Blog Post RSS ?

Blogs » Open Source » Using Sudo to Manage Administrators
« GMail: how to fill 1000Mb?
Pick of the Wikis: Dokuwiki »
 

Using Sudo to Manage Administrators

by Blane Warrene

The sudo command and capability (superuser do) can be a valuable tool when multiple users are responsible for managing parts of a server or servers. In particular, sudo is important when you need to restrain the use of ‘root’ and/or need to log all administrative actions and changes and would like a record of who did what.

My main preference for sudo is its expiring session (or ticket as GratiSoft calls it). Once switched into sudo for activity, the session expires after five minutes, or continues at five minute (can be modified) intervals as commands are executed. This allows for added security if an administrator leaves his or her workstation briefly as a root shell is not left open.

GratiSoft maintains an excellent web site on sudo (and sponsors the development of sudo) — (http://www.courtesan.com/sudo/sudo.html).

Through building a configuration file, a senior administrator can dole out system admin responsibilities through sudo, assigning what commands can be executed by username per host. In addition, being carried out in a multiple host environment, audit trail logging done on a centralized host as well as each systems localhost logs.

GratiSoft suggests correctly that one way to get more familiar with sudo is to review a sample configuration. They posted one such file here.

As sudo supports numerous platforms, this also works in mixed OS environments — see the supported platforms here.

Share and Enjoy:
  • Digg
  • del.icio.us
  • Facebook
  • Google Bookmarks
  • Ping.fm
  • Twitthis

Related posts:

  1. Build Your Own Dev Server with VirtualBox What's the best way to test your web site on...
  2. 7 Time Tracking Tools To Help You Manage Your Time Time tracking is important for many reasons: billing, creating accurate...
  3. How To Manage Work When The Unexpected Happens Keeping up with work when a personal emergency happens can...
  4. 7 Online Scheduling Systems To Help You Manage Your Time Scheduling meetings and managing appointments can take up a great...
  5. How to Install MySQL Installing MySQL is easier than you think. Craig provides a...

This entry was posted on Saturday, October 9th, 2004 at 9:12 am, contains 310 words, 6 images, and is filed under Open Source. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed. The views and opinions in this blog post are those of its author.

This post has one response so far

  1. I’ve been using sudo recently to create a web administration for a mail server, and sudo solved the problem ! of course with SSL and password protection for more security. But it was very simple, secure and I liked the way it was done with sudo.

    AikanaroAvatar
    October 11th, 2004 at 4:45 am

Sponsored Links

Your Blogmaster is...

Blane Warrene

Blane Warrene

Blane is a writer and researcher focusing on Apple and Open Source technologies. Prior to this, he helped found a commercial software and consulting venture, and worked in the financial services sector as a director of technology and in varying technical roles. Blane maintains Open Sourcery: SitePoint's Open Source Blog.

Subscribe

SitePoint Newsletters

Get all the latest tips by signing up to all of SitePoint’s informative newsletters.

HTML   Plain

SitePoint Blogs

SitePoint Marketplace

Buy, Sell, Trade

Buy and sell Websites, templates, domain names, hosting, graphics and more.

Follow SitePoint on...