sudo
sudo
(1980s) is a program for Unix-like computer operating systems that allows users to run programs with the security privileges of another user.
Examples[edit]
- Add user to sudo group:
sudo usermod -aG sudo YOUR_USERNAME
sudo -u postgres psql
Task[edit]
- Allow user YOUR_USER_NAME to run sudo commands without typing the password:
Include in /etc/sudoers
, using the visudo
command, the following line at the end of the file:
YOUR_USER_NAME ALL=(ALL) NOPASSWD:ALL
[1]
- Understand order rules are applied and impact: https://vim.fandom.com/wiki/Set_Vim_as_your_default_editor_for_Unix
- Use Ansible to modify file for passwordless sudo execution in Ubuntu
Security vulnerabilities[edit]
- CVE-2019-14287 https://nvd.nist.gov/vuln/detail/CVE-2019-14287, https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14287. CVSS Base Score: 8.8
Exploitable if the following configuration is present:
username hostname = (ALL, !root) path-to-command
Errors[edit]
sudo: unable to resolve host
See: resolv.conf
[sudo] password for USERNAME: USERNAME is not in the sudoers file. This incident will be reported.
Options[edit]
Related terms[edit]
See also[edit]
Advertising: