16.04 - File in /etc/sudoers.d/ not recognized - Ask Ubuntu


running fresh install of ubuntu server 16.04.1, tried add file in /etc/sudoers.d/ give 1 user root privileges command.

i added file /etc/sudoers.d/servicetest following content:

servicetest = (root) nopasswd: /bin/systemctl status *

the file /etc/sudoers left untouched. contains #includedir /etc/sudoers.d last line. setup unfortunately not working, when executing appropriate command sudo user servicetest, still asked password. however, if move content of file /etc/sudoers.d/servicetest end of /etc/sudoers, working expected.

what cause of issue? how can files in /etc/sudoers.d/ working?

apparently, files included in /etc/sudoers file must have 0440 permissions security reasons. way root can edit file , owner , members of owner group can read it, making less file used attempt escalate privileges.

you can check requirements on included file on /etc/sudoers.d/readme, 2 other requirements filename shouldn't start . (hidden files) or end ~ (convention backup files).

credits @steeldriver confirming theory , finding /etc/sudoers.d/readme file!


Comments

Post a Comment

Popular posts from this blog

download - Firefox cannot save files (most of the time), how to solve? - Super User

this not full duplicate of this question or this question , though base question same. however, questions have no answers. for on half year have problems downloading files firefox. when click on download link, download dialog opened asking me do, save or open it. immediately, there error/warning pop-up (twice, can see 1 @ first) ok button. looks this message : "c:\users\%user%\appdata\local\temp\wbbdv9k8.zip.part not saved because source file not read. try again later or contact server administrator." replace '%user%' name of user trying download. after closing pop-up, download dialog disappears , have minimize firefox , open again, see other pop-up. downloading exact same file internet explorer work, not desired. i tried solutions here . tried solutions here . tried disabling extensions. tried fixing permissions on temp folder. tried making files , folder in profile directory non-readonly. tried running firefox administrator. tried ...
Read more

windows - "-2146893807 NTE_NOT_FOUND" when repair certificate store - Super User

i try repair certificate store in windows 10 doing c:\windows\system32>certutil -store -user ‎330000019dba8d5dddb98062a900000000019d "personal" certutil: -store command failed: 0x80090011 (-2146893807 nte_not_found) certutil: object not found. i have double check mmc, certificate details serial number of certificate. still fail repair certificate store. can please help? i getting same error when trying export pfx. turns out had export c:\cert.pfx instead of cert.pfx (it trying export file cert store ( cert:\localmachine\my ).
Read more