Difference between revisions of "/etc/sudoers"
Jump to navigation
Jump to search
| (14 intermediate revisions by 3 users not shown) | |||
| Line 1: | Line 1: | ||
Default <code>[[/etc/]]sudoers</code> in [[Ubuntu 20.04 LTS]] | Default <code>[[/etc/]]sudoers</code> in [[Ubuntu 20.04 LTS]] | ||
| − | |||
sudo cat /etc/sudoers | grep -v "^#" | grep . | sudo cat /etc/sudoers | grep -v "^#" | grep . | ||
Defaults env_reset | Defaults env_reset | ||
Defaults mail_badpass | Defaults mail_badpass | ||
| − | Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin" | + | Defaults [[secure_path]]="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin" |
root ALL=(ALL:ALL) ALL | root ALL=(ALL:ALL) ALL | ||
| − | %[[admin]] ALL=(ALL) ALL | + | %[[admin]] [[ALL=(ALL) ALL]] |
%[[sudo]] ALL=(ALL:ALL) ALL | %[[sudo]] ALL=(ALL:ALL) ALL | ||
| − | |||
| − | |||
<pre> | <pre> | ||
| Line 48: | Line 45: | ||
== Related terms == | == Related terms == | ||
| − | + | * <code>[[visudo]]</code> command | |
| − | * <code>[[ | + | * <code>[[%sudo ALL=(ALL) NOPASSWD: ALL]]</code> |
| − | * [[%sudo ALL=(ALL) NOPASSWD: ALL]] | ||
* <code>[[/etc/sudoers.d/]]</code> | * <code>[[/etc/sudoers.d/]]</code> | ||
| + | [[env_keep]] | ||
| + | [[always_set_home]] | ||
| + | [[match_group_by_gid]] | ||
| + | [[always_query_group_plugin]] | ||
| + | [[wheel]] | ||
| + | |||
| + | * [[is not in the sudoers file]] | ||
== Activities == | == Activities == | ||
* [[Enable passwordless sudo for a specific user]] | * [[Enable passwordless sudo for a specific user]] | ||
| + | * Add user to appropriate [[group]], sudo in Ubuntu, admin in macOS: | ||
| + | ** Linux: <code>[[usermod]] -aG sudo USERNAME</code> | ||
| + | ** [[macOS]]: <code>sudo [[dseditgroup]] -o edit -a $username_to_add -t user admin</code> | ||
== See also == | == See also == | ||
Latest revision as of 13:57, 4 June 2024
Default /etc/sudoers in Ubuntu 20.04 LTS
sudo cat /etc/sudoers | grep -v "^#" | grep . Defaults env_reset Defaults mail_badpass Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin" root ALL=(ALL:ALL) ALL %admin ALL=(ALL) ALL %sudo ALL=(ALL:ALL) ALL
cat /etc/sudoers # # This file MUST be edited with the 'visudo' command as root. # # Please consider adding local content in /etc/sudoers.d/ instead of # directly modifying this file. # # See the man page for details on how to write a sudoers file. # Defaults env_reset Defaults mail_badpass Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin" # Host alias specification # User alias specification # Cmnd alias specification # User privilege specification root ALL=(ALL:ALL) ALL # Members of the admin group may gain root privileges %admin ALL=(ALL) ALL # Allow members of group sudo to execute any command %sudo ALL=(ALL:ALL) ALL # See sudoers(5) for more information on "#include" directives: #includedir /etc/sudoers.d
Related terms[edit]
env_keep always_set_home match_group_by_gid always_query_group_plugin wheel
Activities[edit]
- Enable passwordless sudo for a specific user
- Add user to appropriate group, sudo in Ubuntu, admin in macOS:
- Linux:
usermod -aG sudo USERNAME - macOS:
sudo dseditgroup -o edit -a $username_to_add -t user admin
- Linux:
See also[edit]
Advertising:
