Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Disable switching to root alternatives
Operating Systems Linux Disable switching to root alternatives Post 302758469 by jabalv on Saturday 19th of January 2013 03:12:43 PM
Old 01-19-2013
Hi,

Thanks for answers.

Full sudo is for server administrators, but sometimes there are some people who don`t understand what they are doing or just making mistakes.
Also other thing is that, root activities are not logged, but sudo activities are logged under /var/log/secure. How to fight against it?
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Disable Root Console login

After Configuring a brand new netraT1, It appears, the only way you can log in as root is throught the Serial Port (console). I believe there is a file in /etc which can be edited to allow root to access login via other methods eg: telnet, ssh, etc. My Question: Which file contains... (2 Replies)
Discussion started by: SmartJuniorUnix
2 Replies

2. Shell Programming and Scripting

switching between root and a normal user

I am writing a script that has some tasks that must be run as root, then set of tasks to be run as normal user, then again as root. is there a way to switch between users in a script? any other alternatives? thx (3 Replies)
Discussion started by: melanie_pfefer
3 Replies

3. Shell Programming and Scripting

switching user from root to ordinary user

Good day Guys!!! I am currently making a script in AIX, the script runs a SAS job, the owner of the script is the root, but the SAS jobs cannot be run by the root, as it should be run by a user 'sasia'. But inside the script, root creates a logfile, so what I need is just to su to sasia for the... (3 Replies)
Discussion started by: sasia
3 Replies

4. Solaris

Root account - disable expiry

I couldnt find this in any other post - so hoping someone can help out. I want to set password expiry (or rather I have to) for a number of users on my solaris 9 system. I know i can set the following options in the /etc/default/passwd file to do it and then just type a passwd -f <username> to... (6 Replies)
Discussion started by: frustrated1
6 Replies

5. UNIX for Dummies Questions & Answers

Disable root for AIX 5.2

I am able to disable direct root login through telnet. But when I add the rlogin = false into the /etc/security/user file. I am unable to log in as root from ssh. I uncommented the "PermitRootLogin yes" in the sshd_config file. Still can't log in. Can anyone help? (0 Replies)
Discussion started by: james0125
0 Replies

6. Linux

ssh - disable direct root login

Hi Guys.... I am a newbie to unix. I have a requirement. I have a server. I have to configure ssh to disable direct root login and then add a user with sudo access to this server.Then change the ssh port to 22315 and the server should permit the ssh only from my local machine ip.I also have to... (1 Reply)
Discussion started by: mahesh_raghu
1 Replies

7. UNIX for Dummies Questions & Answers

How to disable root login (Not over SSH)?

I have already disabled root login over the ssh by modifying /etc/ssh/sshd_config. But how would i disable root login on a server itself. We have implemented LDAP in our environment and our security guide states that root login must be obtained by first logging into the host using his/her own... (2 Replies)
Discussion started by: pinga123
2 Replies

8. Red Hat

SSL/TLS renegotiation DoS -how to disable? Is it advisable to disable?

Hi all Expertise, I have following issue to solve, SSL / TLS Renegotiation DoS (low) 222.225.12.13 Ease of Exploitation Moderate Port 443/tcp Family Miscellaneous Following is the problem description:------------------ Description The remote service encrypts traffic using TLS / SSL and... (2 Replies)
Discussion started by: manalisharmabe
2 Replies

9. AIX

AIX Disable direct root login problems

I have disabled rlogin for root successfully , but after that i could not login to root from console and could not su to root from other users as it responded as expired account I did not have any admin user but I have managed to recover the situation by accessing rootvg before mounting it, but... (5 Replies)
Discussion started by: majd_ece
5 Replies

10. UNIX for Dummies Questions & Answers

Switching from root to normal user takes me to user's home dir

Whenever i switch from root to another user, by doing su - user, it takes me to home directory of user. This is very annoying as i want to be in same dir to run different commands as root sometimes and sometimes as normal user. How to fix this? (1 Reply)
Discussion started by: syncmaster
1 Replies

LEARN ABOUT LINUX

sudoreplay

SUDOREPLAY(8)						       MAINTENANCE COMMANDS						     SUDOREPLAY(8)

NAME

       sudoreplay - replay sudo session logs

SYNOPSIS

       sudoreplay [-d directory] [-f filter] [-m max_wait] [-s speed_factor] ID

       sudoreplay [-d directory] -l [search expression]

DESCRIPTION

       sudoreplay plays back or lists the session logs created by sudo.  When replaying, sudoreplay can play the session back in real-time, or the
       playback speed may be adjusted (faster or slower) based on the command line options.  The ID should be a six character sequence of digits
       and upper case letters, e.g.  0100A5, which is logged by sudo when a command is run with session logging enabled.

       In list mode, sudoreplay can be used to find the ID of a session based on a number of criteria such as the user, tty or command run.

       In replay mode, if the standard output has not been redirected, sudoreplay will act on the following keys:

       ' ' (space)
	       Pause output; press any key to resume.

       '<'     Reduce the playback speed by one half.

       '>'     Double the playback speed.

OPTIONS

       sudoreplay accepts the following command line options:

       -d directory
		   Use directory to for the session logs instead of the default, /var/log/sudo-io.

       -f filter   By default, sudoreplay will play back the command's standard output, standard error and tty output.	The -f option can be used
		   to select which of these to output.	The filter argument is a comma-separated list, consisting of one or more of following:
		   stdout, stderr, and ttyout.

