
To: "King, Daniel" <Daniel.King at fiserv.com>
cc: "sudo-users at sudo.ws" <sudo-users at sudo.ws>
Subject: Re: sudo error: Permission denied.
Date: Mon, 20 May 2002 14:47:05 -0600
From: "Todd C. Miller" <Todd.Miller at courtesan.com>
In message <EX-20020520-152548-0006 at exchange.fiserv-missive1.fiserv.net>
so spake "King, Daniel" (Daniel.King):
> I just figured out that sudo requires that the parent directories of
sudoers
> must be world-execute. Perhaps this is for navigation purposes?
By default sudo changes to uid 1 when reading the sudoers file and
relies on group read permissions. This is to make NFS-mounted
sudoer files possible. You can change this by running configure
with --with-sudoers-mode=0400
- todd
--__--__--
____________________________________________________________
sudo-users mailing list <sudo-users at sudo.ws>
For list information, options, or to unsubscribe, visit:
http://www.sudo.ws/mailman/listinfo/sudo-users
End of sudo-users Digest
More information about the sudo-users
mailing list