Hello,

Can someone tell me what is the difference if the NOPASSWD option enabled or disabled in the sudoers file?

I mean i know that no password required to execute the command if its enabled,
but if its not there it will ask for the user's password not for the root pw. ( because thats how it works to protect the root pw)

but i do not see its meaning, i mean if a user's account gets compromised,
it does not matter if NOPASSWD present or not,

if
NOPASSWD enabled
you can execute the commands which are defined

if
NOPASSWD not present
then i just need to type in the already compromised pw

also i read that sudo for trusted users

Can someone enlight me or give some examples how it can be a part of a good security?or why this NOPASSWD option exist, why it isnt a default value lets say

thanks,
hurryi

Why should I hurry? I'm not in a rush. Read the Sticky at the top of this forum and maybe try a different thread title.
jdk

0 members found this post helpful.

You know hurryi is his username, right?


Kind regards

You have it right. NOPASSWD is not the default so that someone doesn't walk up to your unattended, unlocked, user terminal and run commands as root.

yep u should not hurry^^ take ur time and read slowly

hurryi^^

then he just needs to change the user pw? and then he knows the pw
still not clear

or it make sense if the user not allowed to change pw
like with LDAP auth or something?

Users can't change their password without knowing their password. Try it.

yeh i forget that, you are right thx

Total apologies, Hurryi. Brain malfunction alert. I read "hurryi" as "hurry!"
ciao,
jdk

no problem