[sudo-users] sudo and friends

Huibert.Kivits at mail.ing.nl Huibert.Kivits at mail.ing.nl
Fri Jan 19 11:02:22 EST 2007


Hi Jan,

Did you use "which sudoedit" to find out where the sudoedit command is located? If this would be /usr/local/bin, you must authorize for /usr/local/bin/sudoedit. Instead of /usr/bin/sudoedit.

Met vriendelijke groeten / With kind regards / Mit freundlichen Grüßen / Med vänliga hälsningar / nuosirdziausi linkejimai, 


Huibert Kivits
ING



-----Oorspronkelijk bericht-----
Van: sudo-users-bounces at courtesan.com [mailto:sudo-users-bounces at courtesan.com] Namens jan kalcic
Verzonden: vrijdag 19 januari 2007 16:50
Aan: Michael Potter
CC: sudo-users at sudo.ws
Onderwerp: Re: [sudo-users] sudo and friends


Hi All,

I've been playing with sudo and I found that using the absolute path of the command: user ALL = /usr/bin/sudoedit /etc/samba/*

I get the error:
Sorry, user user is not allowed to execute 'sudoedit /etc/samba/smb.conf' as root on host.

whereas if I put only the command without the path it works: user ALL = sudoedit /etc/samba/*

As said this is not secure but it's the only which works. I don't understand.

I addition, I set vi instead of sudoedit just to try and it doesn't work at all: user ALL = /usr/bin/vi /etc/samba/*


:wq

____________________________________________________________ 
sudo-users mailing list <sudo-users at sudo.ws>
For list information, options, or to unsubscribe, visit: http://www.sudo.ws/mailman/listinfo/sudo-users
-----------------------------------------------------------------
ATTENTION:
The information in this electronic mail message is private and
confidential, and only intended for the addressee. Should you
receive this message by mistake, you are hereby notified that
any disclosure, reproduction, distribution or use of this
message is strictly prohibited. Please inform the sender by
reply transmission and delete the message without copying or
opening it.

Messages and attachments are scanned for all viruses known.
If this message contains password-protected attachments, the
files have NOT been scanned for viruses by the ING mail domain.
Always scan attachments before opening them.
-----------------------------------------------------------------





More information about the sudo-users mailing list