Isn't that what you want to see? The resolution of all the aliases and the final result? That's what I'd want to see - sanity check to make sure the aliases are resolving... And in this case it looks like SHUTL2 is resolving but CMSDOWN is not..
Scott Rohling (resending -- for some reason my reply just went directly to ljmace the first time) On Thu, Sep 25, 2008 at 8:53 AM, LJ Mace <[EMAIL PROTECTED]> wrote: > (rant on)I am trying to protect the system from an incompetent manager > making a bad decision about an operator(rant off). > Anyway so the operator doen't have to log into root I'm trying to setup > sudo to perform several commands. > To shorten the keying I have setup cmnd alias ,but when I try to execute > the alias i get command not found. > So here is my sudo file: > Host_Alias IMAGE1 = xx.xx.xx.xxx > # User alias specification > User_Alias IMAGEUSR1= oper1 > # Cmnd alias specification > Cmnd_Alias SHUTL2 = /sbin/shutdown -r 0 > Cmnd_Alias CMSDOWN = /opt/scripts/cmsshutdown.sh > # Defaults specification > Defaults targetpw,insults # ask for the password of the target user i.e. > root > %users ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults > targetpw'! > > # User privilege specification > # You should not use sudo as root in an SELinux environment > # If you use SELinux, remove the following line > root ALL=(ALL) ALL > oper1 ALL=/sbin/shutdown -h now,!/usr/bin/passwd root, !/bin/rm, \ > SHUTL2, CMSDOWN > # Uncomment to allow people in group wheel to run all commands > # %wheel ALL=(ALL) ALL > > # Same thing without a password > # %wheel ALL=(ALL) NOPASSWD: ALL > > I've done the sudo -K to bring in the changes but when I do a > sudo -l I get: > > User oper1 may run the following commands on this host: > (ALL) ALL > (root) /sbin/shutdown -h now > (root) !/usr/bin/passwd root > (root) !/bin/rm > (root) /sbin/shutdown -r 0 > Why is it showing the commands and not the alias? > thanks > Mace > > ---------------------------------------------------------------------- > For LINUX-390 subscribe / signoff / archive access instructions, > send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or > visit > http://www.marist.edu/htbin/wlvindex?LINUX-390 > ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
