07-15-2016
You also need to make sure that sudo is not called from within the script (as some do)
If this is the case and you cannot get them out, then assuming that you are running as root you need to check that root is authorised too. It might seem odd, but the rules for sudo can catch you. We just added a rule to say that root could run anything as root through sudo and all seemed fine.
You may have further problems to consider if you are saying would want to run as some sort of application or service account that then needs to sudo occasionally.
Sorry to chuck in a few worries, but probably best to be prepared.
Robin
9 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi guys
Pls I would like knew how to execut a script in full-screen.
My shell is Korn in HP-UX 10.20.
Thanks.
Morcegao (1 Reply)
Discussion started by: Morcegao30
1 Replies
2. Linux
Please help. I am new to linux. I wrote a script to run the backup on lunix machine but the job gave me an error. I am using Linux 2.6.14.3. Below is the sample of my script can anyone tell me where went wrong? Thanks in advance.
#!/bin/sh
dat=$(date +%d%b%y)... (5 Replies)
Discussion started by: clement
5 Replies
3. Shell Programming and Scripting
here is my script:
#!/bin/sh
cd /Users/a
echo "what is the name of the file u want?"
read var1
var1=$var1... (1 Reply)
Discussion started by: cleansing_flame
1 Replies
4. Shell Programming and Scripting
Hi All,
I've searched through the forum for a solution to this problem, but I haven't found anything. I have 2 script files that are in different directories.
My first script, let's call it "/one/two/a.sh" looks like this:
#!/bin/sh
IN_DIR=`dirname $0`
CUR_DIR=`pwd`
cd $IN_DIR... (4 Replies)
Discussion started by: mrbluegreen
4 Replies
5. Shell Programming and Scripting
Hi Everyone,
i am writing a script which will display all channels as below
sudo /usr/bin/su - mycamqrd
chs
I kept the above two lines in a ksh and after ran that it is going to mycamqrd home dir(sudo /usr/bin/su - mycamqrd).. The script is coming out and it is not executing chs. Please... (5 Replies)
Discussion started by: rajesh212512
5 Replies
6. Shell Programming and Scripting
salmo allikm warhmat allah wabrakato
i want to do script with sudo like
sudo su and want to put password in the script not get from user because i to made it startup when booting and i don't know how put in script for sudo
thanks (5 Replies)
Discussion started by: pua06
5 Replies
7. Shell Programming and Scripting
I want to execute a script(generateReport.sh) which resides on root home directory from shell script(localtrigger.sh) as root by using sudo.
The thing is
i cant edit /etc/sudoers (i can but m not allowed to do it , ethically)
i cant change ownership of generateReport.sh script
When i try... (7 Replies)
Discussion started by: saket
7 Replies
8. Shell Programming and Scripting
I am writing a BASH script to update a webserver and then restart Apache. It looks basically like this:
#!/bin/bash
rsync /path/on/local/machine/ foo.com:path/on/remote/machine/
ssh foo.com sudo /etc/init.d/apache2 reloadrsync and ssh don't prompt for a password, because I have DSA encryption... (9 Replies)
Discussion started by: fluoborate
9 Replies
9. Shell Programming and Scripting
hi,
can some one explain the sudo -n equivalent in AIX
Thanks
Venkat K (5 Replies)
Discussion started by: venky.b5
5 Replies
LEARN ABOUT DEBIAN
csp_install
csp_helper(1) USER COMMANDS csp_helper(1)
NAME
csp_helper - A collection of caspar helper scripts
SYNOPSIS
csp_install dir (directory) file (file)
csp_mkdircp dir (directory) file (file)
csp_scp_keep_mode h ([user@]host) dir (directory) file (file)
csp_sucp h ([user@]host) dir (directory) file (file)
DESCRIPTION
The scripts csp_install, csp_mkdircp, csp_scp_keep_mode and csp_sucp are helpers for caspar(7). These scripts typically are not invoked
directly, but via a Makefile which uses caspar. See the notes on csp_PUSH in caspar(7) for information on how to link csp_install,
csp_scp_keep_mode and csp_sucp to caspar.
install DESCRIPTION
csp_install creates the required directory (if needed) and installs the file, preserving timestamps. It uses install(1).
install EXAMPLES
csp_INSTALL_OPTIONS='--owner=www-data --group=www-data'
csp_INSTALL_MODE=ugo=r
csp_install /srv/www index.html
csp_INSTALL_MODE=u=rwx,go= csp_install /usr/local/sbin mkpasswd
install ENVIRONMENT
csp_install honors csp_INSTALL_OPTIONS and csp_INSTALL_MODE (default is u=rw,go=r).
mkdircp DESCRIPTION
csp_mkdircp calls mkdir(1) and cp(1).
scp_keep_mode DESCRIPTION
csp_scp_keep_mode uses ssh to copy a file to a remote host, keeping its file permission mode. The trick used is a combination of mktemp(1)
and mv(1). Useful if you'd like to be sure a file gets installed e.g. group writable, without fiddling with permission bits on the remote
host.
scp_keep_mode EXAMPLE
chmod g+w rc
csp_scp_keep_mode root@gandalf /etc/uruk rc
scp_keep_mode ENVIRONMENT
csp_scp_keep_mode honors csp_SSH ("ssh" by default).
sucp DESCRIPTION
csp_sucp calls cat(1) from within sudo(1) from within ssh(1). This allows one to copy files to accounts on hosts one can only reach by call-
ing sudo on the ssh-reachable remote host.
Typically, one wants to install a root-owned file, but one does not want to allow access to the root-account directly from ssh. Typically
sudo is used as an extra line of defense.
sucp EXAMPLES
Some examples:
csp_sucp rms@bilbo /etc fstab
csp_sucp monty-python commit/ trailer.txt
sucp BUGS
If NOPASSWD is not set in the sudoers(5) file, and one's timestamp is expired, csp_sucp will forward the sudo password prompt. The given
password will be echoed on the console!
AUTHOR
Joost van Baal-Ili
SEE ALSO
caspar(7) The caspar homepage is at http://mdcc.cx/caspar/ .
csp_helper 20120514 14 mai 2012 csp_helper(1)