[SOLVED] Sudoers Help

skanky · 2010-03-04 21:54:30

I've been looking into this and I can't see what's wrong. It's probably something obvious.
I've checked the wiki, the man page and various tutorials, but well, here we are. I'm sure I'm missing something that's there in black and white (or at least font colour and background colour), but I can't see it.

I'm in group wheel.
All defaults are unchanged and these are the only entries in sudoers (I've cut out the comments etc.)

 
root   ALL=(ALL) ALL
me    ALL=(ALL) NOPASSWD: /usr/bin/rebase
me    ALL=(ALL) NOPASSWD: /sbin/shutdown

%wheel ALL=(ALL) ALL

Running:

sudo shutdown -r now
sudo /usr/bin/rebase

still asks me for my password.

Can someone tell me the reason, please?

Last edited by skanky (2010-03-04 22:25:33)

jasonwryan · 2010-03-04 21:57:55

My sudoer entry is slightly different (and it works):

jason Longbow=NOPASSWD: /sbin/shutdown -h now

(Longbow is hostname of this machine)

#edit which doesn't actually answer your question, but may help in some way (I hope)...

Last edited by jasonwryan (2010-03-04 21:58:44)

bernarcher · 2010-03-04 22:04:25

This is, what I have. Note the "%wheel" comment.

# Shutdown privileges (must come after %wheel)
<user>      ALL=NOPASSWD: /sbin/reboot
<user>      ALL=NOPASSWD: /sbin/halt

The "<user>" of course is the user id to which these privileges apply.

skanky · 2010-03-04 22:07:27

Thanks I'll try changing to <host>=NOPASSWD: <cmd> and see if that works (takes a while to test with the five min timeout - which I could change I realise).

skanky · 2010-03-04 22:11:53

bernarcher wrote:

This is, what I have. Note the "%wheel" comment.
# Shutdown privileges (must come after %wheel)
<user>      ALL=NOPASSWD: /sbin/reboot
<user>      ALL=NOPASSWD: /sbin/halt
The "<user>" of course is the user id to which these privileges apply.

Aha, thanks that could be the issue. I did wonder, but for some reason the wheel definition was last in my file (that could have been me when I installed the machine though, come to think of it).

Note: my previous post was in reply to jasonwryan.

brisbin33 · 2010-03-04 22:16:17

i have the following:

# User privilege specification
root    ALL=(ALL) ALL
patrick ALL=(ALL) ALL
patrick ALL=(ALL) NOPASSWD: /usr/bin/pacman
patrick ALL=(ALL) NOPASSWD: /usr/bin/pacman-color
patrick ALL=(ALL) NOPASSWD: /sbin/telinit
patrick ALL=(ALL) NOPASSWD: /sbin/shutdown
patrick ALL=(ALL) NOPASSWD: /sbin/reboot
patrick ALL=(ALL) NOPASSWD: /usr/sbin/hddtemp

and it works fine (i have no uncommented %wheel section).

you did login/out since the change, yes?

skanky · 2010-03-04 22:24:33

Yes, I did logout & back in (I'll forget to mention that when I first started looking into this I forgot to do that).

Anyway, tuurns out it is the order. The user is obviously overridden by the group they are in. It probably does say this in the manual, but even now a quick extra look and I've missed it.

Many thanks to everyone above.

Last edited by skanky (2010-03-04 22:25:09)

Arch Linux

#1 2010-03-04 21:54:30

[SOLVED] Sudoers Help

#2 2010-03-04 21:57:55

Re: [SOLVED] Sudoers Help

#3 2010-03-04 22:04:25

Re: [SOLVED] Sudoers Help

#4 2010-03-04 22:07:27

Re: [SOLVED] Sudoers Help

#5 2010-03-04 22:11:53

Re: [SOLVED] Sudoers Help

#6 2010-03-04 22:16:17

Re: [SOLVED] Sudoers Help

#7 2010-03-04 22:24:33

Re: [SOLVED] Sudoers Help

Board footer