Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Root acces bug through sudo!
Special Forums Cybersecurity Root acces bug through sudo! Post 302910255 by in2nix4life on Wednesday 23rd of July 2014 10:14:27 AM
Old 07-23-2014
Is your friend's account a member of the admin group?

The group designation is usually preceded by a percent sign as in the way it appears with the admin group. The comment preceding the XXXXXX states that it's a group but it's missing the percent sign.

Also, the following is from the sudoers man page:

Code:
root_sudo

If set, root is allowed to run sudo too. Disabling this prevents users from “chaining” sudo commands to 
get a root shell by doing something like “sudo sudo /bin/sh”. Note, however, that turning off root_sudo 
will also prevent root from running sudoedit. Disabling root_sudo provides no real additional security; 
it exists purely for historical reasons. This flag is on by default.

 

10 More Discussions You Might Find Interesting

1. Linux

sudo, root password

Hi all.. I'm secering a RH 2.1 server, with gnome (not my choice...), as X manager. Is ther anyway to get sudo ask for root password other then the actual user's password? Like when you launch the graphical IHM to create a new user, it asks for root's password? Is there a way to do the same... (5 Replies)
Discussion started by: penguin-friend
5 Replies

2. AIX

sudo must be setuid root.

Guy's I'm trying to add some lines in sudo by useing this command visudo # User privilege specification root ALL=(ALL) ALL # Uncomment to allow people in group wheel to run all commands # %wheel ALL=(ALL) ALL # Same thing without a password # %wheel ALL=(ALL) NOPASSWD: ALL #... (5 Replies)
Discussion started by: ITHelper
5 Replies

3. UNIX for Dummies Questions & Answers

sudo/root access

I'm actually working with a Ubuntu-System here and have a question about executing a command with 'sudo'. I tried and got a error message like "not allowed". After this I logged in with 'sudo -s' and typed the command without 'sudo'. This worked well. Can please somebody explain me this... (0 Replies)
Discussion started by: daWonderer
0 Replies

4. UNIX for Dummies Questions & Answers

Sudo to delegate permission from non-root user to another non-root user

I've been through many threads before i decide to create a separate thread. I can't really find the solution to my (simple) problem. Here's what I'm trying to achieve: As "canar" user I want to run a command, let's say "/opt/ocaml/bin/ocaml" as "duck" user. The only to achieve this is to... (1 Reply)
Discussion started by: canar
1 Replies

5. UNIX for Dummies Questions & Answers

sudo on becoming root

Anyone able to explain why if i run "sudo -i" or "sudo -s" i am able to get into root by just keying my own password? How to avoid this from happening coz i need all the users to use su - only. (2 Replies)
Discussion started by: timmywong
2 Replies

6. Red Hat

Sudo to user other than root but do not allow sudo to root

I have a set of RHEL 5 boxes running our ERP software on Oracle databases. I need to allow my DBA's to su to oracle and one other account (banner) without knowing the oracle or banner password. But I need to prevent them from su'ing to any other user especially root. I only want them to be able to... (1 Reply)
Discussion started by: westmoreland
1 Replies

7. Shell Programming and Scripting

Bug the vps by using simple user acces.

I want to bug and make lag in the vps using commands on linux by a normal user, SSH on centos 6. (1 Reply)
Discussion started by: [xEF]Danger
1 Replies

8. UNIX for Beginners Questions & Answers

Sudo asked for root password .

i have tried to use a sudo command from a user level . but instead of asking for user password it asked for root password . how should i go about it . james@opensuse:/etc> sudo ifconfig root's password: And i wish to ask how should i allow a list of command to be allowed to used for a... (4 Replies)
Discussion started by: lobsang
4 Replies

9. Solaris

Sudo access of rm to non-root user

Hello, It is Solaris-10. There is a file as /opt/vpp/dom1.2/pdd/today_23. It is always generated by root, so owned by root only. This file has to be deleted as part of application restart always and that is done by app_user and SA is always involved to do rm on that file. Is it possible to give... (9 Replies)
Discussion started by: solaris_1977
9 Replies

10. UNIX for Beginners Questions & Answers

Sudo to root, but keep my own aliases?

I have a coworker that has set up some funky aliases in /etc/bash.alias, and he insists on leaving them that way. For example he aliased "ll" to "ls -lahtr", which really bugs me. Anyway, I was wondering if there were a way for me to sudo to root without reading /etc/bash.alias, or maybe have... (6 Replies)
Discussion started by: paqman
6 Replies

LEARN ABOUT DEBIAN

viewsudo

VIEW-OS(1)						      General Commands Manual							VIEW-OS(1)

NAME

       viewsudo - execute a command as another (virtual) user

SYNOPSIS

       viewsudo [-g groupname|#gid] [-u username|#uid] command

DESCRIPTION

       viewsudo allows a user to execute a command as the superuser or
	      another user in View-OS.

OPTIONS

       viewsudo accepts the following command line options:

       -g group
	   Normally,  viewsudo	sets the primary group to root.  The -g option causes sudo to run the specified command with the primary group set
	   to group.  To specify a gid instead of a group name, use #gid.  When running commands as a gid, many shells require	that  the  '#'	be
	   escaped  with  a  backslash	('[u2019]).   If  no -u option is specified, the command will be run as the invoking user (not root).	In
	   either case, the primary group will be set to group.

       -u user
	   The -u option causes viewsudo to run the specified command as a user other than root.  To specify a uid instead of  a  user	name,  use
	   #uid.  When running commands as a uid, many shells require that the '#' be escaped with a backslash ('[u2019]).

RETURN VALUES

       Upon successful execution of a program, the exit status from viewsudo will simply be the exit status of the program that was executed.

SEE ALSO

       viewsu(1), sudo(1), linux.defs(5)

AUTHORS

       View-OS is a project of the Computer Science Department, University of Bologna. Project Leader: Renzo Davoli.
       <http://www.sourceforge.net/projects/view-os>

       Howto's and further information can be found on the project wiki <wiki.virtualsquare.org>.

NOTE

       Most part of the text is taken from sudo(1).

VIEW-OS: a process with a view					  August 8, 2009							VIEW-OS(1)
All times are GMT -4. The time now is 05:10 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy