[sudo-users] Authentication as "original" username

Todd C. Miller Todd.Miller at courtesan.com
Wed Oct 10 21:59:18 EDT 2012


I don't think there is a way to do exactly what you want.  However,
you may be interested in the Solaris Privilege Set support present
in sudo 1.8.6 and above.  It allows you to do some of the same
things as Solaris RBAC (which also uses privilege sets) such as run
commands with elevated, fine-grained privileges, without giving
full root access.

It might not be exactly what you are looking for since you appear
to want to run a shell and there's not currently a way to choose
from multiple privilege sets when they are bound to duplicate
commands.

For more information, see:
http://www.sudo.ws/sudo/man/1.8.6/sudoers.man.html#x536f6c617269735f507269765f53706563

 - todd


More information about the sudo-users mailing list