- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Sudo Logging
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 08:36 PM
10-19-2005 08:36 PM
I am setting up sudo to delegate tasks to a very non techincal service desk. So far my testing has been positive. however, when i try to run a command using sudo that is not allowed, the warning message echos to the root users terminal. This behaviour is really not what I want. here is my /etc/sudoers file:
Defaults logfile=/var/run/sudo/sudo.log, mailto="admin@somewhere.co.uk"
Cmnd_Alias ADDUSER=/ops/adduser
# User privilege specification
root ALL=(ALL) ALL
# Members of the sdesk group may gain root privileges
%sdesk ALL=NOPASSWD:/sbin/passwd,ADDUSER
As I say, it works fine, but i want to stop failure warnings going to the root user's tty.
Thanks for any advice.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 08:47 PM
10-19-2005 08:47 PM
Re: Sudo Logging
Awadhesh
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 08:51 PM
10-19-2005 08:51 PM
Re: Sudo Logging
-Muthu
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 09:05 PM
10-19-2005 09:05 PM
Re: Sudo Logging
for example i typed this as the user:
sudo vipw
and root got this message on it's terminal:
Oct 20 10:04:42 bd-devl sudo: petbou : user NOT in sudoers ; TTY=pts/te ; PW
D=/ops/servicedesk ; USER=root ; COMMAND=/usr/bin/vipw
Which also goes to the log file. in this example the user is not in the right unix group. but it happens on any failure event.
How do i stop this?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 09:07 PM
10-19-2005 09:07 PM
Re: Sudo Logging
Oct 20 10:07:22 bd-devl sudo: petbou : command not allowed ; TTY=pts/te ; PW
D=/ops/servicedesk ; USER=root ; COMMAND=/usr/bin/vipw
goes to roots terminal
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 09:11 PM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 09:19 PM
10-19-2005 09:19 PM
Re: Sudo Logging
i had not thought of that. These security events are 'alert' and this is configured as such:
mail.debug /var/adm/syslog/mail.log
*.info;mail.none /var/adm/syslog/syslog.log
*.alert /dev/console
*.alert root
*.emerg *
if I delete the console line will that be ok?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 09:29 PM
10-19-2005 09:29 PM
Re: Sudo Logging
Defaults logfile=/var/run/sudo/sudo.log, mailto="admin@somewhere.co.uk"
to
Defaults logfile=/var/run/sudo/sudo.log
Defaults mailto="admin@somewhere.co.uk"
Regards,
Sergejs
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 09:57 PM
10-19-2005 09:57 PM
Re: Sudo Logging
syslog_badpri
Syslog priority to use when user authenticates unsuccessfully. Defaults to alert.
setting of suerors file. It will send failed authentication details to root's tty bcas syslog.conf is defined as,
*.alert /dev/console
*.alert root
Change syslog_badpri to notice. It will redirect to sudo log file as like syslog_goodpri.
hth.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2005 10:00 PM
10-19-2005 10:00 PM
Re: Sudo Logging
-Arun