LinuxQuestions.org
Latest LQ Deal: Linux Power User Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-12-2014, 04:31 AM   #1
_mz
Member
 
Registered: Jul 2013
Posts: 33

Rep: Reputation: Disabled
sudo access


Hi Guys,

I need to create a normal user where the user can su to other normal user (sysadm - this user has special privileges) without password as I need to remove any possibility that IDs got locked, password changes and not to give him any hints on our password pattern.

For example:

test-user@lnxtest:~> sudo su - sysadm
test-user's password: <-- bypass this

I tried to play around with sudoers file but no hint since now.
 
Old 03-12-2014, 04:37 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974
"sudo su -" utterly undermines the security of sudo and su. You're using sudo to become root to then run su to become a third user? wtf? I know it's a very common thing to do, but it's insane.

"sudo -i -u sysadm" will achieve the same thing properly. sudo will simulate an initial login for the given user and be aware of it.

And for the password part, I believe you can have a sudoers entry of:
Code:
test-user     ALL=(sysadm) NOPASSWD: /bin/bash

Last edited by acid_kewpie; 03-12-2014 at 04:52 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Sudo access skp Linux - Newbie 4 10-10-2012 02:51 PM
Restrict SUDO Access maddyfreaks Linux - Newbie 8 02-25-2012 02:32 PM
sudo access denied ZAMO Linux - Server 5 03-21-2010 06:48 PM
Sudo Access PMP Linux - Newbie 7 05-04-2009 08:19 AM
sudo access depam Linux - Newbie 1 02-03-2008 07:56 AM


All times are GMT -5. The time now is 08:24 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration