Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to configure sudoers in order to hide some sudo commands.
Operating Systems Linux How to configure sudoers in order to hide some sudo commands. Post 302632005 by fefafefa on Saturday 28th of April 2012 07:16:08 PM
Old 04-28-2012
Question How to configure sudoers in order to hide some sudo commands.
Hi Unix.com people! Smilie

My question, I think, it's easy to understand.

I want to configure my sudoers file (/etc/sudoers) in order
to hide automatically, some repetitive and annoying commands
to be listed on auth.log (/var/log/auth.log).

Anyone know something, or know where I can find
more info about it?

Thanks in advance for your effort.
See you! Smilie

P.D.: the English language it is not my native language,
so sorry if it's a little bit tricky to understand it.
Last edited by fefafefa; 04-28-2012 at 10:47 PM.. Reason: Try to put some order on the post. :)
 

10 More Discussions You Might Find Interesting

1. Solaris

how to configure the sudo file in solaris

Hi all, Please help me how to configure the sudo for users and access for perticular commands,groups ....etc., This help really appriciated regards Krishna (2 Replies)
Discussion started by: krishna176
2 Replies

2. Shell Programming and Scripting

Hide my shell commands

I am writing a tool that connects using SSH to a remote server and perform some actions (through root) However - I would like to hide my operations so they will be hard to track. I tried STRACE on the SSHD process and saw all the traffic going there so I am quite transparent to STRACE ... (1 Reply)
Discussion started by: yamsin789
1 Replies

3. Solaris

sudoers and sudo

Hi, on solaris 10, I have two users : user1 and user2 I want to create User_Alias and Cmnd_Alias to allow them to execute a command without prompting for sudo password. command I want these users should be able to run is '/usr/bin/su - abcd' . Also user1 and 2 need not type the 'abcd'... (6 Replies)
Discussion started by: upengan78
6 Replies

4. UNIX for Dummies Questions & Answers

Hide network mount from df commands

I am trying to write a script that mounts a network drive. The network drive must be as secure and hidden as possible, including being hidden from commands such as df, etc. Any suggestions? (4 Replies)
Discussion started by: CBarraford
4 Replies

5. HP-UX

sudo/sudoers

Dear folks. Considering PCIDSS standards, i have requirment to use sudo(ers) to log everything a certain user executes with root privileges. Now, for an admin it's just a pain in the ass to prefix every command with sudo. Only way i can think of is making .aliases and with some awk magic... (6 Replies)
Discussion started by: Peasant
6 Replies

6. Programming

Using Commands over SSH using Sudo

Is there a way to transfer my sudo password via ssh so that I can copy files remotely and pass them locally, so: cat sudo-passwd-file|ssh -t user@10.7.0.180 'sudo find / -depth|cpio -oacv|gzip' > /path/to/dir/file.cpio.gz I am in the process of a creating a script. Everytime I try and just... (16 Replies)
Discussion started by: metallica1973
16 Replies

7. Solaris

Sudo Privileges & Sudoers Group

I'm looking for some suggestions to accomplish what a specific user needs, without adding them to the "sudoers" group. I have X user, that is requesting to be able to change file permissions on items owned by others and search directories where X user doesn't have access. I'm open to any... (2 Replies)
Discussion started by: Nvizn
2 Replies

8. Programming

How to hide from UNIX strings - obfuscate or hide a literal or constant?

Hi, I need to somehow pipe the password to a command and run some SQL, for example, something like echo $password | sqlplus -s system @query01.sql To make it not so obvious, I decided to try out writing a small C program that basically just do echo $password. So now I just do x9.out | sqlplus... (8 Replies)
Discussion started by: newbie_01
8 Replies

9. Red Hat

How to disable sudo -i in sudoers file for users?

All, I need to disable "sudo -i" and "su - " for all servers in our environment, We want to make sure no one run commands or delete files across environment using switching to root account. can you guys please lets me know if this is achievable. Thanks and Regards shekar (2 Replies)
Discussion started by: shekar777
2 Replies

10. UNIX and Linux Applications

LDAP - sudoers and the nopasswd flag - How can i set some commands for wheelgroup without password?

