Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to see actual username who logged in as root with sudo
Top Forums Shell Programming and Scripting How to see actual username who logged in as root with sudo Post 302580853 by daggulasreedhar on Saturday 10th of December 2011 09:18:13 AM
Old 12-10-2011
Dear Ramana,

You might not be able to see because in your system sudo log is not configured.
You have to configure in syslog.conf to see the details. So please add the below lines in /etc/syslog.conf file and restart syslog.

# This logs successful and failed sudo attempts to the file /var/log/sudo.log
local2.debug /var/log/sudo.log

You add the above configuration in syslog.conf and restart syslog ... and make sure to touch the /var/log/sudo.log file and give full permissions. So that you can see these logs.

Cheers
Sreedhar
This User Gave Thanks to daggulasreedhar For This Post:
ramanaraoeee
 

9 More Discussions You Might Find Interesting

1. Linux

sudo, root password

Hi all.. I'm secering a RH 2.1 server, with gnome (not my choice...), as X manager. Is ther anyway to get sudo ask for root password other then the actual user's password? Like when you launch the graphical IHM to create a new user, it asks for root's password? Is there a way to do the same... (5 Replies)
Discussion started by: penguin-friend
5 Replies

2. Shell Programming and Scripting

From csh script, how to know if logged in as root?

I know that when I'm logged in as root in (Solaris or Linux), I would get the # sign at the terminal screen. But from a csh script, how do I know if I'm running that script logged in as root or not? (3 Replies)
Discussion started by: newbie09
3 Replies

3. UNIX for Advanced & Expert Users

How can I get sudo -u <username> to load that users profile on HP-UX

I am running a serverapplication on a HP-UX machine where I need to handle some of the commands as a specified user called "druser". When I log on as this user with the command; sudo -u druser -sit starts an instance of the shell as that user. However, it doesn't load that users .profile from... (1 Reply)
Discussion started by: ukiome
1 Replies

4. Shell Programming and Scripting

Get current logged in user from a script run as root.

Ok, so, in order to install some dependencies of a program I made, a script has to be run as root. The thing is that I have to copy some things into the home folder of currently logged in user, but the variable $HOME returns '/root' and the $USER returns 'root' :( Is there any way to see who is... (7 Replies)
Discussion started by: hakermania
7 Replies

5. UNIX for Advanced & Expert Users

Need to see what ther Root users are doing while logged in to terminal

I have a server that i need to monitor what the .bash_history file for the root user already logged in to the server I am logged in as root and have another person logged on as root and i want to monitor what they are doing: root ? :0 2010-10-19 11:54 root + pts/1 ... (1 Reply)
Discussion started by: calicowboy54
1 Replies

6. UNIX for Dummies Questions & Answers

sudo/root access

I'm actually working with a Ubuntu-System here and have a question about executing a command with 'sudo'. I tried and got a error message like "not allowed". After this I logged in with 'sudo -s' and typed the command without 'sudo'. This worked well. Can please somebody explain me this... (0 Replies)
Discussion started by: daWonderer
0 Replies

7. UNIX for Dummies Questions & Answers

Sudo to delegate permission from non-root user to another non-root user

I've been through many threads before i decide to create a separate thread. I can't really find the solution to my (simple) problem. Here's what I'm trying to achieve: As "canar" user I want to run a command, let's say "/opt/ocaml/bin/ocaml" as "duck" user. The only to achieve this is to... (1 Reply)
Discussion started by: canar
1 Replies

8. UNIX for Dummies Questions & Answers

sudo on becoming root

Anyone able to explain why if i run "sudo -i" or "sudo -s" i am able to get into root by just keying my own password? How to avoid this from happening coz i need all the users to use su - only. (2 Replies)
Discussion started by: timmywong
2 Replies

