On 2/4/20 1:10 PM, Earl Ramirez wrote:
On Tue, 2020-02-04 at 12:25 -0800, Mike Wright wrote:
# Cmnd alias specification
Cmnd_Alias LXC=/usr/bin/lxc
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
# Allow members of group sudo to execute any command
%sudo ALL=(ALL:ALL) ALL
# User privilege specification
root ALL=(ALL:ALL) ALL
mike ALL=(ALL) NOPASSWD:LXC
What is the output of sudo -l when you are logged in as mike, I
configured sudoers with the same as what you have here with the
exceptions of the commands and it works as expected.
User mike may run the following commands on basto:
(ALL : ALL) ALL
(ALL) NOPASSWD: /usr/bin/lxc
And that says I SHOULD be able to execute without authentication.
At this point I have to think that I'm not dealing with a sudo problem.
Pure speculation but it seems the application itself may have some
built-in restrictions that I'm unaware of.
I know I can add myself to the application's group and execute "lxc": it
complies but always throws some errors first. If I use sudo it doesn't
throw the error. Sudoers seemed like the way to avoid that.
I can't give any more time to this problem. As an alternate route I'm
going to extend my sudo password timeout setting and will have to live
with that.
Thanks to everybody that helped.
Mike Wright
_______________________________________________
users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
