[opensuse] sudoers problem
Used yast to give root privilege to a standard user. At first tried specific commands only, then gave the ALL commands privilege. no joy. Tried visudo from command line, same result. tried other editors, same result. Even when given root privilege for all commands, user "plain" can not run *any* root commands. the lines in the yast2 sudo window read: ALL ALL (ALL) No ALL root ALL (ALL) No ALL plain ALL (ALL) Yes ALL the sudoers file reads: ...................... <clip> # User privilege specification root ALL = (ALL) ALL plain ALL = (ALL) NOPASSWD: ALL ..<clip>............................................................ The system is 11.1, 64 bit, kde-3, kernel 2.6.27.45-0.1-default latest updates from the standard Suse depositories, nothing factory or unstable. how to fix? -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Monday 05 April 2010 10:05:53 am kanenas@hawaii.rr.com wrote:
Used yast to give root privilege to a standard user. At first tried specific commands only, then gave the ALL commands privilege. no joy. Tried visudo from command line, same result. tried other editors, same result.
Even when given root privilege for all commands, user "plain" can not run *any* root commands.
the lines in the yast2 sudo window read:
ALL ALL (ALL) No ALL root ALL (ALL) No ALL plain ALL (ALL) Yes ALL
the sudoers file reads: ......................
<clip> # User privilege specification root ALL = (ALL) ALL plain ALL = (ALL) NOPASSWD: ALL ..<clip>............................................................
The system is 11.1, 64 bit, kde-3, kernel 2.6.27.45-0.1-default latest updates from the standard Suse depositories, nothing factory or unstable.
how to fix?
bump :) -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Tuesday 06 April 2010 06:45:52 am kanenas@hawaii.rr.com wrote:
On Monday 05 April 2010 10:05:53 am kanenas@hawaii.rr.com wrote:
Used yast to give root privilege to a standard user. At first tried specific commands only, then gave the ALL commands privilege. no joy. Tried visudo from command line, same result. tried other editors, same result.
Even when given root privilege for all commands, user "plain" can not run *any* root commands.
the lines in the yast2 sudo window read:
ALL ALL (ALL) No ALL root ALL (ALL) No ALL plain ALL (ALL) Yes ALL
the sudoers file reads: ......................
<clip> # User privilege specification root ALL = (ALL) ALL plain ALL = (ALL) NOPASSWD: ALL ..<clip>............................................................
The system is 11.1, 64 bit, kde-3, kernel 2.6.27.45-0.1-default latest updates from the standard Suse depositories, nothing factory or unstable.
how to fix?
bump :)
ok, one more effort to solicit a response. i have a simple alsasound restart && unmute script that is needed whenever flashplayer forgets to release the soundcard. The script works from root and under sudo but i need it to work from a simple user desktop. I am going away for a while and there is no need for the misses to worry about root pwds, at most she should have to click on an icon. googling for a solution only brings up discussions why one should not give a plain user any root privilege, also there are posts about using visudo to modify the sudoers file. These things i have done, also did it in yast, now help is needed in troubleshooting. What else must be done in 11.1? thanks in advance, d. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 07/04/10 10:47, kanenas@hawaii.rr.com wrote:
On Tuesday 06 April 2010 06:45:52 am kanenas@hawaii.rr.com wrote:
On Monday 05 April 2010 10:05:53 am kanenas@hawaii.rr.com wrote:
Used yast to give root privilege to a standard user. At first tried specific commands only, then gave the ALL commands privilege. no joy. Tried visudo from command line, same result. tried other editors, same result.
Even when given root privilege for all commands, user "plain" can not run *any* root commands.
the lines in the yast2 sudo window read:
ALL ALL (ALL) No ALL root ALL (ALL) No ALL plain ALL (ALL) Yes ALL
the sudoers file reads: ......................
<clip> # User privilege specification root ALL = (ALL) ALL plain ALL = (ALL) NOPASSWD: ALL ..<clip>............................................................
The system is 11.1, 64 bit, kde-3, kernel 2.6.27.45-0.1-default latest updates from the standard Suse depositories, nothing factory or unstable.
how to fix?
bump :)
ok, one more effort to solicit a response. i have a simple alsasound restart && unmute script that is needed whenever flashplayer forgets to release the soundcard. The script works from root and under sudo but i need it to work from a simple user desktop. I am going away for a while and there is no need for the misses to worry about root pwds, at most she should have to click on an icon. googling for a solution only brings up discussions why one should not give a plain user any root privilege, also there are posts about using visudo to modify the sudoers file. These things i have done, also did it in yast, now help is needed in troubleshooting. What else must be done in 11.1? thanks in advance, d.
It looks like you left the Defaults targetpw line uncommented. As it clearly says in the sudoers file, the following two lines must be commented out for real use: # In the default (unconfigured) configuration, sudo asks for the root password. # This allows use of an ordinary user account for administration of a freshly # installed system. When configuring sudo, delete the two # following lines: #Defaults targetpw # ask for the password of the target user i.e. root #ALL ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'! If it still isn't working after that, send the output of "sudo -l" for the user. Regards, Tejas -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 07/04/10 10:47, kanenas@hawaii.rr.com wrote:
On Tuesday 06 April 2010 06:45:52 am kanenas@hawaii.rr.com wrote:
On Monday 05 April 2010 10:05:53 am kanenas@hawaii.rr.com wrote:
Used yast to give root privilege to a standard user. At first tried specific commands only, then gave the ALL commands privilege. no joy. Tried visudo from command line, same result. tried other editors, same result.
Even when given root privilege for all commands, user "plain" can not run *any* root commands.
the lines in the yast2 sudo window read:
ALL ALL (ALL) No ALL root ALL (ALL) No ALL plain ALL (ALL) Yes ALL
the sudoers file reads: ......................
<clip> # User privilege specification root ALL = (ALL) ALL plain ALL = (ALL) NOPASSWD: ALL ..<clip>............................................................
The system is 11.1, 64 bit, kde-3, kernel 2.6.27.45-0.1-default latest updates from the standard Suse depositories, nothing factory or unstable.
how to fix?
bump :)
ok, one more effort to solicit a response. i have a simple alsasound restart && unmute script that is needed whenever flashplayer forgets to release the soundcard. The script works from root and under sudo but i need it to work from a simple user desktop. I am going away for a while and there is no need for the misses to worry about root pwds, at most she should have to click on an icon. googling for a solution only brings up discussions why one should not give a plain user any root privilege, also there are posts about using visudo to modify the sudoers file. These things i have done, also did it in yast, now help is needed in troubleshooting. What else must be done in 11.1? thanks in advance, d.
It looks like you left the Defaults targetpw line uncommented. As it clearly says in the sudoers file, the following two lines must be commented out for real use:
# In the default (unconfigured) configuration, sudo asks for the root password. # This allows use of an ordinary user account for administration of a freshly # installed system. When configuring sudo, delete the two # following lines: #Defaults targetpw # ask for the password of the target user i.e. root #ALL ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'!
If it still isn't working after that, send the output of "sudo -l" for the user.
Regards, Tejas Thanks Tejas, it seems that i still have the problem. below is the relevant output from a console window: First the output of sudo -l is listed, then it is seen that as an su the script works. Then when
On Wednesday 07 April 2010 12:36:53 am Tejas Guruswamy wrote: the script is tested from user "plain", the error messages are shown, trunkated with a ^c: ............................ plain@elevenpointone:~> sudo -l User plain may run the following commands on this host: (ALL) NOPASSWD: ALL plain@elevenpointone:~> su Password: elevenpointone:/home/plain # ./soundreset Shutting down sound driver done Starting sound driver: hda-intel done Simple mixer control 'Master',0 Capabilities: pvolume pvolume-joined pswitch pswitch-joined Playback channels: Mono Limits: Playback 0 - 31 Mono: Playback 31 [100%] [0.00dB] [on] elevenpointone:/home/plain # exit exit plain@elevenpointone:~> ./soundreset /usr/sbin/alsactl: save_state:1541: Cannot open /etc/asound.state for writing: Permission denied Shutting down sound driverFATAL: Error removing snd_seq_dummy (/lib/modules/2.6.27.45-0.1-default/kernel/sound/core/seq/snd-seq-dummy.ko): Operation not permitted FATAL: Error removing snd_seq_dummy (/lib/modules/2.6.27.45-0.1-default/kernel/sound/core/seq/snd-seq-dummy.ko): Operation not permitted ........................................................... the thought plickens:) d. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Wednesday 07 April 2010 08:23:55 am kanenas@hawaii.rr.com wrote:
On Wednesday 07 April 2010 12:36:53 am Tejas Guruswamy wrote:
On 07/04/10 10:47, kanenas@hawaii.rr.com wrote:
On Tuesday 06 April 2010 06:45:52 am kanenas@hawaii.rr.com wrote:
On Monday 05 April 2010 10:05:53 am kanenas@hawaii.rr.com wrote:
Used yast to give root privilege to a standard user. At first tried specific commands only, then gave the ALL commands privilege. no joy. Tried visudo from command line, same result. tried other editors, same result.
