Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to configure sudoers in order to hide some sudo commands.
Operating Systems Linux How to configure sudoers in order to hide some sudo commands. Post 302632005 by fefafefa on Saturday 28th of April 2012 07:16:08 PM
Old 04-28-2012
Question How to configure sudoers in order to hide some sudo commands.
Hi Unix.com people! Smilie

My question, I think, it's easy to understand.

I want to configure my sudoers file (/etc/sudoers) in order
to hide automatically, some repetitive and annoying commands
to be listed on auth.log (/var/log/auth.log).

Anyone know something, or know where I can find
more info about it?

Thanks in advance for your effort.
See you! Smilie

P.D.: the English language it is not my native language,
so sorry if it's a little bit tricky to understand it.
Last edited by fefafefa; 04-28-2012 at 10:47 PM.. Reason: Try to put some order on the post. :)
 

10 More Discussions You Might Find Interesting

1. Solaris

how to configure the sudo file in solaris

Hi all, Please help me how to configure the sudo for users and access for perticular commands,groups ....etc., This help really appriciated regards Krishna (2 Replies)
Discussion started by: krishna176
2 Replies

2. Shell Programming and Scripting

Hide my shell commands

I am writing a tool that connects using SSH to a remote server and perform some actions (through root) However - I would like to hide my operations so they will be hard to track. I tried STRACE on the SSHD process and saw all the traffic going there so I am quite transparent to STRACE ... (1 Reply)
Discussion started by: yamsin789
1 Replies

3. Solaris

sudoers and sudo

Hi, on solaris 10, I have two users : user1 and user2 I want to create User_Alias and Cmnd_Alias to allow them to execute a command without prompting for sudo password. command I want these users should be able to run is '/usr/bin/su - abcd' . Also user1 and 2 need not type the 'abcd'... (6 Replies)
Discussion started by: upengan78
6 Replies

4. UNIX for Dummies Questions & Answers

Hide network mount from df commands

I am trying to write a script that mounts a network drive. The network drive must be as secure and hidden as possible, including being hidden from commands such as df, etc. Any suggestions? (4 Replies)
Discussion started by: CBarraford
4 Replies

5. HP-UX

sudo/sudoers

Dear folks. Considering PCIDSS standards, i have requirment to use sudo(ers) to log everything a certain user executes with root privileges. Now, for an admin it's just a pain in the ass to prefix every command with sudo. Only way i can think of is making .aliases and with some awk magic... (6 Replies)
Discussion started by: Peasant
6 Replies

6. Programming

Using Commands over SSH using Sudo

Is there a way to transfer my sudo password via ssh so that I can copy files remotely and pass them locally, so: cat sudo-passwd-file|ssh -t user@10.7.0.180 'sudo find / -depth|cpio -oacv|gzip' > /path/to/dir/file.cpio.gz I am in the process of a creating a script. Everytime I try and just... (16 Replies)
Discussion started by: metallica1973
16 Replies

7. Solaris

Sudo Privileges & Sudoers Group

I'm looking for some suggestions to accomplish what a specific user needs, without adding them to the "sudoers" group. I have X user, that is requesting to be able to change file permissions on items owned by others and search directories where X user doesn't have access. I'm open to any... (2 Replies)
Discussion started by: Nvizn
2 Replies

8. Programming

How to hide from UNIX strings - obfuscate or hide a literal or constant?

Hi, I need to somehow pipe the password to a command and run some SQL, for example, something like echo $password | sqlplus -s system @query01.sql To make it not so obvious, I decided to try out writing a small C program that basically just do echo $password. So now I just do x9.out | sqlplus... (8 Replies)
Discussion started by: newbie_01
8 Replies

9. Red Hat

How to disable sudo -i in sudoers file for users?

All, I need to disable "sudo -i" and "su - " for all servers in our environment, We want to make sure no one run commands or delete files across environment using switching to root account. can you guys please lets me know if this is achievable. Thanks and Regards shekar (2 Replies)
Discussion started by: shekar777
2 Replies

10. UNIX and Linux Applications

LDAP - sudoers and the nopasswd flag - How can i set some commands for wheelgroup without password?

Hello :) we use LDAP with sudoers about 4 years. Works fine. But we have one problem with members of the admingroup (wheel). This users can do every command with sudo and with there privat password. But when they also are member to another special group, like sysadmin: Sysadmin is allowed to... (0 Replies)
Discussion started by: darktux
0 Replies

LEARN ABOUT DEBIAN

pam_nologin

PAM_NOLOGIN(8)							 Linux-PAM Manual						    PAM_NOLOGIN(8)

NAME

       pam_nologin - Prevent non-root users from login

SYNOPSIS

       pam_nologin.so [file=/path/nologin] [successok]

DESCRIPTION

       pam_nologin is a PAM module that prevents users from logging into the system when /var/run/nologin or /etc/nologinexists. The contents of
       the file are displayed to the user. The pam_nologin module has no effect on the root user's ability to log in.

OPTIONS

       file=/path/nologin
	   Use this file instead the default /var/run/nologin or /etc/nologin.

       successok
	   Return PAM_SUCCESS if no file exists, the default is PAM_IGNORE.

MODULE TYPES PROVIDED

       The auth and acct module types are provided.

RETURN VALUES

       PAM_AUTH_ERR
	   The user is not root and /etc/nologin exists, so the user is not permitted to log in.

       PAM_BUF_ERR
	   Memory buffer error.

       PAM_IGNORE
	   This is the default return value.

       PAM_SUCCESS
	   Success: either the user is root or the nologin file does not exist.

       PAM_USER_UNKNOWN
	   User not known to the underlying authentication module.

EXAMPLES

       The suggested usage for /etc/pam.d/login is:

	   auth  required  pam_nologin.so

NOTES

       In order to make this module effective, all login methods should be secured by it. It should be used as a required method listed before any
       sufficient methods in order to get standard Unix nologin semantics. Note, the use of successok module argument causes the module to return
       PAM_SUCCESS and as such would break such a configuration - failing sufficient modules would lead to a successful login because the nologin
       module succeeded.

SEE ALSO

       nologin(5), pam.conf(5), pam.d(5), pam(7)

AUTHOR

       pam_nologin was written by Michael K. Johnson <johnsonm@redhat.com>.

Linux-PAM Manual						    06/04/2011							    PAM_NOLOGIN(8)
All times are GMT -4. The time now is 11:17 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy