|
version 1.1.1.1, 2012/02/21 16:23:02
|
version 1.1.1.2, 2012/05/29 12:26:49
|
|
Line 6 N�NA�AM�ME�E
|
Line 6 N�NA�AM�ME�E
|
| sudo, sudoedit - execute a command as another user |
sudo, sudoedit - execute a command as another user |
| |
|
| S�SY�YN�NO�OP�PS�SI�IS�S |
S�SY�YN�NO�OP�PS�SI�IS�S |
| s�su�ud�do�o [-�-D�D _�l_�e_�v_�e_�l] -�-h�h | -�-K�K | -�-k�k | -�-V�V | s�su�ud�do�o -�-h�h | -�-K�K | -�-k�k | -�-V�V |
| |
|
| s�su�ud�do�o -�-v�v [-�-A�Ak�kn�nS�S] [-�-a�a _�a_�u_�t_�h_�__�t_�y_�p_�e] [-�-D�D _�l_�e_�v_�e_�l] [-�-g�g _�g_�r_�o_�u_�p _�n_�a_�m_�e|_�#_�g_�i_�d] | s�su�ud�do�o -�-v�v [-�-A�Ak�kn�nS�S] [-�-a�a _�a_�u_�t_�h_�__�t_�y_�p_�e] [-�-g�g _�g_�r_�o_�u_�p _�n_�a_�m_�e|_�#_�g_�i_�d] [-�-p�p _�p_�r_�o_�m_�p_�t] |
| [-�-p�p _�p_�r_�o_�m_�p_�t] [-�-u�u _�u_�s_�e_�r _�n_�a_�m_�e|_�#_�u_�i_�d] | [-�-u�u _�u_�s_�e_�r _�n_�a_�m_�e|_�#_�u_�i_�d] |
| |
|
| s�su�ud�do�o -�-l�l[�[l�l]�] [-�-A�Ak�kn�nS�S] [-�-a�a _�a_�u_�t_�h_�__�t_�y_�p_�e] [-�-D�D _�l_�e_�v_�e_�l] [-�-g�g _�g_�r_�o_�u_�p _�n_�a_�m_�e|_�#_�g_�i_�d] | s�su�ud�do�o -�-l�l[�[l�l]�] [-�-A�Ak�kn�nS�S] [-�-a�a _�a_�u_�t_�h_�__�t_�y_�p_�e] [-�-g�g _�g_�r_�o_�u_�p _�n_�a_�m_�e|_�#_�g_�i_�d] [-�-p�p _�p_�r_�o_�m_�p_�t] |
| [-�-p�p _�p_�r_�o_�m_�p_�t] [-�-U�U _�u_�s_�e_�r _�n_�a_�m_�e] [-�-u�u _�u_�s_�e_�r _�n_�a_�m_�e|_�#_�u_�i_�d] [_�c_�o_�m_�m_�a_�n_�d] | [-�-U�U _�u_�s_�e_�r _�n_�a_�m_�e] [-�-u�u _�u_�s_�e_�r _�n_�a_�m_�e|_�#_�u_�i_�d] [_�c_�o_�m_�m_�a_�n_�d] |
| |
|
| s�su�ud�do�o [-�-A�Ab�bE�EH�Hn�nP�PS�S] [-�-a�a _�a_�u_�t_�h_�__�t_�y_�p_�e] [-�-C�C _�f_�d] [-�-D�D _�l_�e_�v_�e_�l] [-�-c�c _�c_�l_�a_�s_�s|_�-] | s�su�ud�do�o [-�-A�Ab�bE�EH�Hn�nP�PS�S] [-�-a�a _�a_�u_�t_�h_�__�t_�y_�p_�e] [-�-C�C _�f_�d] [-�-c�c _�c_�l_�a_�s_�s|_�-] |
| [-�-g�g _�g_�r_�o_�u_�p _�n_�a_�m_�e|_�#_�g_�i_�d] [-�-p�p _�p_�r_�o_�m_�p_�t] [-�-r�r _�r_�o_�l_�e] [-�-t�t _�t_�y_�p_�e] |
[-�-g�g _�g_�r_�o_�u_�p _�n_�a_�m_�e|_�#_�g_�i_�d] [-�-p�p _�p_�r_�o_�m_�p_�t] [-�-r�r _�r_�o_�l_�e] [-�-t�t _�t_�y_�p_�e] |
| [-�-u�u _�u_�s_�e_�r _�n_�a_�m_�e|_�#_�u_�i_�d] [V�VA�AR�R=_�v_�a_�l_�u_�e] [-�-i�i | -�-s�s] [_�c_�o_�m_�m_�a_�n_�d] |
[-�-u�u _�u_�s_�e_�r _�n_�a_�m_�e|_�#_�u_�i_�d] [V�VA�AR�R=_�v_�a_�l_�u_�e] [-�-i�i | -�-s�s] [_�c_�o_�m_�m_�a_�n_�d] |
| |
|
| s�su�ud�do�oe�ed�di�it�t [-�-A�An�nS�S] [-�-a�a _�a_�u_�t_�h_�__�t_�y_�p_�e] [-�-C�C _�f_�d] [-�-c�c _�c_�l_�a_�s_�s|_�-] [-�-D�D _�l_�e_�v_�e_�l] | s�su�ud�do�oe�ed�di�it�t [-�-A�An�nS�S] [-�-a�a _�a_�u_�t_�h_�__�t_�y_�p_�e] [-�-C�C _�f_�d] [-�-c�c _�c_�l_�a_�s_�s|_�-] |
| [-�-g�g _�g_�r_�o_�u_�p _�n_�a_�m_�e|_�#_�g_�i_�d] [-�-p�p _�p_�r_�o_�m_�p_�t] [-�-u�u _�u_�s_�e_�r _�n_�a_�m_�e|_�#_�u_�i_�d] file ... |
[-�-g�g _�g_�r_�o_�u_�p _�n_�a_�m_�e|_�#_�g_�i_�d] [-�-p�p _�p_�r_�o_�m_�p_�t] [-�-u�u _�u_�s_�e_�r _�n_�a_�m_�e|_�#_�u_�i_�d] file ... |
| |
|
| D�DE�ES�SC�CR�RI�IP�PT�TI�IO�ON�N |
D�DE�ES�SC�CR�RI�IP�PT�TI�IO�ON�N |
|
Line 30 D�DE�ES�SC�CR�RI�IP�PT�TI�IO�ON�N
|
Line 30 D�DE�ES�SC�CR�RI�IP�PT�TI�IO�ON�N
|
| |
|
| s�su�ud�do�o supports a plugin architecture for security policies and |
s�su�ud�do�o supports a plugin architecture for security policies and |
| input/output logging. Third parties can develop and distribute their |
input/output logging. Third parties can develop and distribute their |
| own policy and I/O logging modules to work seemlessly with the s�su�ud�do�o | own policy and I/O logging modules to work seamlessly with the s�su�ud�do�o |
| front end. The default security policy is _�s_�u_�d_�o_�e_�r_�s, which is configured |
front end. The default security policy is _�s_�u_�d_�o_�e_�r_�s, which is configured |
| via the file _�/_�e_�t_�c_�/_�s_�u_�d_�o_�e_�r_�s, or via LDAP. See the PLUGINS section for |
via the file _�/_�e_�t_�c_�/_�s_�u_�d_�o_�e_�r_�s, or via LDAP. See the PLUGINS section for |
| more information. |
more information. |
|
Line 110 O�OP�PT�TI�IO�ON�NS�S
|
Line 110 O�OP�PT�TI�IO�ON�NS�S
|
| is already root. This option is only available on systems |
is already root. This option is only available on systems |
| with BSD login classes. |
with BSD login classes. |
| |
|
| -D _�l_�e_�v_�e_�l Enable debugging of s�su�ud�do�o plugins and s�su�ud�do�o itself. The |
|
| _�l_�e_�v_�e_�l may be a value from 1 through 9. |
|
| |
|
| -E The -�-E�E (_�p_�r_�e_�s_�e_�r_�v_�e _�e_�n_�v_�i_�r_�o_�n_�m_�e_�n_�t) option indicates to the |
-E The -�-E�E (_�p_�r_�e_�s_�e_�r_�v_�e _�e_�n_�v_�i_�r_�o_�n_�m_�e_�n_�t) option indicates to the |
| security policy that the user wishes to preserve their |
security policy that the user wishes to preserve their |
| existing environment variables. The security policy may |
existing environment variables. The security policy may |
|
Line 315 O�OP�PT�TI�IO�ON�NS�S
|
Line 312 O�OP�PT�TI�IO�ON�NS�S
|
| line are subject to the same restrictions as normal environment |
line are subject to the same restrictions as normal environment |
| variables with one important exception. If the _�s_�e_�t_�e_�n_�v option is set in |
variables with one important exception. If the _�s_�e_�t_�e_�n_�v option is set in |
| _�s_�u_�d_�o_�e_�r_�s, the command to be run has the SETENV tag set or the command |
_�s_�u_�d_�o_�e_�r_�s, the command to be run has the SETENV tag set or the command |
| matched is ALL, the user may set variables that would overwise be | matched is ALL, the user may set variables that would otherwise be |
| forbidden. See _�s_�u_�d_�o_�e_�r_�s(4) for more information. |
forbidden. See _�s_�u_�d_�o_�e_�r_�s(4) for more information. |
| |
|
| P�PL�LU�UG�GI�IN�NS�S |
P�PL�LU�UG�GI�IN�NS�S |
|
Line 329 P�PL�LU�UG�GI�IN�NS�S
|
Line 326 P�PL�LU�UG�GI�IN�NS�S
|
| # Default /etc/sudo.conf file |
