different types of getting elevated previleages

Support for security such as Firewalls and securing linux
Post Reply
knzzz
Posts: 157
Joined: 2017/02/25 12:41:42

different types of getting elevated previleages

Post by knzzz » 2017/11/16 23:40:23

Hi Team,
I have doubt what is the difference between getting elevated access to a user , using through adding the normal user to wheel group
and making an sudo file entry like user ALL=(ALL) PASSWD:ALL



Regards
Kanna

stevemowbray
Posts: 519
Joined: 2012/06/26 14:20:47

Re: different types of getting elevated previleages

Post by stevemowbray » 2017/11/17 14:41:47

Not sure what you are asking exactly. They both have the same result, one by using the default rule in /etc/sudoers to allow users in group wheel to use sudo, and the other by adding a rule to explicitly allow a specific user. Both are controlled by the rules in /etc/sudoers or /etc/sudoers.d/*.

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: different types of getting elevated previleages

Post by TrevorH » 2017/11/17 14:50:45

On CentOS 6, just adding the user to group wheel does nothing special to them. They'll have no more access afterwards than they did before. Only if you edit /etc/sudoers with visudo and uncomment the line in there that gives group wheel access to group wheel will it make any difference.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

Post Reply