Even when given root privilege for all commands, user "plain" can not run *any* root commands.
the lines in the yast2 sudo window read:
ALL ALL (ALL) No ALL root ALL (ALL) No ALL plain ALL (ALL) Yes ALL
the sudoers file reads: ......................
<clip> # User privilege specification root ALL = (ALL) ALL plain ALL = (ALL) NOPASSWD: ALL ..<clip>............................................................
The system is 11.1, 64 bit, kde-3, kernel 2.6.27.45-0.1-default latest updates from the standard Suse depositories, nothing factory or unstable.
how to fix?
bump :)
ok, one more effort to solicit a response. i have a simple alsasound restart && unmute script that is needed whenever flashplayer forgets to release the soundcard. The script works from root and under sudo but i need it to work from a simple user desktop. I am going away for a while and there is no need for the misses to worry about root pwds, at most she should have to click on an icon. googling for a solution only brings up discussions why one should not give a plain user any root privilege, also there are posts about using visudo to modify the sudoers file. These things i have done, also did it in yast, now help is needed in troubleshooting. What else must be done in 11.1? thanks in advance, d.
It looks like you left the Defaults targetpw line uncommented. As it clearly says in the sudoers file, the following two lines must be commented out for real use:
# In the default (unconfigured) configuration, sudo asks for the root password. # This allows use of an ordinary user account for administration of a freshly # installed system. When configuring sudo, delete the two # following lines: #Defaults targetpw # ask for the password of the target user i.e. root #ALL ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'!
If it still isn't working after that, send the output of "sudo -l" for the user.
Regards, Tejas
Thanks Tejas, it seems that i still have the problem. below is the relevant output from a console window: First the output of sudo -l is listed, then it is seen that as an su the script works. Then when the script is tested from user "plain", the error messages are shown, trunkated with a ^c: ............................
plain@elevenpointone:~> sudo -l User plain may run the following commands on this host: (ALL) NOPASSWD: ALL plain@elevenpointone:~> su Password: elevenpointone:/home/plain # ./soundreset Shutting down sound driver done Starting sound driver: hda-intel done Simple mixer control 'Master',0 Capabilities: pvolume pvolume-joined pswitch pswitch-joined Playback channels: Mono Limits: Playback 0 - 31 Mono: Playback 31 [100%] [0.00dB] [on] elevenpointone:/home/plain # exit exit plain@elevenpointone:~> ./soundreset /usr/sbin/alsactl: save_state:1541: Cannot open /etc/asound.state for writing: Permission denied Shutting down sound driverFATAL: Error removing snd_seq_dummy (/lib/modules/2.6.27.45-0.1-default/kernel/sound/core/seq/snd-seq-dummy.ko) : Operation not permitted FATAL: Error removing snd_seq_dummy (/lib/modules/2.6.27.45-0.1-default/kernel/sound/core/seq/snd-seq-dummy.ko) : Operation not permitted ...........................................................
the thought plickens:) d.
changed the script and prefaced every command with sudo, now it works fine. THANKS!!! -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (2)
-
kanenas@hawaii.rr.com
-
Tejas Guruswamy