Visit Our UNIX and Linux User Community


"sudo su -" showing lot of information on OpenLDAP


 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users "sudo su -" showing lot of information on OpenLDAP
# 1  
Old 02-18-2019
"sudo su -" showing lot of information on OpenLDAP

Hello,
I have configured new LDAP and new LDAP clients. When I do "sudo su -", it shows me lot of information, which is not required on screen. I am not sure, if any debug mode is enabled or from where it can be turned off. Please suggest, if it is know for you.
Code:
-bash-3.2$ sudo su -
sudo: ldap_set_option: ldap_version -> 3
sudo: ldap_set_option: bind_timelimit -> 3000
sudo: ldap_set_option: network_timeout -> 3000
sudo: ldap_set_option: timelimit -> 5
sudo: ldap_sasl_bind_s() ok
sudo: Looking for cn=defaults: cn=defaults
sudo: found:cn=defaults,ou=sudoers,dc=test1,dc=test2,dc=ia,dc=us
sudo: ldap search '(|(sudoUser=john)(sudoUser=%john)(sudoUser=%#30421)(sudoUser=%ids)(sudoUser=%idssa)(sudoUser=%#10000)(sudoUser=%#10001)(sudoUser=ALL))'
sudo: searching from base 'ou=sudoers,dc=test1,dc=test2,dc=ia,dc=us'
sudo: adding search result
sudo: result now has 1 entries
sudo: ldap search '(sudoUser=+*)'
sudo: searching from base 'ou=sudoers,dc=test1,dc=test2,dc=ia,dc=us'
sudo: adding search result
sudo: result now has 1 entries
sudo: sorting remaining 1 entries
sudo: searching LDAP for sudoers entries
sudo: Command allowed
sudo: LDAP entry: 0x8075b20
sudo: done with LDAP searches
sudo: user_matches=1
sudo: host_matches=1
sudo: sudo_ldap_lookup(0)=0x02
"[sudo] john's password: "
sudo: removing reusable search result
Oracle Corporation      SunOS 5.10      Generic Patch   January 2005
You have new mail.
-bash-3.2#

Thanks
# 2  
Old 02-19-2019
Please provide full system details.

Thanks
# 3  
Old 02-19-2019
Quote:
Originally Posted by Neo
Please provide full system details.

Thanks
I am able to login on ssh session normally, but its sudo only, when it gives so much information on screen.
OpenLDAP master is RHEl 7.2 and client (above output) is Solaris 10 x86.

Last edited by solaris_1977; 02-19-2019 at 03:20 PM..
# 4  
Old 02-20-2019
What sudo version do you have on the Solaris 10 box?
Quote:
type sudo
sudo -V | head -1
# 5  
Old 02-20-2019
Code:
-bash-3.2# sudo
sudo: ldap_set_option: ldap_version -> 3
sudo: ldap_set_option: bind_timelimit -> 3000
sudo: ldap_set_option: network_timeout -> 3000
sudo: ldap_set_option: timelimit -> 5
sudo: ldap_sasl_bind_s() ok
sudo: Looking for cn=defaults: cn=defaults
sudo: found:cn=defaults,ou=sudoers,dc=test1,dc=test2,dc=ia,dc=us
sudo: ldap search '(|(sudoUser=root)(sudoUser=%root)(sudoUser=%#0)(sudoUser=%other)(sudoUser=%bin)(sudoUser=%sys)(sudoUser=%adm)(sudoUser=%uucp)(sudoUser=%mail)(sudoUser=%tty)(sudoUser=%lp)(sudoUser=%nuucp)(sudoUser=%daemon)(sudoUser=%#1)(sudoUser=%#2)(sudoUser=%#3)(sudoUser=%#4)(sudoUser=%#5)(sudoUser=%#6)(sudoUser=%#7)(sudoUser=%#8)(sudoUser=%#9)(sudoUser=%#12)(sudoUser=ALL))'
sudo: searching from base 'ou=sudoers,dc=test1,dc=test2,dc=ia,dc=us'
sudo: adding search result
sudo: result now has 0 entries
sudo: ldap search '(sudoUser=+*)'
sudo: searching from base 'ou=sudoers,dc=test1,dc=test2,dc=ia,dc=us'
sudo: adding search result
sudo: result now has 0 entries
sudo: sorting remaining 0 entries
sudo: searching LDAP for sudoers entries
sudo: done with LDAP searches
sudo: user_matches=1
sudo: host_matches=0
sudo: sudo_ldap_lookup(0)=0x40
usage: sudo [-D level] -h | -K | -k | -V
usage: sudo -v [-AknS] [-D level] [-g groupname|#gid] [-p prompt] [-u user name|#uid]
usage: sudo -l[l] [-AknS] [-D level] [-g groupname|#gid] [-p prompt] [-U user name] [-u user name|#uid] [-g groupname|#gid] [command]
usage: sudo [-AbEHknPS] [-C fd] [-D level] [-g groupname|#gid] [-p prompt] [-u user name|#uid] [-g groupname|#gid] [VAR=value] [-i|-s] [<command>]
usage: sudo -e [-AknS] [-C fd] [-D level] [-g groupname|#gid] [-p prompt] [-u user name|#uid] file ...
-bash-3.2#
-bash-3.2#
-bash-3.2# sudo -V | head -1
sudo: ldap_set_option: ldap_version -> 3
sudo: ldap_set_option: bind_timelimit -> 3000
sudo: ldap_set_option: network_timeout -> 3000
sudo: ldap_set_option: timelimit -> 5
sudo: ldap_sasl_bind_s() ok
sudo: Looking for cn=defaults: cn=defaults
sudo: found:cn=defaults,ou=sudoers,dc=test1,dc=test2,dc=ia,dc=us
Sudo version 1.8.4p1
-bash-3.2#

