Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Sudo has no access to exported bash function
Top Forums UNIX for Beginners Questions & Answers Sudo has no access to exported bash function Post 303040917 by jcdole on Saturday 9th of November 2019 11:06:45 AM
Old 11-09-2019
Quote:
Originally Posted by gull04
Hi,

You can preserve your current environment if you have been granted sufficient rights to do so with the -E switch or --preserve-env switch.

Regards

Gull04
My test show that does not work for function as Corona688 just said.


Thank you

--- Post updated at 18:06 ---

Quote:
Originally Posted by Corona688
These files are used on login. sudo bash is not a login.

Environment variables are external memory designed to be shared. Functions are part of a shell's internals and are not. For sudo bash to have a function, it will need to source that file.

Code:
#!/bin/bash

. /etc/bash.bashrc.local

 function_1

sudo often blocks environment variables, by the way, to prevent people putting in strange values for EDITOR and the like and executing them with dangerous privileges.

That mean that any script I run which need to be started with sudo needs to contains something like that :
Code:
#
# ~/test_001.sh
#

. /path/to/my_list_of_functions


#
# Code followed

#

But if the same script may be run by normal user, my functions will be sourced twice
One times by the login process via /etc/profile.local
One times by the code added on top of script.
What happens ?



Any comment is welcome.
 

10 More Discussions You Might Find Interesting

1. Linux

sudo access verification

Hi All, I got lots of request with sudo, a manager request, verbal command, do this and do that. The problem with this kind of request is when I added that script and that. It will not be perfect, it's because I can't verify the userid sudo access, I can't reset their password as well, I... (2 Replies)
Discussion started by: itik
2 Replies

2. Shell Programming and Scripting

Scope of exported function

Hi I'm hoping someone can tell me how to extend the scope of an exported function in the korn shell. I have written a function in a file that I dot in from my .kshrc file and it works fine. However I would like this function to be available to anyone in a certain group on the machine... (10 Replies)
Discussion started by: steadyonabix
10 Replies

3. Shell Programming and Scripting

ONLY SU Sudo access

Hello All, I want to create a script that will do ONLY su to any user on the server with hpadmin login using sudo. Can anyone let me know how can it do it. Regards Ankit (1 Reply)
Discussion started by: ajaincv
1 Replies

4. UNIX for Dummies Questions & Answers

sudo/root access

I'm actually working with a Ubuntu-System here and have a question about executing a command with 'sudo'. I tried and got a error message like "not allowed". After this I logged in with 'sudo -s' and typed the command without 'sudo'. This worked well. Can please somebody explain me this... (0 Replies)
Discussion started by: daWonderer
0 Replies

5. Ubuntu

Restrict SUDO Access

Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux Hi Folks, Please help me. I am bit struck here. Here is the OS info. Linux ubuntu 3.0.0-12-generic #20-Ubuntu SMP Fri Oct 7 14:56:25 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux I have a... (17 Replies)
Discussion started by: explorer007
17 Replies

6. UNIX for Advanced & Expert Users

Help needed in sudo access

I want to give root access to a user called denielr on server - tsprd01, but do not want to share root password. I have sudoers configured already. He should have all access equal to root. I made this entry in /etc/sudoers, but it is not working denielr tsprd01 =(root) NOPASSWD: ALL I tried to... (2 Replies)
Discussion started by: solaris_1977
2 Replies

7. Red Hat

Sudo access issue

Hi, I have given access to user mwadmin in shudders file as : mwadmin ALL:NOPASSWD:/www/* /usr/* /opt/* However, not able to execute below command: sudo mkdir -p /usr/test password for mwadmin: Sorry, user mwadmin is not allowed to execute '/bin/mkdir -p /usr/test' as root. ... (4 Replies)
Discussion started by: saurau
4 Replies

8. UNIX for Dummies Questions & Answers

Inheriting SUDO access?