       -l	   Enable "list mode".	In this mode, sudoreplay will list available session IDs.  If a search expression is specified, it will be
		   used to restrict the IDs that are displayed.  An expression is composed of the following predicates:

		   command command pattern
			   Evaluates to true if the command run matches command pattern.  On systems with POSIX regular expression support, the
			   pattern may be an extended regular expression.  On systems without POSIX regular expression support, a simple substring
			   match is performed instead.

		   cwd directory
			   Evaluates to true if the command was run with the specified current working directory.

		   fromdate date
			   Evaluates to true if the command was run on or after date.  See "Date and time format" for a description of supported
			   date and time formats.

		   group runas_group
			   Evaluates to true if the command was run with the specified runas_group.  Note that unless a runas_group was explicitly
			   specified when sudo was run this field will be empty in the log.

		   runas runas_user
			   Evaluates to true if the command was run as the specified runas_user.  Note that sudo runs commands as user root by
			   default.

		   todate date
			   Evaluates to true if the command was run on or prior to date.  See "Date and time format" for a description of
			   supported date and time formats.

		   tty tty Evaluates to true if the command was run on the specified terminal device.  The tty should be specified without the
			   /dev/ prefix, e.g.  tty01 instead of /dev/tty01.

		   user user name
			   Evaluates to true if the ID matches a command run by user name.

		   Predicates may be abbreviated to the shortest unique string (currently all predicates may be shortened to a single character).

		   Predicates may be combined using and, or and ! operators as well as '(' and ')' for grouping (note that parentheses must
		   generally be escaped from the shell).  The and operator is optional, adjacent predicates have an implied and unless separated
		   by an or.

       -m max_wait Specify an upper bound on how long to wait between key presses or output data.  By default, sudo_replay will accurately
		   reproduce the delays between key presses or program output.	However, this can be tedious when the session includes long
		   pauses.  When the -m option is specified, sudoreplay will limit these pauses to at most max_wait seconds.  The value may be
		   specified as a floating point number, .e.g. 2.5.

       -s speed_factor
		   This option causes sudoreplay to adjust the number of seconds it will wait between key presses or program output.  This can be
		   used to slow down or speed up the display.  For example, a speed_factor of 2 would make the output twice as fast whereas a
		   speed_factor of <.5> would make the output twice as slow.

       -V	   The -V (version) option causes sudoreplay to print its version number and exit.

   Date and time format
       The time and date may be specified multiple ways, common formats include:

       HH:MM:SS am MM/DD/CCYY timezone
	       24 hour time may be used in place of am/pm.

       HH:MM:SS am Month, Day Year timezone
	       24 hour time may be used in place of am/pm, and month and day names may be abbreviated.	Note that month and day of the week names
	       must be specified in English.

       CCYY-MM-DD HH:MM:SS
	       ISO time format

       DD Month CCYY HH:MM:SS
	       The month name may be abbreviated.

       Either time or date may be omitted, the am/pm and timezone are optional.  If no date is specified, the current day is assumed; if no time
       is specified, the first second of the specified date is used.  The less significant parts of both time and date may also be omitted, in
       which case zero is assumed.  For example, the following are all valid:

       The following are all valid time and date specifications:

       now     The current time and date.

       tomorrow
	       Exactly one day from now.

       yesterday
	       24 hours ago.

       2 hours ago
	       2 hours ago.

       next Friday
	       The first second of the next Friday.

       this week
	       The current time but the first day of the coming week.

       a fortnight ago
	       The current time but 14 days ago.

       10:01 am 9/17/2009
	       10:01 am, September 17, 2009.

       10:01 am
	       10:01 am on the current day.

       10      10:00 am on the current day.

       9/17/2009
	       00:00 am, September 17, 2009.

       10:01 am Sep 17, 2009
	       10:01 am, September 17, 2009.

FILES

       /var/log/sudo-io        The default I/O log directory.

       /var/log/sudo-io/00/00/01/log
			       Example session log info.

       /var/log/sudo-io/00/00/01/stdin
			       Example session standard input log.

       /var/log/sudo-io/00/00/01/stdout
			       Example session standard output log.

       /var/log/sudo-io/00/00/01/stderr
			       Example session standard error log.

       /var/log/sudo-io/00/00/01/ttyin
			       Example session tty input file.

       /var/log/sudo-io/00/00/01/ttyout
			       Example session tty output file.

       /var/log/sudo-io/00/00/01/timing
			       Example session timing file.

       Note that the stdin, stdout and stderr files will be empty unless sudo was used as part of a pipeline for a particular command.

EXAMPLES

       List sessions run by user millert:

	sudoreplay -l user millert

       List sessions run by user bob with a command containing the string vi:

	sudoreplay -l user bob command vi

       List sessions run by user jeff that match a regular expression:

	sudoreplay -l user jeff command '/bin/[a-z]*sh'

       List sessions run by jeff or bob on the console:

	sudoreplay -l ( user jeff or user bob ) tty console

SEE ALSO

       sudo(8), script(1)

AUTHOR

       Todd C. Miller

BUGS

       If you feel you have found a bug in sudoreplay, please submit a bug report at http://www.sudo.ws/sudo/bugs/

SUPPORT

       Limited free support is available via the sudo-users mailing list, see http://www.sudo.ws/mailman/listinfo/sudo-users to subscribe or
       search the archives.

DISCLAIMER

       sudoreplay is provided ``AS IS'' and any express or implied warranties, including, but not limited to, the implied warranties of
       merchantability and fitness for a particular purpose are disclaimed.  See the LICENSE file distributed with sudo or
       http://www.sudo.ws/sudo/license.html for complete details.

1.7.4								   July 12, 2010						     SUDOREPLAY(8)
All times are GMT -4. The time now is 12:45 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy