Main Menu

Search

LINUX: How To Enable Debug Logging In Linux For Sudo (Sudoers, Sudo Users)?

 
For Enabling Debug Logging for sudo in Linux, edit /etc/sudo.conf file and add below lines.


Debug sudo /var/log/sudo_debug.log all@debug
Debug sudoers.so /var/log/sudo_debug.log all@debug
Defaults log_input, log_output

After the debugging is enabled to sudo, you will see /var/log/sudo_debug.log file created which will have the debug information. Following is example snippet of debug log.

Mar  8 16:03:54 sudo[6337] <- sudo_new_key_val_v1 @ ./key_val.c:55 := user=olcne
Mar  8 16:03:54 sudo[6337] user_info: user=olcne
Mar  8 16:03:54 sudo[6337] sudo_getpwnam: user olcne [] -> uid 975 [] (cached)
Mar  8 16:03:54 sudo[6337] sudo_get_gidlist: looking up group-IDs for olcne
Mar  8 16:03:54 sudo[6337] sudo_get_gidlist: user olcne has supplementary gid 974
Mar  8 16:03:54 sudo[6337] /etc/sudoers.d/olcne:3: CMNDALIAS ALIAS = COMMAND
Mar  8 16:03:54 sudo[6337] /etc/sudoers.d/olcne:4: WORD(6) ALL = ( WORD(6) : ALL ) NOPASSWD ALIAS
Mar  8 16:03:54 sudo[6337] user olcne matches sudoers user olcne: true @ userpw_matches() ./match.c:498
Mar  8 16:03:54 sudo[6337] user command "/etc/olcne/scripts/olcne-image-exists container-registry.oracl
e.com/olcne/kube-scheduler:v1.29.14" matches sudoers command "/etc/olcne/scripts/": true @ command_matc
hes() ./match_command.c:672
Mar  8 16:03:54 sudo[6337] userspec matched @ /etc/sudoers.d/olcne:4:49: allowed @ sudoers_lookup_check
() ./parse.c:170
Mar  8 16:03:54 sudo[6337] keep USER=olcne: NO
Mar  8 16:03:54 sudo[6337] keep HOME=/home/olcne: NO
Mar  8 16:03:54 sudo[6337] keep LOGNAME=olcne: NO
Mar  8 16:03:54 sudo[6337] sudo_putenv:


Key Words:
 
sudo sudoing sudoers sudo user debug debugging log logging verbose verbosity access
Tags: , , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)