https://bugzilla.novell.com/show_bug.cgi?id=804945 https://bugzilla.novell.com/show_bug.cgi?id=804945#c2 --- Comment #2 from Vitezslav Cizek <vcizek@suse.com> 2013-04-08 12:16:05 CEST --- (In reply to comment #0)
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0.11) Gecko/20100101 Firefox/10.0.11 Iceweasel/10.0.11
`sudo -l` should not ask for root's password. It is a common way for non-root user to get information about given (by admin) permissions on a particular host.
Reproducible: Always
Steps to Reproduce: 1. 2. 3. Actual Results: # got on a fresh instance of opensuse 12.2
fisher@testing:~> sudo -l root's password: stty: unknown mode: doofus root's password: I can't hear you -- I'm using the scrambler. root's password: I can't hear you -- I'm using the scrambler. sudo: 3 incorrect password attempts
That's because sudo on openSUSE is by default configured to ask for the password of the target user (setting "Defaults targetpw" in sudoers), which defaults to root.
Expected Results: # got this on a debian box
saws% sudo -l Matching Defaults entries for fisher on this host: env_reset, mail_badpass,
secure_path=/usr/local/sbin\:/usr/local/bin\:/usr/sbin\:/usr/bin\:/sbin\:/bin
User fisher may run the following commands on this host: (ALL : ALL) NOPASSWD: ALL
On the contrary, Debian uses the default sudo behaviour, which means asking for the password of the invoking user. (In this particular example, you are not asked for the password, because of the NOPASSWD flag usage) As Werner already pointed out, this isn't a bug, but merely a configuration issue. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.