I had a question on users inheriting SUDO capabilities of another account. Let's say that there are three users A, B, and C. A has access to Sudo into B. B has access to Sudo into C. Does this give A access to sudo into B and then sudo into C. A -> B B -> C A -> B -> C ? Another example. My... (2 Replies)
Discussion started by: sbcopty
2 Replies

9. Shell Programming and Scripting

Using plink with sudo access

I have similar issue as mentioned in 167174-how-run-script-using-batch-file.html It works good, but the control is not coming back to source i tried adding exit to remote script. Thanks, Suresh (0 Replies)
Discussion started by: snsuresh
0 Replies

10. UNIX for Beginners Questions & Answers

Loading associative array from exported function

Hello. I have an export of an associative array build using declare -p SOME_ARRAY_NAME > SOME_FILE_NAME.txt. Producing some thing like declare -A SOME_ARRAY_NAME=( ="some_text" ="a_text" ......... ="another_text" ) in a text file. I have a stock of functions which are sourced from... (1 Reply)
Discussion started by: jcdole
1 Replies

LEARN ABOUT DEBIAN

syslogout

SYSLOGOUT(8)						      System Manager's Manual						      SYSLOGOUT(8)

NAME

       syslogout - modular centralized shell logout mechanism

DESCRIPTION

       syslogout is a generic approach to enable centralized shell logout actions for all users of a given system in a modular and centralized way
       mostly aimed at avoiding work for lazy sysadmins.  It has only been tested to work with the bash shell.

       It basically consists of the small /etc/syslogout shell script which invokes other small shell scripts having a .bash suffix which are con-
       tained  in  the	/etc/syslogout.d/ directory.  The system administrator can drop in any script he wants without any naming convention other
       than that the scripts need to have a .bash suffix to enable automagic sourcing by the /etc/syslogout script.

       For shell sessions, the contents of /etc/syslogout.d/" will be sourced by every user at logout if the following lines are  present  in  his
       $HOME/.bash_logout:

	   if [ -f /etc/syslogout ]; then
	       . /etc/syslogout
	   fi

       If  used  for X sessions it is advisable to include the former statement into the Xreset script of the X display manager instead to prevent
       that closing of an terminal emulator window yields unexpected results in your running X session if your X11 terminal emulator  is  using  a
       login  shell.   Be  sure  then to run it under the user-id of the X session's user.  See the example files in /usr/share/doc/syslogout/ for
       illustration.

       Users not wanting /etc/syslogout to be sourced for their environment can easily disable it's automatic mechanism.  It can  be  disabled	by
       simply creating an empty file called $HOME/.nosyslogout in the user's home directory using e.g. the touch(1) command.

       Any single configuration file in /etc/syslogout.d/ can simply be overridden by any user by creating a private $HOME/.syslogout.d/ directory
       which may contain a user's own version of any configuration file to be sourced instead of the system default.   It's  names  have  just	to
       match  exactly  the  system's  default /etc/syslogout.d/ configuration files.  Empty versions of these files contained in the $HOME/.syslo-
       gout.d/ directory automatically disable sourcing of the system wide version.

       Naturally, users can add and include their own private scripts to be automagically executed by /etc/syslogout at logout time.

OPTIONS

       There are no options other than those dictated by shell conventions.  Anything is defined within the configuration scripts themselves.

SEE ALSO

       The  README  files  and	configuration  examples  contained  in	/usr/share/doc/syslogout/  and	the  manual  page  for	bash(1),  xdm(1x),
       xdm.options(5), and wdm(1x).  Recommended further reading is everything related with shell programming.

       If  you need a similar mechanism for executing code at login time check out the related package sysprofile(8) which is a very close compan-
       ion to syslogout.

BUGS

       syslogout in its current form is mainly restricted to bash(1) syntax.  In fact it is actually  a rather embarrassing quick and  dirty  hack
       than  anything  else  -	but  it  works.   It  serves the practical need to enable a centralized bash configuration  until something better
       becomes available.  Your constructive criticism in making  this	into something better" is very welcome.  Before i forget to mention it: we
       take patches... ;-)

AUTHOR

       syslogout  was developed by Paul Seelig <pseelig@debian.org> specifically for the Debian GNU/Linux system.  Feel free to port it to and use
       it anywhere else under the conditions of either the GNU public license or the BSD license or both.  Better yet, please help to make it into
       something more worthwhile than it currently is.

																      SYSLOGOUT(8)
All times are GMT -4. The time now is 07:13 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy