{"id":623,"date":"2022-01-11T14:33:58","date_gmt":"2022-01-11T13:33:58","guid":{"rendered":"http:\/\/www.bocciolesi.fr\/tutoriels-et-cours\/?p=623"},"modified":"2022-09-13T14:44:37","modified_gmt":"2022-09-13T13:44:37","slug":"sudo","status":"publish","type":"post","link":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/","title":{"rendered":"Sudo \u25ba sudoers"},"content":{"rendered":"
\"image_pdf\"Enregistrer en PDF<\/span><\/a><\/a><\/div>

I\u25ba Dans ce cours, nous allons voir comment int\u00e9grer un utilisateur (simple) dans les sudoers<\/span> afin qu’il puisse\u00a0acc\u00e9der\u00a0\u00e0 des commandes de root sans avoir \u00e0 conna\u00eetre le mot de passe de root !<\/strong><\/span><\/p>\n

Une alternative \u00e0 SUDO : su root -c “mkdir \/backup\/”<\/strong><\/span>
\nEx\u00e9cute la commande en tant que root et restitue imm\u00e9diatement le prompt \u00e0 l’utilisateur …<\/p>\n

Le fichier de configuration des sudoers est \/etc\/sudoers<\/strong><\/span>
\nPour l’\u00e9diter il faut \u00eatre root, mais cela ne suffit pas\u00a0?
\nOn va pr\u00e9f\u00e9rer visudo<\/strong> <\/span>qui ouvrira le fichier en \u00e9dition :
\nC’est comme vi mais visudo corrigera ou alertera des \u00e9ventuelles faute de syntaxe … Cool !<\/p>\n

\u25ba visudo -c -f \/etc\/sudoers <\/span><\/strong>v\u00e9rifie les erreurs de syntaxe du fichier<\/span><\/p>\n

1er cas : on veut rendre accessible toutes les commandes root \u00e0 un utilisateur :<\/span><\/strong><\/span><\/p>\n

On\u00a0d\u00e9-commente les lignes contenant le groupe wheel<\/span> <\/strong>…
\nEt on ajoute le(s) utilisateur(s) au groupe wheel pour qu’ils puissent b\u00e9n\u00e9ficier des droits sudo :
\ngpasswd -a michel wheel<\/strong><\/span><\/p>\n

Lorsqu’on voudra passer une commande root, il suffira de saisir sudo fdisk \/dev\/sdb<\/span><\/strong> \u00a0par exemple …<\/p>\n

2nd cas : on veut rendre accessible certaines commandes root \u00e0 un utilisateur :<\/strong><\/span><\/p>\n

On \u00e9dite \u00e0 nouveau le fichier \/etc\/sudoers :<\/p>\n

\u25ba User_Alias STAFF <\/span>= michel,tux,cyndi,linuz<\/span><\/strong>
le groupe est STAFF et on y place 1 ou plusieurs users ( le greoupe n’a pas besoin d’\u00e9xister)<\/span><\/p>\n

\u25ba Cmnd_Alias SERVICES<\/span> = \/sbin\/service, \/sbin\/chkconfig, sbin\/systemctl
\n<\/span><\/strong><\/strong>\u25ba Cmnd_Alias NET<\/span>=\/bin\/ping,\/usr\/bin\/traceroute,\/usr\/bin\/ftp,\/usr\/bin\/nmap<\/span><\/strong><\/strong><\/em><\/p>\n

Cr\u00e9ation d’un Alias de commandes<\/span><\/em><\/em><\/p>\n

Les privil\u00e8ges de Root :<\/span>root ALL=(ALL) ALL
\n1er ALL : indique tous les hosts sur laquelle la cmd peut \u00eatre \u00e9x\u00e9cut\u00e9e
\n2nd ALL : indique les droits du user que l’on prend
\n3\u00e8me ALL : indique les commandes du user que l’on peut utilise<\/strong><\/p>\n

Les privil\u00e8ges des autres users :<\/span>
\u25ba tux ALL=(bruce) ALL <\/strong>:
\ntux sur tous les hosts, prend les droits de bruce pour toutes ses commandes
\u25ba tux 192.168.10.5,192.168.10.0\/24=(ALL) \/sbin\/halt,sbin,reboot
\n<\/strong>tux sur les hosts cit\u00e9s, peut \u00e9teindre et red\u00e9marrer les machines
\n\u25ba Cedric ALL=(ALL) NOPASSWD:ALL
\n<\/strong>(on ne demande pas le mot de passe de Cedric)
\n\u25ba STAFF<\/span> ALL=(ALL) SERVICES<\/span><\/span><\/strong><\/p>\n

Michel BOCCIOLESI<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

I\u25ba Dans ce cours, nous allons voir comment int\u00e9grer un utilisateur (simple) dans les sudoers afin qu’il puisse\u00a0acc\u00e9der\u00a0\u00e0 des commandes de root sans avoir \u00e0 conna\u00eetre le mot …<\/p>\n","protected":false},"author":1,"featured_media":1541,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,34,39],"tags":[],"class_list":["post-623","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","category-linux-admin","category-tutoriels"],"yoast_head":"\nSudo \u25ba sudoers - Tutoriels et Cours<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/\" \/>\n<meta property=\"og:locale\" content=\"fr_FR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Sudo \u25ba sudoers - Tutoriels et Cours\" \/>\n<meta property=\"og:description\" content=\"I\u25ba Dans ce cours, nous allons voir comment int\u00e9grer un utilisateur (simple) dans les sudoers afin qu’il puisse\u00a0acc\u00e9der\u00a0\u00e0 des commandes de root sans avoir \u00e0 conna\u00eetre le mot ...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/\" \/>\n<meta property=\"og:site_name\" content=\"Tutoriels et Cours\" \/>\n<meta property=\"article:published_time\" content=\"2022-01-11T13:33:58+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-09-13T13:44:37+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-content\/uploads\/2015\/12\/linux.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"426\" \/>\n\t<meta property=\"og:image:height\" content=\"282\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Michel BOCCIOLESI\" \/>\n<meta name=\"twitter:label1\" content=\"\u00c9crit par\" \/>\n\t<meta name=\"twitter:data1\" content=\"Michel BOCCIOLESI\" \/>\n\t<meta name=\"twitter:label2\" content=\"Dur\u00e9e de lecture estim\u00e9e\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/\",\"url\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/\",\"name\":\"Sudo \u25ba sudoers - Tutoriels et Cours\",\"isPartOf\":{\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-content\/uploads\/2015\/12\/linux.jpg\",\"datePublished\":\"2022-01-11T13:33:58+00:00\",\"dateModified\":\"2022-09-13T13:44:37+00:00\",\"author\":{\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/#\/schema\/person\/6bdfe0a1263b803645c69e3d5748dabe\"},\"breadcrumb\":{\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#breadcrumb\"},\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#primaryimage\",\"url\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-content\/uploads\/2015\/12\/linux.jpg\",\"contentUrl\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-content\/uploads\/2015\/12\/linux.jpg\",\"width\":426,\"height\":282,\"caption\":\"Cours et turoriels Linux\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Sudo \u25ba sudoers\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/#website\",\"url\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/\",\"name\":\"Tutoriels et Cours\",\"description\":\"Michel Bocciolesi | Formateur Consultant en Informatique\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"fr-FR\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/#\/schema\/person\/6bdfe0a1263b803645c69e3d5748dabe\",\"name\":\"Michel BOCCIOLESI\",\"description\":\"Michel Bocciolesi est consultant et formateur sp\u00e9cialis\u00e9 en Informatique.\",\"sameAs\":[\"https:\/\/www.mb-creation-web.fr\"],\"url\":\"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/author\/michel\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Sudo \u25ba sudoers - Tutoriels et Cours","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/","og_locale":"fr_FR","og_type":"article","og_title":"Sudo \u25ba sudoers - Tutoriels et Cours","og_description":"I\u25ba Dans ce cours, nous allons voir comment int\u00e9grer un utilisateur (simple) dans les sudoers afin qu’il puisse\u00a0acc\u00e9der\u00a0\u00e0 des commandes de root sans avoir \u00e0 conna\u00eetre le mot ...","og_url":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/","og_site_name":"Tutoriels et Cours","article_published_time":"2022-01-11T13:33:58+00:00","article_modified_time":"2022-09-13T13:44:37+00:00","og_image":[{"width":426,"height":282,"url":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-content\/uploads\/2015\/12\/linux.jpg","type":"image\/jpeg"}],"author":"Michel BOCCIOLESI","twitter_misc":{"\u00c9crit par":"Michel BOCCIOLESI","Dur\u00e9e de lecture estim\u00e9e":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/","url":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/","name":"Sudo \u25ba sudoers - Tutoriels et Cours","isPartOf":{"@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/#website"},"primaryImageOfPage":{"@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#primaryimage"},"image":{"@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#primaryimage"},"thumbnailUrl":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-content\/uploads\/2015\/12\/linux.jpg","datePublished":"2022-01-11T13:33:58+00:00","dateModified":"2022-09-13T13:44:37+00:00","author":{"@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/#\/schema\/person\/6bdfe0a1263b803645c69e3d5748dabe"},"breadcrumb":{"@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#breadcrumb"},"inLanguage":"fr-FR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/"]}]},{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#primaryimage","url":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-content\/uploads\/2015\/12\/linux.jpg","contentUrl":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-content\/uploads\/2015\/12\/linux.jpg","width":426,"height":282,"caption":"Cours et turoriels Linux"},{"@type":"BreadcrumbList","@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/sudo\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/"},{"@type":"ListItem","position":2,"name":"Sudo \u25ba sudoers"}]},{"@type":"WebSite","@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/#website","url":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/","name":"Tutoriels et Cours","description":"Michel Bocciolesi | Formateur Consultant en Informatique","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"fr-FR"},{"@type":"Person","@id":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/#\/schema\/person\/6bdfe0a1263b803645c69e3d5748dabe","name":"Michel BOCCIOLESI","description":"Michel Bocciolesi est consultant et formateur sp\u00e9cialis\u00e9 en Informatique.","sameAs":["https:\/\/www.mb-creation-web.fr"],"url":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/author\/michel\/"}]}},"_links":{"self":[{"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/posts\/623","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/comments?post=623"}],"version-history":[{"count":23,"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/posts\/623\/revisions"}],"predecessor-version":[{"id":1839,"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/posts\/623\/revisions\/1839"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/media\/1541"}],"wp:attachment":[{"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/media?parent=623"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/categories?post=623"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bocciolesi.fr\/tutoriels-et-cours\/wp-json\/wp\/v2\/tags?post=623"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}