Where are sudo incidents reported? [closed] - linux

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
Attempting something devious on my machine leads to
ryan#debian:~$ sudo EAT_ALL_THE_COOKIES_BEFORE_DINNER
[sudo] password for ryan:
ryan is not in the sudoers file. This incident will be reported.
Where is this incident reported, and how do I get the log of all the nasty attempted commands?

Nevermind, I just found the answer in the alt-text at xkcd:
Replace root with your username, in my case ryan, so the log is found with:
cat /var/spool/mail/ryan

The report is sent as an email to the root user. Many Linux distributions will automatically setup an alias for that user directing the mail to the first account created during the install process.

Related

Limited permissions on linux [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
I want to give a specific user on Linux some privileges to enable him to run commands like shutdown or apt-get. I don't want to use the SUID bit since there are other users that I don't want to let them use these commands.
How do I do something like this?
sudo would probably be the easiest way to do this. You'll want to add something like the following to the sudoers file
username ALL=(ALL) /sbin/shutdown, /usr/bin/apt-get
where username is replaced with the user's actual username. You should be able to google for some examples - here is one such page.
Editing the sudoers file can be done safely by using the visudo program.

How to disable hard link to /etc/passwd [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
I am learning security recently, and noticed that on my experiment system I can create a hard link to /etc/passwd in my home directory, while on my work system I cannot:
$ ln /etc/passwd
ln: failed to create hard link ./passwd' =>/etc/passwd': Operation not permitted
What is done to disable this?
This is because you are trying to create hardlink to /etc/passwd on a different volume. Most likely at your home system you setup everything onto a single volume.

On Linux get disk space used per user when you are not root [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
du --max-depth=1 will give the usage of the user you are logged in as. But we have a dev box shared by more than one team, so its getting tough to find the culprit.
If I am root I can do it but I am not the root user and dont want to ask the System Admins all the time to find the user with most usage.
Any ideas on this please.
You can't determine the size of directories you have no read/execute permissions for, so this is only possible when being root.

Take too long time to connect to server through ssh if IP not specified in /etc/hosts [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 11 years ago.
Improve this question
My Ubuntu 10.10 computer is in an intranet. If I don't specify server's IP in /etc/hosts, it takes a long time to connect and sometimes fails.
Do you know why?
As root edit “/etc/ssh/sshd_config” and add the line “UseDNS no“.
executing the command
sudo echo "UseDNS no" >> /etc/ssh/sshd_config
This might help you if this is the reason for your slow connection issue.

How to change the login of a linux user? [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 11 years ago.
Improve this question
I have an user on my system named: website1 with his password. I need to change the name of website1 to website2. I don't want to remove it and then create a new user because I would like that website2 keep the exact same permissions as website1 on the system. I only want to change the name.
How can I do this?
usermod -l login-name old-name
You can change it with the usermod -l command. Check the usermod manual for more information.

Resources