[sudo-users] passwd -l, passwd -u, passwd -S in sudoer

christian.peper at kpn.com christian.peper at kpn.com
Tue Apr 15 09:42:47 EDT 2008

> -----Original Message-----
> From: sudo-users-bounces at courtesan.com 
> [mailto:sudo-users-bounces at courtesan.com] On Behalf Of Greg Harrington
> Sent: Tuesday, April 15, 2008 6:37 AM
> To: sudo-users at sudo.ws
> Subject: [sudo-users] passwd -l, passwd -u, passwd -S in sudoer
> HI i want the users in SYSOPS alias to be able to do 'sudo 
> passwd -l 'someuser' but they get Sorry, user 'me' is not 
> allowed to execute '/usr/bin/passwd -l 'someuser'' as root on 
> 'ourserver'
> this is in our sudoer file.
> User_Alias      SYSOPS = 'my user list"
> SYSOPS  ALL = /usr/bin/passwd [A-z]*, !/usr/bin/passwd root

Oh Greg, I just noticed this...

You are doing a "passwd -l <user>" but your sudoers permits only "passwd
<user>". As far as I know, the command must be an exact match...

Hope this helps,

More information about the sudo-users mailing list