# Default /etc/sudo.conf file |
| # |
# |
| # Format: |
# Format: |
| # Plugin plugin_name plugin_path | # Plugin plugin_name plugin_path plugin_options ... |
| # Path askpass /path/to/askpass |
# Path askpass /path/to/askpass |
| # Path noexec /path/to/noexec.so | # Path noexec /path/to/sudo_noexec.so |
| | # Debug sudo /var/log/sudo_debug all@warn |
| | # Set disable_coredump true |
| # |
# |
| # The plugin_path is relative to /usr/local/libexec unless |
# The plugin_path is relative to /usr/local/libexec unless |
| # fully qualified. |
# fully qualified. |
| # The plugin_name corresponds to a global symbol in the plugin |
# The plugin_name corresponds to a global symbol in the plugin |
| # that contains the plugin interface structure. |
# that contains the plugin interface structure. |
| |
# The plugin_options are optional. |
| # |
# |
| Plugin policy_plugin sudoers.so |
Plugin policy_plugin sudoers.so |
| Plugin io_plugin sudoers.so |
Plugin io_plugin sudoers.so |
|
Line 347 P�PL�LU�UG�GI�IN�NS�S
|
Line 347 P�PL�LU�UG�GI�IN�NS�S
|
| io_plugin in the plugin shared object. The _�p_�a_�t_�h may be fully qualified |
io_plugin in the plugin shared object. The _�p_�a_�t_�h may be fully qualified |
| or relative. If not fully qualified it is relative to the |
or relative. If not fully qualified it is relative to the |
| _�/_�u_�s_�r_�/_�l_�o_�c_�a_�l_�/_�l_�i_�b_�e_�x_�e_�c directory. Any additional parameters after the _�p_�a_�t_�h |
_�/_�u_�s_�r_�/_�l_�o_�c_�a_�l_�/_�l_�i_�b_�e_�x_�e_�c directory. Any additional parameters after the _�p_�a_�t_�h |
| are ignored. Lines that don't begin with Plugin or Path are silently | are passed as arguments to the plugin's _�o_�p_�e_�n function. Lines that |
| ignored | don't begin with Plugin, Path, Debug or Set are silently ignored. |
| |
|
| For more information, see the _�s_�u_�d_�o_�__�p_�l_�u_�g_�i_�n(1m) manual. |
For more information, see the _�s_�u_�d_�o_�__�p_�l_�u_�g_�i_�n(1m) manual. |
| |
|
|
Line 379 P�PA�AT�TH�HS�S
|
Line 379 P�PA�AT�TH�HS�S
|
| that support LD_PRELOAD or its equivalent. Defaults to |
that support LD_PRELOAD or its equivalent. Defaults to |
| _�/_�u_�s_�r_�/_�l_�o_�c_�a_�l_�/_�l_�i_�b_�e_�x_�e_�c_�/_�s_�u_�d_�o_�__�n_�o_�e_�x_�e_�c_�._�s_�o. |
_�/_�u_�s_�r_�/_�l_�o_�c_�a_�l_�/_�l_�i_�b_�e_�x_�e_�c_�/_�s_�u_�d_�o_�__�n_�o_�e_�x_�e_�c_�._�s_�o. |
| |
|
| |
D�DE�EB�BU�UG�G F�FL�LA�AG�GS�S |
| |
s�su�ud�do�o versions 1.8.4 and higher support a flexible debugging framework |
| |
that can help track down what s�su�ud�do�o is doing internally if there is a |
| |
problem. |
| |
|
| |
A Debug line consists of the Debug keyword, followed by the name of the |
| |
program to debug (s�su�ud�do�o, v�vi�is�su�ud�do�o, s�su�ud�do�or�re�ep�pl�la�ay�y), the debug file name and a |
| |
comma-separated list of debug flags. The debug flag syntax used by |
| |
s�su�ud�do�o and the _�s_�u_�d_�o_�e_�r_�s plugin is _�s_�u_�b_�s_�y_�s_�t_�e_�m@_�p_�r_�i_�o_�r_�i_�t_�y but the plugin is |
| |
free to use a different format so long as it does not include a command |
| |
,. |
| |
|
| |
For instance: |
| |
|
| |
Debug sudo /var/log/sudo_debug all@warn,plugin@info |
| |
|
| |
would log all debugging statements at the _�w_�a_�r_�n level and higher in |
| |
addition to those at the _�i_�n_�f_�o level for the plugin subsystem. |
| |
|
| |
Currently, only one Debug entry per program is supported. The sudo |
| |
Debug entry is shared by the s�su�ud�do�o front end, s�su�ud�do�oe�ed�di�it�t and the plugins. |
| |
A future release may add support for per-plugin Debug lines and/or |
| |
support for multiple debugging files for a single program. |
| |
|
| |
The priorities used by the s�su�ud�do�o front end, in order of decreasing |
| |
severity, are: _�c_�r_�i_�t, _�e_�r_�r, _�w_�a_�r_�n, _�n_�o_�t_�i_�c_�e, _�d_�i_�a_�g, _�i_�n_�f_�o, _�t_�r_�a_�c_�e and _�d_�e_�b_�u_�g. |
| |
Each priority, when specified, also includes all priorities higher than |
| |
it. For example, a priority of _�n_�o_�t_�i_�c_�e would include debug messages |
| |
logged at _�n_�o_�t_�i_�c_�e and higher. |
| |
|
| |
The following subsystems are used by s�su�ud�do�o: |
| |
|
| |
_�a_�l_�l matches every subsystem |
| |
|
| |
_�a_�r_�g_�s command line argument processing |
| |
|
| |
_�c_�o_�n_�v user conversation |
| |
|
| |
_�e_�d_�i_�t sudoedit |
| |
|
| |
_�e_�x_�e_�c command execution |
| |
|
| |
_�m_�a_�i_�n s�su�ud�do�o main function |
| |
|
| |
_�n_�e_�t_�i_�f network interface handling |
| |
|
| |
_�p_�c_�o_�m_�m communication with the plugin |
| |
|
| |
_�p_�l_�u_�g_�i_�n plugin configuration |
| |
|
| |
_�p_�t_�y pseudo-tty related code |
| |
|
| |
_�s_�e_�l_�i_�n_�u_�x SELinux-specific handling |
| |
|
| |
_�u_�t_�i_�l utility functions |
| |
|
| |
_�u_�t_�m_�p utmp handling |
| |
|
| R�RE�ET�TU�UR�RN�N V�VA�AL�LU�UE�ES�S |
R�RE�ET�TU�UR�RN�N V�VA�AL�LU�UE�ES�S |
| Upon successful execution of a program, the exit status from s�su�ud�do�o will |
Upon successful execution of a program, the exit status from s�su�ud�do�o will |
| simply be the exit status of the program that was executed. |
simply be the exit status of the program that was executed. |
|
Line 415 S�SE�EC�CU�UR�RI�IT�TY�Y N�NO�OT�TE�ES�S
|
Line 473 S�SE�EC�CU�UR�RI�IT�TY�Y N�NO�OT�TE�ES�S
|
| information, please see the PREVENTING SHELL ESCAPES section in |
information, please see the PREVENTING SHELL ESCAPES section in |
| _�s_�u_�d_�o_�e_�r_�s(4). |
_�s_�u_�d_�o_�e_�r_�s(4). |
| |
|
| |
To prevent the disclosure of potentially sensitive information, s�su�ud�do�o |
| |
disables core dumps by default while it is executing (they are re- |
| |
