%general-entities; ]> $LastChangedBy: $ $Date: $ sudo The sudo package allows a system administrator to give certain users (or groups of users) the ability to run some (or all) commands as root or another user while logging the commands and arguments. Package Information Download (HTTP): Download (FTP): Download MD5 sum: &sudo-md5sum; Download size: &sudo-size; Estimated disk space required: &sudo-buildsize; Estimated build time: &sudo-time; Install sudo by running the following commands: sed -i -e 's/CDPATH",/&\n "SHELLOPTS",\n "PS4",/' env.c ./configure --prefix=/usr --libexecdir=/usr/lib \ --enable-noargs-shell --with-ignore-dot --with-all-insults \ --enable-shell-sets-home && make Now, as the root user: make install sed -i -e 's/CDPATH",/&\n "SHELLOPTS",\n "PS4",/' env.c: This command adds two envronment variables to a list of variables to be excluded from the target environment. It solves a security problem. --enable-noargs-shell: This switch allows sudo to run a shell if involked with no arguments. --with-ignore-dot: This switch causes sudo to ignore '.' in the PATH. --with-all-insults: This switch includes all the sudo insult sets. --enable-shell-sets-home: This switch sets HOME to the target user in shell mode. There are many options to sudo's configure command. Check the configure --help output for a complete list. /etc/sudoers /etc/sudoers The sudoers file can be quite complicated. It is composed of two types of entries: aliases (basically variables) and user specifications (which specify who may run what). The installation installs a default configuration that has no privileges installed for any user. One example usage is to allow the system administrator to execute any program without typing a password each time root privileges are needed. This can be configured as: # User alias specification User_Alias ADMIN = YourLoginId # Allow people in group ADMIN to run all commands without a password ADMIN ALL = NOPASSWD: ALL For details, see man sudoers. Installed Programs Installed Library Installed Directories sudo and sudoedit sudo_noexec.so None Short Descriptions sudo executes a command as another user as permitted by the /etc/sudoers confiuration file. sudo sudoedit is a hard link to sudo that implies the -e option to invoke an editor as another user. sudoedit sudo_noexec.so enables support for the "noexec" functionality which prevents a dynamically-linked program being run by sudo from executing another program (think shell escapes). sudo_noexec.so