This here will allow user oracle to run /bin/view as root. Is there any particular reason you're putting (root) in there? Imagine someone would make a link /bin/view --> /bin/rm. oracle user would run /bin/rm as root. The (root) there is not a good idea.
Furthermore, you are specifying /var/log/messages in a comma separated list of commands. Sudo interprets this as:
oracle can run
/bin/view
/var/log/messages
/bin/more
But /var/log/messages is not executable (I hope!). The same security concern as above arises.
Also, user oracle can do /bin/more <anything>.
What you probably want is
Which will allow user oracle to run /bin/view with any arguments, and /bin/more /var/log/messages.
This way it will run the commands as user oracle (UID == ID of user oracle) but with root privileges (effective UID == 0 (root ID) ).
I have been searching and reading about syslog. I would like to know how to Transfer the logs being thrown into /var/log/messages into another file example /var/log/volumelog.
tail -f /var/log/messages
dblogger: msg_to_dbrow: no logtype using missing
dblogger: msg_to_dbrow_str: val ==... (2 Replies)
I am wondering if there is a script (if one exists, not confident in my own scripting ability) that is able to bring up specified information from the /var/log/messages. I need to show logged traffic on specific dates and times and protocols (ie. Show all insecure FTP traffic (most likely via... (13 Replies)
Below is my script to log all the command input by any user to /var/log/messages. But I cant achieve the desired output that i want. PLease see below.
function log2syslog
{
declare COMMAND
COMMAND=$(fc -ln -0)
logger -p local1.notice -t bash -i -- "$USER:$COMMAND"
}
trap... (12 Replies)
Hi
New to Suse - mainly used Solaris.
In solaris dmesg will also show you contents of messages log file but in Suse Liux it doesnt appear to.
I dont have root access to this Suse server, and wondering is there any other tool / utility that allows me to see the messages file contents like on... (1 Reply)
Whenever a user uses su I get the following error messages in /var/log/messages:
Nov 23 04:24:55 <REMOVED> abrt: saved core dump of pid 26141 (/usr/libexec/fprintd) to /var/spool/abrt/ccpp-1322018695-26141.new/coredump (753664 bytes)
Nov 23 04:24:55 <REMOVED> abrtd: Directory... (3 Replies)
How can view log messages between two time frame from /var/log/message or any type of log files.
when logfiles are very big and especially many messages with in few minutes, I would like to display log messages between 5 minute interval.
Could you pls give me the command? (1 Reply)
The /var/adm/messages in Solaris seem to log more system messages/errors compared to /var/log/messages in Linux.
I checked the log level in Linux and they seem OK.
Is there any other log file that contains the messages or is it just that Linux doesn't log great many things? (2 Replies)
Warning... I am a newb. :)
I basically know how to add/rm users, kill pids and monitor diskspace. Not an idiot, but honestly a windows database person. I don't know much about what I am asking about.
In the /var/adm/messages file, today this was added:
Jan 24 09:16:51 my_server login: ... (3 Replies)
hi sirs
can u tell the difference between /var/log/syslogs and /var/adm/messages
in my working place i am having two servers.
in one servers messages file is empty and syslog file is going on increasing..
and in another servers message file is going on increasing but syslog file is... (2 Replies)