enabled for the command that is run). To aid in debugging s�su�ud�do�o |
| |
crashes, you may wish to re-enable core dumps by setting |
| |
"disable_coredump" to false in the _�/_�e_�t_�c_�/_�s_�u_�d_�o_�._�c_�o_�n_�f file. |
| |
|
| |
Set disable_coredump false |
| |
|
| |
Note that by default, most operating systems disable core dumps from |
| |
setuid programs, which includes s�su�ud�do�o. To actually get a s�su�ud�do�o core file |
| |
you may need to enable core dumps for setuid processes. On BSD and |
| |
Linux systems this is accomplished via the sysctl command, on Solaris |
| |
the coreadm command can be used. |
| |
|
| E�EN�NV�VI�IR�RO�ON�NM�ME�EN�NT�T |
E�EN�NV�VI�IR�RO�ON�NM�ME�EN�NT�T |
| s�su�ud�do�o utilizes the following environment variables. The security policy |
s�su�ud�do�o utilizes the following environment variables. The security policy |
| has control over the content of the command's environment. |
has control over the content of the command's environment. |
|
Line 460 E�EN�NV�VI�IR�RO�ON�NM�ME�EN�NT�T
|
Line 532 E�EN�NV�VI�IR�RO�ON�NM�ME�EN�NT�T
|
| SUDO_EDITOR is not set |
SUDO_EDITOR is not set |
| |
|
| F�FI�IL�LE�ES�S |
F�FI�IL�LE�ES�S |
| _�/_�e_�t_�c_�/_�s_�u_�d_�o_�._�c_�o_�n_�f s�su�ud�do�o plugin and path configuration | _�/_�e_�t_�c_�/_�s_�u_�d_�o_�._�c_�o_�n_�f s�su�ud�do�o front end configuration |
| |
|
| E�EX�XA�AM�MP�PL�LE�ES�S |
E�EX�XA�AM�MP�PL�LE�ES�S |
| Note: the following examples assume a properly configured security |
Note: the following examples assume a properly configured security |
|
Line 507 A�AU�UT�TH�HO�OR�RS�S
|
Line 579 A�AU�UT�TH�HO�OR�RS�S
|
| |
|
| Todd C. Miller |
Todd C. Miller |
| |
|
| See the HISTORY file in the s�su�ud�do�o distribution or visit | See the CONTRIBUTORS file in the s�su�ud�do�o distribution |
| http://www.sudo.ws/sudo/history.html for a short history of s�su�ud�do�o. | (http://www.sudo.ws/sudo/contributors.html) for a list of people who |
| | have contributed to s�su�ud�do�o. |
| |
|
| |
H�HI�IS�ST�TO�OR�RY�Y |
| |
See the HISTORY file in the s�su�ud�do�o distribution |
| |
(http://www.sudo.ws/sudo/history.html) for a brief history of sudo. |
| |
|
| C�CA�AV�VE�EA�AT�TS�S |
C�CA�AV�VE�EA�AT�TS�S |
| There is no easy way to prevent a user from gaining a root shell if |
There is no easy way to prevent a user from gaining a root shell if |
| that user is allowed to run arbitrary commands via s�su�ud�do�o. Also, many |
that user is allowed to run arbitrary commands via s�su�ud�do�o. Also, many |
|
Line 547 D�DI�IS�SC�CL�LA�AI�IM�ME�ER�R
|
Line 624 D�DI�IS�SC�CL�LA�AI�IM�ME�ER�R
|
| |
|
| |
|
| |
|
| 1.8.3 September 16, 2011 SUDO(1m) | 1.8.5 March 15, 2012 SUDO(1m) |
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to sudo.cat CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / sudo / doc