9. Red Hat

Sudo to user other than root but do not allow sudo to root

I have a set of RHEL 5 boxes running our ERP software on Oracle databases. I need to allow my DBA's to su to oracle and one other account (banner) without knowing the oracle or banner password. But I need to prevent them from su'ing to any other user especially root. I only want them to be able to... (1 Reply)
Discussion started by: westmoreland
1 Replies

LEARN ABOUT OSF1

syslog.conf

syslog.conf(4)						     Kernel Interfaces Manual						    syslog.conf(4)

NAME

       syslog.conf - syslogd configuration file

SYNOPSIS

       facility.severity	     destination  Where: Is part of the system generating the message, specified in /usr/include/sys/syslog_pri.h.
       See also the syslogd(8) reference page.	The severity level, which can be emerg, alert, crit, err, warning, notice, info,  or  debug.   See
       /usr/include/sys/syslog_pri.h.

	      The  syslogd  daemon  logs  all  messages of the specified severity level plus all messages of greater severity. For example, if you
	      specify level err, all messages of levels err, crit, alert, and emerg or panic are logged.  A local file pathname to a log  file,  a
	      host  name  for  remote logging or a list of users.  In the latter case the users will receive messages when they are logged in.	An
	      asterisk (*) causes a message to be sent to all users who are currently logged in.

DESCRIPTION

       The /etc/syslog.conf file is a system file that enables you to configure or filter events that are to be logged by syslogd. You can specify
       more than one facility and its severity level by separating them with semicolons.

       You can specify more than one facility logs to the same file by separating the facilities with commas, as shown in the EXAMPLES section.

       The  syslogd  daemon ignores blank lines and lines that begin with an octothorpe (#). You can specify # as the first character in a line to
       include comments in the file or to disable an entry. The facility and severity level are separated from the destination by one or more  tab
       characters.

       If  you	want the syslogd daemon to use a configuration file other than the default, you must specify the file name with the following com-
       mand: # syslogd -f config_file

   Daily Log Files
       You can specify in the /etc/syslog.conf file that the syslogd daemon create daily log files. To create daily log files, use  the  following
       syntax  to specify the path name of the message destination: /var/adm/syslog.dated/ { file} The file variable specifies the name of the log
       file, for example, mail.log or kern.log.  If you specify a /var/adm/syslog.dated/file path name destination, each day  the  syslogd  daemon
       creates	a  sub-directory  under  the  /var/adm/syslog.dated  directory	and  a	log file in the sub-directory, using the following syntax:
       /var/adm/syslog.dated/ date / file Where: The date variable specifies the day, month, and time that the log file  was  created.	 The  file
       variable  specifies  the name of the log file you previously specified in the /etc/syslog.conf file.  The syslogd daemon automatically cre-
       ates a new date directory every 24 hours and also when you boot the system. The current directory is a link to the latest  date	directory.
       To get the latest logs, you only need to reference the /var/adm/syslog.dated/current directory.

EXAMPLES

       The  following  is  a  sample /etc/syslog.conf file: # # syslogd config file # # facilities: kern user mail daemon auth syslog lpr binary #
       priorities: emerg  alert  crit  err  warning  notice  info  debug  #  kern.debug  /var/adm/syslog.dated/kern.log  user.debug  /var/adm/sys-
       log.dated/user.log  daemon.debug  /var/adm/syslog.dated/daemon.log  auth.crit;syslog.debug  /var/adm/syslog.dated/syslog.log mail,lpr.debug
       /var/adm/syslog.dated/misc.log msgbuf.err /var/adm/crash.dated/msgbuf.savecore kern.debug /var/adm/messages kern.debug /dev/console *.emerg
       *

FILES

       /etc/syslog.conf
       /etc/syslog.auth - Authorization file for remote logging.
       /usr/include/sys/syslog_pri.h - Common components of a syslog event log record.

RELATED INFORMATION

       Commands: /usr/sbin/syslogd(8), /usr/sbin/binlogd(8)

       System Administration delim off

																    syslog.conf(4)
All times are GMT -4. The time now is 05:00 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy