Na akụrụngwa
Ọ bụrụ na sudoers dị irè, mana ọ dị ụkọ na omume, iwu na-enye ohere ka e mezuo otu iwu n'okpuru UID nke onye ọrụ ọ bụla na-abụghị mgbọrọgwụ, onye na-awakpo nke nwere ikike ime iwu a nwere ike ịgafe mmachibido iwu ma mebie iwu ahụ. ikike mgbọrọgwụ. Iji gafere mmachi ahụ, nwaa iji UID “-1” ma ọ bụ “4294967295” mee iwu akọwapụtara na ntọala ntọala, nke ga-eduga na UID 0.
Dịka ọmụmaatụ, ọ bụrụ na enwere iwu na ntọala nke na-enye onye ọrụ ọ bụla ikike ime ihe omume / usr / bin / id n'okpuru UID ọ bụla:
myhost ALL = (NIILE,! mgbọrọgwụ) /usr/bin/id
ma ọ bụ nhọrọ na-enye ohere igbu naanị otu onye ọrụ bob:
myhost bob = (ALL,! mgbọrọgwụ) /usr/bin/id
Onye ọrụ nwere ike igbu “sudo -u '#-1' id” na / usr/bin/id utility ga-amalite dị ka mgbọrọgwụ, n'agbanyeghị mmachibido iwu doro anya na ntọala. A na-akpata nsogbu ahụ site na ileghara ụkpụrụ pụrụ iche "-1" ma ọ bụ "4294967295", nke na-adịghị eduga na mgbanwe na UID, ma ebe ọ bụ na sudo n'onwe ya na-agba ọsọ dị ka mgbọrọgwụ, na-enweghị ịgbanwe UID, iwu ebumnuche bụkwa. ulo oru na mgbọrọgwụ ikike.
Na SUSE na openSUSE nkesa, na-akọwapụtaghị "NOPASSWD" na iwu, enwere adịghị ike.
myhost ALL = (NIILE,! mgbọrọgwụ) NOPASSWD: /usr/bin/id
Edoziri nsogbu na ntọhapụ
isi: opennet.ru