[juneau-lug] Re: How to repair sudo?

  • From: Nels Tomlinson <nels.tomlinson@xxxxxxxxx>
  • To: juneau-lug@xxxxxxxxxxxxx
  • Date: Wed, 8 Apr 2015 13:51:57 -0800

Well, I made both those changes, and now the think account and my
daughter's accounts can use sudo.  I'll try changing the %sudo line to
again read =(ALL:ALL) ALL later, just to get back to where I think we were
supposed to have started out from.
Thanks for your help, everyone!

Nels Tomlinson
(907) 500-4802

On Wed, Apr 8, 2015 at 11:41 AM, Nels Tomlinson <nels.tomlinson@xxxxxxxxx>
wrote:

> I may have to go with a root login and su rather than sudo, but I'd prefer
> to stick to the Ubuntu way.  I figure that makes for less maintenance
> later.
>
> I'll try changing %admin to %adm, to match the name of the group, and I'll
> add % to sudo in the sudoers to make that a group.  I'll report back.
>
> Nels Tomlinson
> (907) 500-4802
>
> On Wed, Apr 8, 2015 at 10:44 AM, Henrik Hudson <rhavenn@xxxxxxxxxxx>
> wrote:
>
>> On Wed, 08 Apr 2015, James Zuelow wrote:
>>
>> > On Wednesday, April 08, 2015 06:45:29 Nels Tomlinson wrote:
>> > > Here, between the equals signs, are the contents of the file.
>> Henrik, I
>> > > have attached the actual file again, also.  This is the old file, from
>> > > before I changed the sudo line to read sudo=(ALL) ALL.
>> > > Do I need a % in front of sudo?  It seems odd that visudo didn't
>> complain,
>> > > if that's a problem.
>> >
>> > sudo is syntactically correct, so visudo won't complain.  However it
>> will
>> > break the config.
>> >
>> > sudo == a user named sudo.
>> >
>> > %sudo == all members of the sudo group.
>> >
>> >
>> >
>> > If I have been following the thread correctly there are two issues:
>> >
>> > Your admin group is actually named adm, and adm is not in your sudoers
>> file.
>> >
>> > Your sudo entry is missing the group identifier.
>> >
>> > With this version of the sudoers file I would fix those errors
>> (assuming I'm
>> > remembering the adm/admin thing correctly).
>>
>> Yeah, if that's what is indeed in there and that wasn't a typo.
>> Change it like James suggests. The % is what indicates a group.
>>
>>
>> > Also, one of the first things I do on an Ubuntu box is:
>> >
>> > sudo su -
>> > passwd
>> >
>> > That way you don't have to reboot to single-user mode if sudo breaks.
>> >
>> > (Of course I'm a Debian user, so to me using root is Just How It Works)
>>
>> I would just make sure that SSH doesn't allow root SSH if you do
>> this or key only logins. Of course, for an internal non-public IP'ed
>> computer it doesn't really matter. I forget what the Ubuntu / Debian
>> default
>> is for that.
>>
>>
>> henrik
>>
>>
>>
>>
>> ------------------------------------
>> The Juneau Linux Users Group -- http://www.juneau-lug.org
>> This is the Juneau-LUG mailing list.
>> To unsubscribe, send an e-mail to juneau-lug-request@xxxxxxxxxxxxx with
>> the word unsubscribe in the subject header.
>>
>
>


------------------------------------
The Juneau Linux Users Group -- http://www.juneau-lug.org
This is the Juneau-LUG mailing list.
To unsubscribe, send an e-mail to juneau-lug-request@xxxxxxxxxxxxx with the 
word unsubscribe in the subject header.

Other related posts:

  1. Home
  2. juneau-lug
  3. Archive
  4. 04-2015