[sudo-users] Fwd: SUDO package for Sparc version 1.6.8p12
Chris Jepeway
jepeway at blasted-heath.com
Tue Jun 26 20:44:35 EDT 2007
Can anybody help Tim out? My involvement with sudo
predates the NOEXEC tag.
Chris.
Begin forwarded message:
> From: "Manochehri, Tim" <Tim.Manochehri at blueshieldca.com>
> Date: June 19, 2007 7:01:52 PM EDT
> To: "jepeway" <www at blasted-heath.com>
> Subject: SUDO package for Sparc version 1.6.8p12
>
> Hey Chris,
>
> I am having an issue with 'sudo' when NOEXEC is enabled.
>
> Here is my sudoers file.
>
> # sudoers file.
> # This file MUST be edited with the 'visudo' command as root.
> # User privilege specification
> root ALL=(ALL) ALL
> %sysadmin ALL=(ALL) ALL
> %tsadmin ALL=(iwui) ALL, (root) /usr/bin/su - iwui, (root)
> /usr/bin/su - tsadmin, (root) /etc/init.d/iw* st*, (root)
> /local/iw-home/private/bin/iwfsfix, (root)
> /local/iw-home/private/bin/iwfsck, (root) /local/iw-home/bin/iwreset,
> (root) /local/iw-home/bin/iwgroup, (root) /etc/init.d/iw.tsreport,
> (root) /local/iw-home/iw-perl/bin/iwperl, (root)
> /local/iw-home/bin/make_toolkit.ipl, (root)
> /local/iw-home/eventsubsystem/bin/eventsubd.sh, (root) NOEXEC:
> /usr/bin/vi /local/iw-home/httpd/iw-bin/changePassword.cgi, (root)
> NOEXEC: /usr/bin/vi /local/iw-home/httpd/iw-bin/changePassword.cgi
>
>
> When a user that is in the group tsadmin does a sudo vi with NOEXEC
> enabled.
>
> I get this.
>
> # sudo /usr/bin/vi /local/iw-home/httpd/iw-bin/changePassword.cgi
> Password:
> ld.so.1: /usr/bin/vi: fatal: libgcc_s.so.1: open failed: No such file
> or
> directory
> Killed
>
> id
> uid=67128(testme) gid=67002(tsadmin)
>
> Any ideas?
>
>
> Tim Manochehri
> Sr. Unix Systems Engineer
> Bluedof California {EDH}
> 916-350-8819
>
> Confidentiality Notice: This e-mail message, including attachments, is
> for the sole use of the intended recipient(s) and may contain
> confidential and privileged information. Any unauthorized review, use,
> disclosure or distribution is prohibited. If you are not the intended
> recipient, please contact the sender by reply e-mail and destroy all
> copies of the original message.
>
>
More information about the sudo-users
mailing list