Comments on: Sudo Voodoo

by: iansane

Wed, 18 Jun 2008 03:13:45 +0000

The use of acronyms has gone to insane levels in all of the IT World. SQL is three letters S, Q, and L. That’s how it’s pronounced. People who insist on calling it sequel are TARDS in my opinion. Trying to make words when it’s just as fast to say and even faster to write the letters doesn’t make one seem cool or computer savy. It makes them silly. I won’t say a word about sudo because I have the utmost respect for the linux Guru’s. They can call it what they want.
It’s funny though that my friend who got me started on Linux kept telling me to try installing a Digital Subscriber Line on my thumbdrive? DSL (Damn Small Linux):-)

Thanks for the informative article! It beats trying to figure out man pages.

by: setchele

Sat, 02 Feb 2008 04:41:36 +0000

It’s not just for root access though. You can use it to grant account access from one user to another. For example, logging in as user1 and then entering “sudo -i -u user2″ gives you an interactive session as user2 without having to know user2’s password (assuming appropriate sudoers configuration). So for example if user2 is a production account running say the accounting system and user1, a support person, needs to login to the production accounting account they can do so without knowing the production account password and their access is logged (i.e., user user1 logged in as user2 at ).
One issue I’ve encountered with sudo is in situations where you need to tunnel X-Windows. For example, user1 uses “ssh -X host1″ and then once logged into host1 (with X DISPLAY setting appropriately automatically handled by ssh -X) then needs to sudo to user2 and run an X-Windows client the DISPLAY variable doesn’t seem to get propagated. Setting the DISPLAY variable manually to the value from the tunneled session (localhost:10.0) and then running the X-client application results in “X11 connection rejected because of wrong authentication”.

by: mohd_feroz2003linux

Thu, 31 Jan 2008 11:59:14 +0000

cool when if u have more inf on this plz mail me.. i’m a begginner

by: azizisma

Fri, 25 Jan 2008 21:07:09 +0000

thanks for this article

by: Ken Hess

Wed, 23 Jan 2008 17:10:40 +0000

Officially it is soo doo, because you are doing something as another user. I pronounce it both ways but soo doo more often than before. People understand it both ways though. Kind of like SQL. Do you say it ess-cue-ell or sequel?

by: jwilleke

Mon, 21 Jan 2008 13:32:56 +0000

LDAP sudo http://www.gratisoft.us/sudo/readme_ldap.html

sudo home page:
http://www.gratisoft.us/sudo/

by: jwilleke

Mon, 21 Jan 2008 13:31:41 +0000

There is an LDAP Implementation for sudo.
-jim

by: csbeltran

Sat, 19 Jan 2008 21:58:50 +0000

How can this be implemented in a NIS environment?
I want to create a group of administrators who can have certain sudo priveleges distributed to all of the systems in my NIS domain.

by: Robert McClure

Sat, 19 Jan 2008 18:02:16 +0000

To prevent a user from shelling out with vi (which is vim on my machines), use the “-Z” option or “rvim” which is the same thing. If your vi is different, run “man vi” to find out how to make it restricted.

by: lrunkle911

Sat, 19 Jan 2008 16:18:35 +0000

“no one requires their sys admins to use sudo, correct ? Only users who need to perform a specific task.

How do you track what your sys admins are doing ? ”

Where I work, even I (sysadmin) use sudo. I could get around it easily enough but if I am going to be having everyone else use it then I need to lead by example and use it to.