Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Sudo to user other than root but do not allow sudo to root
Operating Systems Linux Red Hat Sudo to user other than root but do not allow sudo to root Post 302933966 by sea on Tuesday 3rd of February 2015 12:40:28 PM
Old 02-03-2015
Hi

The issue is, they are not allowed to call su which you do to execute oracle.
As that is not allowed, it will fail.

Therefor, just try
Code:
sudo oracle

If that still wont work, and assuming DBA is a group where only users who are allowed to execute ORACLE belong to.
Try this change which should bring the desired change:
Code:
DBA ALL=(oracle) NOPASSWD: ALL

NOPASSWD: ALL means that there will be no password required to start anything from 'ALL', which is oracle.

Generaly saying, as i was once told, using sudo su - for 'daily' use is a bad habit.

Greetings, hope this helps
Last edited by sea; 02-03-2015 at 01:50 PM..
 

10 More Discussions You Might Find Interesting

1. Linux

sudo, root password

Hi all.. I'm secering a RH 2.1 server, with gnome (not my choice...), as X manager. Is ther anyway to get sudo ask for root password other then the actual user's password? Like when you launch the graphical IHM to create a new user, it asks for root's password? Is there a way to do the same... (5 Replies)
Discussion started by: penguin-friend
5 Replies

2. UNIX for Dummies Questions & Answers

Possible to give non root user sudo to "crontab -l"

Does anyone know if this is possible? I want to give some users access to root's crontab but only with a read privilege. Is this possible to do or can only root or people with full root sudo view root's cron? (4 Replies)
Discussion started by: LordJezoX
4 Replies

3. AIX

sudo must be setuid root.

Guy's I'm trying to add some lines in sudo by useing this command visudo # User privilege specification root ALL=(ALL) ALL # Uncomment to allow people in group wheel to run all commands # %wheel ALL=(ALL) ALL # Same thing without a password # %wheel ALL=(ALL) NOPASSWD: ALL #... (5 Replies)
Discussion started by: ITHelper
5 Replies

4. Shell Programming and Scripting

Cron job initiating ssh AND sudo (from user, not root)

I've been bashing my head on the desk for 2 days trying to get this to work, but I've had no luck. I'll try to be as clear as possible in my explanation without dragging out the details. I'm trying to set up a cron job for user "john" which runs a script. This script initiates an ssh connection to... (5 Replies)
Discussion started by: eh3civic
5 Replies

5. UNIX for Dummies Questions & Answers

sudo/root access

I'm actually working with a Ubuntu-System here and have a question about executing a command with 'sudo'. I tried and got a error message like "not allowed". After this I logged in with 'sudo -s' and typed the command without 'sudo'. This worked well. Can please somebody explain me this... (0 Replies)
Discussion started by: daWonderer
0 Replies

6. UNIX for Dummies Questions & Answers

Sudo to delegate permission from non-root user to another non-root user

I've been through many threads before i decide to create a separate thread. I can't really find the solution to my (simple) problem. Here's what I'm trying to achieve: As "canar" user I want to run a command, let's say "/opt/ocaml/bin/ocaml" as "duck" user. The only to achieve this is to... (1 Reply)
Discussion started by: canar
1 Replies

7. UNIX for Dummies Questions & Answers

sudo on becoming root

Anyone able to explain why if i run "sudo -i" or "sudo -s" i am able to get into root by just keying my own password? How to avoid this from happening coz i need all the users to use su - only. (2 Replies)
Discussion started by: timmywong
2 Replies

8. UNIX for Dummies Questions & Answers

Create user with sudo ability to root.

Hi All, I need to give an user sudo ability to root. We have also generated RSA key but unable to proceed further. For example after a user logs into the server normally and when he executes below command $ssh root@server_name This should take you to root prompt # Please help me.... (3 Replies)
Discussion started by: Rockyc3400
3 Replies

9. Solaris

Sudo access of rm to non-root user

Hello, It is Solaris-10. There is a file as /opt/vpp/dom1.2/pdd/today_23. It is always generated by root, so owned by root only. This file has to be deleted as part of application restart always and that is done by app_user and SA is always involved to do rm on that file. Is it possible to give... (9 Replies)
Discussion started by: solaris_1977
9 Replies

10. UNIX for Beginners Questions & Answers

Sudo to root, but keep my own aliases?

I have a coworker that has set up some funky aliases in /etc/bash.alias, and he insists on leaving them that way. For example he aliased "ll" to "ls -lahtr", which really bugs me. Anyway, I was wondering if there were a way for me to sudo to root without reading /etc/bash.alias, or maybe have... (6 Replies)
Discussion started by: paqman
6 Replies

LEARN ABOUT DEBIAN

bbhostgrep

BBHOSTGREP(1)						      General Commands Manual						     BBHOSTGREP(1)

NAME

       bbhostgrep - pick out lines in bb-hosts

SYNOPSIS

       bbhostgrep --help
       bbhostgrep --version
       bbhostgrep [--noextras] [--test-untagged] [--bbdisp] [--bbnet] TAG [TAG...]

DESCRIPTION

       bbhostgrep(1) is for use by extension scripts that need to pick out the entries in a bb-hosts file that are relevant to the script.

       The  utility  accepts test names as parameters, and will then parse the bb-hosts file and print out the host entries that have at least one
       of the wanted tests specified. Tags may be given with a trailing asterisk '*', e.g. "bbhostgrep http*" is needed to find all http and https
       tags.

       The  bbhostgrep	utility  supports  the	use  of "include" directives inside the bb-hosts file, and will find matching tags in all included
       files.

       If the DOWNTIME or SLA tags are used in the bb-hosts(5) file, these are interpreted relative to the current time.  bbhostgrep then  outputs
       a "INSIDESLA" or "OUTSIDESLA" tag for easier use by scripts that want to check if the current time is inside or outside the expected uptime
       window.

OPTIONS

       --noextras
	      Remove the "testip", "dialup", "INSIDESLA" and "OUTSIDESLA" tags from the output.

       --test-untagged
	      When using the BBLOCATION environment variable to test only hosts on a particular network segment, bbtest-net will ignore hosts that
	      do not have any "NET:x" tag.  So only hosts that have a NET:$BBLOCATION tag will be tested.
	      With  this  option,  hosts  with no NET: tag are included in the test, so that all hosts that either have a matching NET: tag, or no
	      NET: tag at all are tested.

       --no-down[=TESTNAME]
	      bbhostgrep will query the Xymon server for the current status of the "conn" test, and if TESTNAME is specified also for the  current
	      state  of  the  specified test. If the status of the "conn" test for a host is non-green, or the status of the TESTNAME test is dis-
	      abled, then this host is ignored and will not be included in the output.	This can be used to ignore hosts that are down,  or  hosts
	      where the custom test is disabled.

       --bbdisp
	      Search the bb-hosts file following include statements as a BBDISPLAY server would.

       --bbnet
	      Search the bb-hosts file following include statements as a BBNET server would.

EXAMPLE

       If your bb-hosts file looks like this

	  192.168.1.1	www.test.com  # ftp telnet !oracle
	  192.168.1.2	db1.test.com  # oracle
	  192.168.1.3	mail.test.com # smtp

       and you have a custom Xymon extension script that performs the "oracle" test, then running "bbhostgrep oracle" would yield

	  192.168.1.1	www.test.com  # !oracle
	  192.168.1.2	db1.test.com  # oracle

       so the script can quickly find the hosts that are of interest.

       Note that the reverse-test modifier - "!oracle" - is included in the output; this also applies to the other test modifiers defined by Xymon
       (the dialup and always-true modifiers).

       If your extension scripts use more than one tag, just list all of the interesting tags on the command line.

       bbhostgrep also supports the "NET:location" tag used by bbtest-net, so if your script performs network checks then it  will  see  only  the
       hosts that are relevant for the test location that the script currently executes on.

USE IN EXTENSION SCRIPTS

       To  integrate bbhostgrep into an existing script, look for the line in the script that grep's in the $BBHOSTS file.  Typically it will look
       somewhat like this:

	  $GREP -i "^[0-9].*#.*TESTNAME" $BBHOSTS | ... code to handle test

       Instead of the grep, we will use bbhostgrep. It then becomes

	  $BBHOME/bin/bbhostgrep TESTNAME | ... code to handle test

       which is simpler, less error-prone and more efficient.

ENVIRONMENT VARIABLES

       BBLOCATION
	      If set, bbhostgrep outputs only lines from bb-hosts that have a matching NET:$BBLOCATION setting.

       BBHOSTS
	      Filename for the Xymon bb-hosts(5) file.

FILES

       $BBHOSTS
	      The Xymon bb-hosts file

SEE ALSO

       bb-hosts(5), hobbitserver.cfg(5)

Xymon							    Version 4.2.3:  4 Feb 2009						     BBHOSTGREP(1)
All times are GMT -4. The time now is 09:03 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy