Cannot find information on on certain features in MAN which in fact exist
Hi,
This is not the first example where I can find answers on the web, but unable to find anything within MAN pages. I am doing some practice labs and one of them had a task:
Create a user account XXXXXX with the password XXXXXX. Modify the sudo configuration to let the candidate account access root privileges with no password prompt.
I was able to determine how to make user a sudo by using man pages/example of how root account is setup in the sudoers file, but to actually give the account a privilege for no password prompt I had to google
Just a little details, so it is more understandable on what I am talking about:
1) To give user a sudo privilege, you have to use visudo to add an entry to /etc/sudoers.tmp file: username ALL=(ALL:ALL) ALL
2) To give a username a privilege to run sudo commands without a password you have to similarly add an entry to the same file: username ALL=(ALL) NOPASSWD: ALL
I understand that no Linux admin would want to give someone no password prompt privilege lol, but still, how was I suppose to find out about the NOPASSWD "feature" that I can use inside the /etc/sudoers.tmp file?
This is not the first issue I had with this, I do not recall other cases, but it certainly happened before where I would find answers in the course lab answers or on the web without any information in the MAN page or the --help or --usage
Anybody has any insight on this?
Comments
-
It is discussed in "man sudoers" but not in "man sudo". (you should always do something like "man -k sudo" to see a number of relevant man pages. Also occasionally distributions don't follow man pages. Just the way it is in the Linux multi-culture.
You should not be editing sudoers.tmp directly. Also for individual users, I would recommend never touching /etc/sudoers, but doing something like "visudo /etc/sudoers.d/student" (or any other user) as sudo reads all files in that directory, and when you upgrade sudo itself you won't have problems because you updated a config file used by all users.
Yes, NOPASSWD, is a rotten security practice. On the other hand, I use it all the time for pedagogical urposes only.
"3
Categories
- All Categories
- 177 LFX Mentorship
- 177 LFX Mentorship: Linux Kernel
- 754 Linux Foundation IT Professional Programs
- 374 Cloud Engineer IT Professional Program
- 170 Advanced Cloud Engineer IT Professional Program
- 74 DevOps IT Professional Program - Discontinued
- 5 DevOps & GitOps IT Professional Program
- 100 Cloud Native Developer IT Professional Program
- 7.6K Training Courses & Learning Paths
- 2 AI & ML Training
- 1 Blockchain & Decentralized Identity Training
- 5 Cloud & Containers Training
- 1 Cybersecurity Training
- 2 DevOps & Site-Reliability Training
- 1 Linux Kernel Development Training
- 1 Networking Training
- 2 Open Source Best Practice Training
- 2 System Administration Training
- 1 System Engineering Training
- 1 Web & Application Development Training
- 794 Hardware
- 202 Drivers
- 68 I/O Devices
- 37 Monitors
- 95 Multimedia
- 173 Networking
- 91 Printers & Scanners
- 89 Storage
- 769 Linux Distributions
- 81 Debian
- 68 Fedora
- 22 Linux Mint
- 13 Mageia
- 24 openSUSE
- 150 Red Hat Enterprise
- 31 Slackware
- 13 SUSE Enterprise
- 356 Ubuntu
- 465 Linux System Administration
- 31 Cloud Computing
- 73 Command Line/Scripting
- Github systems admin projects
- 98 Linux Security
- 78 Network Management
- 101 System Management
- 46 Web Management
- 111 Mobile Computing
- 19 Android
- 77 Development
- 1.2K New to Linux
- 1K Getting Started with Linux
- 393 Off Topic
- 121 Introductions
- 182 Small Talk
- 29 Study Material
- 976 Programming and Development
- 310 Kernel Development
- 648 Software Development
- 990 Software
- 382 Applications
- 182 Command Line
- 5 Compiling/Installing
- 68 Games
- 317 Installation
- Archived
- 2 LFD140 Class Forum
- 1.4K LFS258 Class Forum
Upcoming Training
-
August 20, 2018
Kubernetes Administration (LFS458)
-
August 20, 2018
Linux System Administration (LFS301)
-
August 27, 2018
Open Source Virtualization (LFS462)
-
August 27, 2018
Linux Kernel Debugging and Security (LFD440)