Hello :) we use LDAP with sudoers about 4 years. Works fine. But we have one problem with members of the admingroup (wheel). This users can do every command with sudo and with there privat password. But when they also are member to another special group, like sysadmin: Sysadmin is allowed to... (0 Replies)
Discussion started by: darktux
0 Replies

LEARN ABOUT OSF1

syslog.conf

syslog.conf(4)						     Kernel Interfaces Manual						    syslog.conf(4)

NAME

       syslog.conf - syslogd configuration file

SYNOPSIS

       facility.severity	     destination  Where: Is part of the system generating the message, specified in /usr/include/sys/syslog_pri.h.
       See also the syslogd(8) reference page.	The severity level, which can be emerg, alert, crit, err, warning, notice, info,  or  debug.   See
       /usr/include/sys/syslog_pri.h.

	      The  syslogd  daemon  logs  all  messages of the specified severity level plus all messages of greater severity. For example, if you
	      specify level err, all messages of levels err, crit, alert, and emerg or panic are logged.  A local file pathname to a log  file,  a
	      host  name  for  remote logging or a list of users.  In the latter case the users will receive messages when they are logged in.	An
	      asterisk (*) causes a message to be sent to all users who are currently logged in.

DESCRIPTION

       The /etc/syslog.conf file is a system file that enables you to configure or filter events that are to be logged by syslogd. You can specify
       more than one facility and its severity level by separating them with semicolons.

       You can specify more than one facility logs to the same file by separating the facilities with commas, as shown in the EXAMPLES section.

       The  syslogd  daemon ignores blank lines and lines that begin with an octothorpe (#). You can specify # as the first character in a line to
       include comments in the file or to disable an entry. The facility and severity level are separated from the destination by one or more  tab
       characters.

       If  you	want the syslogd daemon to use a configuration file other than the default, you must specify the file name with the following com-
       mand: # syslogd -f config_file

   Daily Log Files
       You can specify in the /etc/syslog.conf file that the syslogd daemon create daily log files. To create daily log files, use  the  following
       syntax  to specify the path name of the message destination: /var/adm/syslog.dated/ { file} The file variable specifies the name of the log
       file, for example, mail.log or kern.log.  If you specify a /var/adm/syslog.dated/file path name destination, each day  the  syslogd  daemon
       creates	a  sub-directory  under  the  /var/adm/syslog.dated  directory	and  a	log file in the sub-directory, using the following syntax:
       /var/adm/syslog.dated/ date / file Where: The date variable specifies the day, month, and time that the log file  was  created.	 The  file
       variable  specifies  the name of the log file you previously specified in the /etc/syslog.conf file.  The syslogd daemon automatically cre-
       ates a new date directory every 24 hours and also when you boot the system. The current directory is a link to the latest  date	directory.
       To get the latest logs, you only need to reference the /var/adm/syslog.dated/current directory.

EXAMPLES

       The  following  is  a  sample /etc/syslog.conf file: # # syslogd config file # # facilities: kern user mail daemon auth syslog lpr binary #
       priorities: emerg  alert  crit  err  warning  notice  info  debug  #  kern.debug  /var/adm/syslog.dated/kern.log  user.debug  /var/adm/sys-
       log.dated/user.log  daemon.debug  /var/adm/syslog.dated/daemon.log  auth.crit;syslog.debug  /var/adm/syslog.dated/syslog.log mail,lpr.debug
       /var/adm/syslog.dated/misc.log msgbuf.err /var/adm/crash.dated/msgbuf.savecore kern.debug /var/adm/messages kern.debug /dev/console *.emerg
       *

FILES

       /etc/syslog.conf
       /etc/syslog.auth - Authorization file for remote logging.
       /usr/include/sys/syslog_pri.h - Common components of a syslog event log record.

RELATED INFORMATION

       Commands: /usr/sbin/syslogd(8), /usr/sbin/binlogd(8)

       System Administration delim off

																    syslog.conf(4)
All times are GMT -4. The time now is 11:02 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy