Difference between revisions of "/etc/sudoers"

Default /etc/sudoers in Ubuntu 20.04 LTS

sudo cat /etc/sudoers | grep -v "^#" | grep .
Defaults	env_reset
Defaults	mail_badpass
Defaults	secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"
root	ALL=(ALL:ALL) ALL
%admin  ALL=(ALL) ALL
%sudo	ALL=(ALL:ALL) ALL

cat /etc/sudoers
#
# This file MUST be edited with the 'visudo' command as root.
#
# Please consider adding local content in /etc/sudoers.d/ instead of
# directly modifying this file.
#
# See the man page for details on how to write a sudoers file.
#
Defaults	env_reset
Defaults	mail_badpass
Defaults	secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"

# Host alias specification

# User alias specification

# Cmnd alias specification

# User privilege specification
root	ALL=(ALL:ALL) ALL

# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL

# Allow members of group sudo to execute any command
%sudo	ALL=(ALL:ALL) ALL

# See sudoers(5) for more information on "#include" directives:

#includedir /etc/sudoers.d

Related terms[edit]

• visudo command
• %sudo ALL=(ALL) NOPASSWD: ALL
• /etc/sudoers.d/

env_keep
always_set_home
match_group_by_gid
always_query_group_plugin
wheel

• is not in the sudoers file

Activities[edit]

• Enable passwordless sudo for a specific user
• Add user to appropriate group, sudo in Ubuntu, admin in macOS:
  • Linux: usermod -aG sudo USERNAME
  • macOS: sudo dseditgroup -o edit -a $username_to_add -t user admin

See also[edit]

• sudo, visudo, su, passwd, sudo su, Passwordless sudo, /etc/sudoers, /etc/sudoers.d/, /etc/sudoers, sudo --help