Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to configure sudoers in order to hide some sudo commands.
Operating Systems Linux How to configure sudoers in order to hide some sudo commands. Post 302632005 by fefafefa on Saturday 28th of April 2012 07:16:08 PM
Old 04-28-2012
Question How to configure sudoers in order to hide some sudo commands.
Hi Unix.com people! Smilie

My question, I think, it's easy to understand.

I want to configure my sudoers file (/etc/sudoers) in order
to hide automatically, some repetitive and annoying commands
to be listed on auth.log (/var/log/auth.log).

Anyone know something, or know where I can find
more info about it?

Thanks in advance for your effort.
See you! Smilie

P.D.: the English language it is not my native language,
so sorry if it's a little bit tricky to understand it.
Last edited by fefafefa; 04-28-2012 at 10:47 PM.. Reason: Try to put some order on the post. :)
 

10 More Discussions You Might Find Interesting

1. Solaris

how to configure the sudo file in solaris

Hi all, Please help me how to configure the sudo for users and access for perticular commands,groups ....etc., This help really appriciated regards Krishna (2 Replies)
Discussion started by: krishna176
2 Replies

2. Shell Programming and Scripting

Hide my shell commands

I am writing a tool that connects using SSH to a remote server and perform some actions (through root) However - I would like to hide my operations so they will be hard to track. I tried STRACE on the SSHD process and saw all the traffic going there so I am quite transparent to STRACE ... (1 Reply)
Discussion started by: yamsin789
1 Replies

3. Solaris

sudoers and sudo

Hi, on solaris 10, I have two users : user1 and user2 I want to create User_Alias and Cmnd_Alias to allow them to execute a command without prompting for sudo password. command I want these users should be able to run is '/usr/bin/su - abcd' . Also user1 and 2 need not type the 'abcd'... (6 Replies)
Discussion started by: upengan78
6 Replies

4. UNIX for Dummies Questions & Answers

Hide network mount from df commands

I am trying to write a script that mounts a network drive. The network drive must be as secure and hidden as possible, including being hidden from commands such as df, etc. Any suggestions? (4 Replies)
Discussion started by: CBarraford
4 Replies

5. HP-UX

sudo/sudoers

Dear folks. Considering PCIDSS standards, i have requirment to use sudo(ers) to log everything a certain user executes with root privileges. Now, for an admin it's just a pain in the ass to prefix every command with sudo. Only way i can think of is making .aliases and with some awk magic... (6 Replies)
Discussion started by: Peasant
6 Replies

6. Programming

Using Commands over SSH using Sudo

Is there a way to transfer my sudo password via ssh so that I can copy files remotely and pass them locally, so: cat sudo-passwd-file|ssh -t user@10.7.0.180 'sudo find / -depth|cpio -oacv|gzip' > /path/to/dir/file.cpio.gz I am in the process of a creating a script. Everytime I try and just... (16 Replies)
Discussion started by: metallica1973
16 Replies

7. Solaris

Sudo Privileges & Sudoers Group

I'm looking for some suggestions to accomplish what a specific user needs, without adding them to the "sudoers" group. I have X user, that is requesting to be able to change file permissions on items owned by others and search directories where X user doesn't have access. I'm open to any... (2 Replies)
Discussion started by: Nvizn
2 Replies

8. Programming

How to hide from UNIX strings - obfuscate or hide a literal or constant?

Hi, I need to somehow pipe the password to a command and run some SQL, for example, something like echo $password | sqlplus -s system @query01.sql To make it not so obvious, I decided to try out writing a small C program that basically just do echo $password. So now I just do x9.out | sqlplus... (8 Replies)
Discussion started by: newbie_01
8 Replies

9. Red Hat

How to disable sudo -i in sudoers file for users?

All, I need to disable "sudo -i" and "su - " for all servers in our environment, We want to make sure no one run commands or delete files across environment using switching to root account. can you guys please lets me know if this is achievable. Thanks and Regards shekar (2 Replies)
Discussion started by: shekar777
2 Replies

10. UNIX and Linux Applications

LDAP - sudoers and the nopasswd flag - How can i set some commands for wheelgroup without password?

Hello :) we use LDAP with sudoers about 4 years. Works fine. But we have one problem with members of the admingroup (wheel). This users can do every command with sudo and with there privat password. But when they also are member to another special group, like sysadmin: Sysadmin is allowed to... (0 Replies)
Discussion started by: darktux
0 Replies

LEARN ABOUT REDHAT

pam_timestamp

pam_timestamp(8)					   System Administrator's Manual					  pam_timestamp(8)

NAME

       pam_timestamp - authenticate using cached successful authentication attempts

SYNOPSIS

       auth sufficient /lib/security/pam_timestamp.so
       session optional /lib/security/pam_timestamp.so

DESCRIPTION

       In  a nutshell, pam_timestamp caches successful authentication attempts, and allows you to use a recent successful attempt as the basis for
       authentication.

       When an application opens a session using pam_timestamp, a timestamp file is created in the timestampdir directory for the user.   When	an
       application attempts to authenticate the user, a pam_timestamp will treat a sufficiently- recent timestamp file as grounds for succeeding.

ARGUMENTS

       debug  turns on debugging via syslog(3).

       timestampdir=name
	      tells pam_timestamp.so where to place and search for timestamp files.  This should match the directory configured for sudo(1) in the
	      sudoers(5) file.

       timestamp_timeout=number
	      tells pam_timestamp.so how long it should treat timestamp files as valid after their last modification date.  This should match  the
	      value configured for sudo(1) in the sudoers(5) file.

       verbose
	      attempt to inform the user when access is granted.

EXAMPLE

       /etc/pam.d/some-config-tool:
       auth sufficient /lib/security/pam_timestamp.so verbose auth required   /lib/security/pam_unix.so
       session required /lib/security/pam_permit.so session optional /lib/security/pam_timestamp.so

CAVEATS

       Users  can  get	confused  when	they  aren't always asked for passwords when running a given program.  Some users reflexively begin typing
       information before noticing that it's not being asked for.

SEE ALSO

       pam_timestamp_check(8)

BUGS

       Let's hope not, but if you find any, please email the author.

AUTHOR

       Nalin Dahyabhai <nalin@redhat.com>

Red Hat Linux							    2002/02/07							  pam_timestamp(8)
All times are GMT -4. The time now is 06:58 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy