different types of getting elevated previleages

Support for security such as Firewalls and securing linux
knzzz
Posts: 60
Joined: 2017/02/25 12:41:42

different types of getting elevated previleages

Postby knzzz » 2017/11/16 23:40:23

Hi Team,
I have doubt what is the difference between getting elevated access to a user , using through adding the normal user to wheel group
and making an sudo file entry like user ALL=(ALL) PASSWD:ALL



Regards
Kanna

stevemowbray
Posts: 323
Joined: 2012/06/26 14:20:47

Re: different types of getting elevated previleages

Postby stevemowbray » 2017/11/17 14:41:47

Not sure what you are asking exactly. They both have the same result, one by using the default rule in /etc/sudoers to allow users in group wheel to use sudo, and the other by adding a rule to explicitly allow a specific user. Both are controlled by the rules in /etc/sudoers or /etc/sudoers.d/*.

User avatar
TrevorH
Forum Moderator
Posts: 21174
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: different types of getting elevated previleages

Postby TrevorH » 2017/11/17 14:50:45

On CentOS 6, just adding the user to group wheel does nothing special to them. They'll have no more access afterwards than they did before. Only if you edit /etc/sudoers with visudo and uncomment the line in there that gives group wheel access to group wheel will it make any difference.
CentOS 5 died in March 2017 - migrate NOW!
Full time Geek, part time moderator. Use the FAQ Luke