[sudo-users] 1.9.13 SUDO Error with LogSubcmds?
Dolan, Sean
sean.dolan at lmco.com
Mon Feb 20 07:09:08 MST 2023
Good Day
I am using 1.9.13 on RedHat 7.9, SELINUX is enabled. For testing purposes, I want to simply allow a user to do a "sudo su -" to become root. I want to see the "log_subcmds" directive in action. When I have the "log_subcmds" in the sudoers, the following errors occur: (If I comment it out, everything works fine and I can sudo su - )
[usean at u-sean1 ~]$ sudo su -
[sudo] password for usean:
Last login: Mon Feb 20 06:21:34 MST 2023 on pts/2
sudo: argv[0] mismatch, expected "/bin/bash", got "-bash"
Killed
I even tried to do a command AS ROOT:
[root at u-sean1 log]# sudo su -
Last login: Mon Feb 20 06:36:01 MST 2023 on pts/2
sudo: argv[0] mismatch, expected "/bin/bash", got "-bash"
Killed
/etc/sudoers
Cmnd_Alias SU = /bin/su, /usr/bin/su, /sbin/su
Cmnd_Alias SUROOT = /bin/su -, /usr/bin/su -, /sbin/su -
Defaults env_keep += "LANG LANGUAGE LINGUAS LC_* _XKB_CHARSET"
Defaults env_keep += "QTDIR KDEDIR"
Defaults log_output
Defaults!/usr/bin/sudoreplay !log_output
Defaults!/usr/local/bin/sudoreplay !log_output
Defaults!ALL !log_output
Defaults!/bin/su log_output
Defaults log_servers=10.0.4.146
Defaults log_subcmds
root ALL=(ALL:ALL) ALL
%usean ALL =(root) NOPASSWD: SU, SUROOT
More information about the sudo-users
mailing list