# 6  
Old 02-20-2019
I have asked for
type sudo not sudo.
Please give the output of the following:
Code:
truss sudo -V 2>&1 | fgrep sudo.conf

Is a sudo.conf file present? If yes, does it have a Debug line?
# 7  
Old 02-20-2019
Sorry, I misunderstood
I do not see sudo.conf on server. Here is output
Code:
-bash-3.2# uname -a
SunOS test-sol 5.10 Generic_150401-38 i86pc i386 i86pc
-bash-3.2# 
-bash-3.2# type sudo
sudo is /usr/local/bin/sudo
-bash-3.2# truss sudo -V 2>&1 | fgrep sudo.conf
open64("/sudo.conf", O_RDONLY)                  Err#2 ENOENT
-bash-3.2# find / -name sudo.conf
-bash-3.2#
-bash-3.2# pkgchk -lp /usr/local/bin/sudo
Pathname: /usr/local/bin/sudo
Type: linked file
Source of link: sudoedit
Referenced by the following packages:
        OEsudo
Current status: installed

-bash-3.2#


Previous Thread | Next Thread
Test Your Knowledge in Computers #856
Difficulty: Medium
React was created by Jordan Renke, a software engineer at Facebook.
True or False?

10 More Discussions You Might Find Interesting

1. Solaris

Ipadm showing "/?" in ADDROBJ on S11 local zone

Hi! I have a Solaris 11 local zone, everything is running fine, BUT, when I issue an "ipadm show-addr" from inside the local zone I get the following: root@xxxxxxx:/var/opt# ipadm show-addr ADDROBJ TYPE STATE ADDR lo0/? inherited ok 127.0.0.1/8... (2 Replies)
Discussion started by: rtmg
2 Replies

2. Shell Programming and Scripting

Bash script - Print an ascii file using specific font "Latin Modern Mono 12" "regular" "9"

Hello. System : opensuse leap 42.3 I have a bash script that build a text file. I would like the last command doing : print_cmd -o page-left=43 -o page-right=22 -o page-top=28 -o page-bottom=43 -o font=LatinModernMono12:regular:9 some_file.txt where : print_cmd ::= some printing... (1 Reply)
Discussion started by: jcdole
1 Replies

3. Shell Programming and Scripting

Explaining behaviour of sudo bash "$0" "$@";

I've found this script part on the stackoverflow: if ; then sudo bash "$0" "$@"; exit "$?"; fi I realized that sudo bash "$0" "$@"; is the only needed for me. But the strange thing happens when I move this line outside the IF statement: sudo bash "$0" "$@"; stops the... (9 Replies)
Discussion started by: boqsc
9 Replies

4. Shell Programming and Scripting

Expect: spawn id exp5 not open while executing "expect "$" { send "sudo su -\r" }"

Hi All, i am trying to ssh to a remote machine and execute certain command to remote machine through script. i am able to ssh but after its getting hung at the promt and after pressing ctrl +d i am gettin the out put as expect: spawn id exp5 not open while executing "expect "$" {... (3 Replies)
Discussion started by: Siddharth shivh
3 Replies

5. UNIX for Advanced & Expert Users

Showing "permission denied" when trying to login in - Montavista Linux

Hello friends, I have scratched my system and after that when I am trying to access the console via root login it's failing with an error message of "permission denied". I am able to access the other login, I am having only problem with root and some other user login. I am using an telnet... (7 Replies)
Discussion started by: sanoop
7 Replies

6. Linux

Showing "permission denied" when trying to login in - Montavista Linux

Hello friends, I have scratched my system and after that when I am trying to access the console via root login it's failing with an error message of "permission denied". I am able to access the other login, I am having only problem with root and some other user login. I am using an telnet... (2 Replies)
Discussion started by: sanoop
2 Replies

7. Solaris

missing "nisdomainobject.schema" openldap on solaris 10

Hello I am setting the following openladp on solaris 10 (amd64 8/11), i have Berkeley DB installed (db-4.4.20.tar.gz) and openldap (2.4.26). All is going quite well however i don't have "nisdomainobject.schema" for solaris, i know you could download this at one point. Does anyone have a copy... (0 Replies)
Discussion started by: Carlt23
0 Replies

8. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone... (7 Replies)
Discussion started by: shis100
7 Replies

9. UNIX for Dummies Questions & Answers

Unable to use the Sudo command. "0509-130 Symbol resolution failed for sudo because:"

Hi! I'm very new to unix, so please keep that in mind with the level of language used if you choose to help :D Thanks! When attempting to use sudo on and AIX machine with oslevel 5.1.0.0, I get the following error: exec(): 0509-036 Cannot load program sudo because of the following errors:... (1 Reply)
Discussion started by: Chloe123
1 Replies

10. UNIX for Dummies Questions & Answers

Explain the line "mn_code=`env|grep "..mn"|awk -F"=" '{print $2}'`"

Hi Friends, Can any of you explain me about the below line of code? mn_code=`env|grep "..mn"|awk -F"=" '{print $2}'` Im not able to understand, what exactly it is doing :confused: Any help would be useful for me. Lokesha (4 Replies)
Discussion started by: Lokesha
4 Replies

Featured Tech Videos