sudo

From Wikipedia, the free encyclopedia

"SUDO" redirects here. For the non-profit organisation, see Sudan Social Development Organization.
sudo

sudo in a terminal
Developed by Todd C. Miller
Latest release 1.6.9p15 / March 27, 2008
Preview release 1.7b4 / March 28, 2008
OS Unix-like
Genre Privilege authorization
License ISC-style[1]
Website http://www.sudo.ws/

sudo (super user do; officially pronounced /ˈsuːduː/,[2] though /ˈsuːdoʊ/ is also common) is a program for Unix-like computer operating systems that allows users to run programs with the security privileges of another user (normally the superuser). By default, sudo will prompt for a user password but it may be configured to require the root password or no password at all.[3] sudo is able to log each command run and in some cases has completely supplanted the superuser login for administrative tasks, most notably in Ubuntu Linux and Apple's Mac OS X.[4][5]

sudo was originally written by Bob Coggeshall and Cliff Spencer "around 1980" at the Department of Computer Science at SUNY/Buffalo. The current version is maintained by OpenBSD developer Todd C. Miller and distributed under a BSD-style license.[6]

Contents

[edit] Design

Before running a command with sudo, users typically supply their password. Once authenticated, and if the /etc/sudoers configuration file permits the user access, then the command is run. There exist several graphical frontends for use in a GUI environment, notably kdesu, kdesudo and gksudo; Mac OS X also has the "authorization services", a GUI equivalent to sudo.

The following is an example where the user is denied access:

snorri@rimu:~$ sudo vi /etc/resolv.conf

 We trust you have received the usual lecture from the local System
 Administrator. It usually boils down to these three things:

    #1) Respect the privacy of others.
    #2) Think before you type.
    #3) With great power comes great responsibility.

 Password:
 snorri is not in the sudoers file.  This incident will be reported.
 snorri@rimu:~$

Below is the log of this failed attempt, then a later successful one, after snorri has been added to /etc/sudoers:

snorri@rimu:~$ sudo tail /var/log/auth.log
 Aug  5 06:00:28 localhost sudo:    snorri : user NOT in sudoers ; TTY=pts/1 ; PWD =/home/snorri ; USER=root ; COMMAND=/usr/bin/vi /etc/resolv.conf
 Aug  5 06:01:15 localhost su[15573]: (pam_unix) session opened for user root by snorri(uid=1000)
 Aug  5 06:02:09 localhost sudo:    snorri : TTY=pts/1 ; PWD=/home/snorri ; USER=root ; COMMAND=/usr/bin/vi /etc/resolv.conf
 Aug  5 06:02:49 localhost sudo:    snorri : TTY=pts/1 ; PWD=/home/snorri ; USER=root ; COMMAND=/usr/bin/tail /var/log/auth.log

[edit] See also

Free software Portal

[edit] References

  1. ^ Sudo License
  2. ^ Miller, Todd C. Sudo Main Page. Retrieved on 2007-03-05.
  3. ^ Manpage for sudo. Retrieved on 2007-11-04.
  4. ^ RootSudo - Community Ubuntu Documentation
  5. ^ MacDevCenter.com - Top Ten Mac OS X Tips for Unix Geeks
  6. ^ Miller, Todd C. A Brief History of Sudo. Retrieved on 2007-03-05.

[edit] External links

v  d  e
Unix command line programs and builtins (more)
File system
cat · chattr · cd · chmod · chown · chgrp · cksum · cmp · cp · du · df · file · fsck · fuser · ln · ls · lsattr · lsof · mkdir · mount · mv · pwd · rm · rmdir · split · touch
Processes
at · chroot · cron · exit · kill · killall · nice · pgrep · pidof · pkill · ps · pstree · sleep · time · top · wait · watch
User environment
env · finger · id · logname · mesg · passwd · su · sudo · uname · uptime · w · wall · who · whoami · write
Text processing
awk · comm · cut · ed · ex · fmt · head · iconv · join · less · more · paste · sed · sort · tac · tail · tr · uniq · wc · xargs
Shell programming
alias · basename · echo · expr · false · printf · test · true · unset
Networking
inetd · netstat · ping · rlogin · nc · traceroute
Searching
find · grep · strings
Miscellaneous
banner · bc · cal · clear · date · dd · lp · man · size · tee · yes