Difference between revisions of "/etc/sudoers"

From wikieduonline
Jump to navigation Jump to search
 
(11 intermediate revisions by 3 users not shown)
Line 1: Line 1:
  
 
Default <code>[[/etc/]]sudoers</code> in [[Ubuntu 20.04 LTS]]
 
Default <code>[[/etc/]]sudoers</code> in [[Ubuntu 20.04 LTS]]
 
  
 
  sudo cat /etc/sudoers | grep -v "^#" | grep .
 
  sudo cat /etc/sudoers | grep -v "^#" | grep .
 
  Defaults env_reset
 
  Defaults env_reset
 
  Defaults mail_badpass
 
  Defaults mail_badpass
  Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"
+
  Defaults [[secure_path]]="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"
 
  root ALL=(ALL:ALL) ALL
 
  root ALL=(ALL:ALL) ALL
  %[[admin]] ALL=(ALL) ALL
+
  %[[admin]] [[ALL=(ALL) ALL]]
 
  %[[sudo]] ALL=(ALL:ALL) ALL
 
  %[[sudo]] ALL=(ALL:ALL) ALL
 
 
  
 
<pre>
 
<pre>
Line 49: Line 46:
 
== Related terms ==
 
== Related terms ==
 
* <code>[[visudo]]</code> command
 
* <code>[[visudo]]</code> command
* [[%sudo ALL=(ALL) NOPASSWD: ALL]]
+
* <code>[[%sudo ALL=(ALL) NOPASSWD: ALL]]</code>
 
* <code>[[/etc/sudoers.d/]]</code>
 
* <code>[[/etc/sudoers.d/]]</code>
 +
[[env_keep]]
 +
[[always_set_home]]
 +
[[match_group_by_gid]]
 +
[[always_query_group_plugin]]
 +
[[wheel]]
 +
 +
* [[is not in the sudoers file]]
  
 
== Activities ==
 
== Activities ==
 
* [[Enable passwordless sudo for a specific user]]
 
* [[Enable passwordless sudo for a specific user]]
* Add user to <code>sudo</code> [[group]]: <code>[[usermod]] -aG sudo USERNAME</code>
+
* Add user to appropriate [[group]], sudo in Ubuntu, admin in macOS:
 +
** Linux: <code>[[usermod]] -aG sudo USERNAME</code>
 +
** [[macOS]]: <code>sudo [[dseditgroup]] -o edit -a $username_to_add -t user admin</code>
  
 
== See also ==
 
== See also ==

Latest revision as of 13:57, 4 June 2024

Default /etc/sudoers in Ubuntu 20.04 LTS

sudo cat /etc/sudoers | grep -v "^#" | grep .
Defaults	env_reset
Defaults	mail_badpass
Defaults	secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"
root	ALL=(ALL:ALL) ALL
%admin  ALL=(ALL) ALL
%sudo	ALL=(ALL:ALL) ALL
cat /etc/sudoers
#
# This file MUST be edited with the 'visudo' command as root.
#
# Please consider adding local content in /etc/sudoers.d/ instead of
# directly modifying this file.
#
# See the man page for details on how to write a sudoers file.
#
Defaults	env_reset
Defaults	mail_badpass
Defaults	secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"

# Host alias specification

# User alias specification

# Cmnd alias specification

# User privilege specification
root	ALL=(ALL:ALL) ALL

# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL

# Allow members of group sudo to execute any command
%sudo	ALL=(ALL:ALL) ALL

# See sudoers(5) for more information on "#include" directives:

#includedir /etc/sudoers.d

Related terms[edit]

env_keep
always_set_home
match_group_by_gid
always_query_group_plugin
wheel

Activities[edit]

See also[edit]

Advertising: