Where is the sudoers file on Solaris?

Question

Where is the sudoers file in Solaris? Is it different between Solaris versions (specifically, 9 and 10)?

Alnitak · Answer 1 · 2015-11-20T12:48:09.363

10

If you have sudo, the visudo command should tell you where the sudoers file is.

$ sudo visudo -c
Password:
/etc/sudoers: parsed OK

see ^^^^ here.

edited Nov 20 '15 at 12:48

answered Feb 11 '11 at 18:02

Alnitak

21,191
3
52
82

That doesn't tell me where I can find the sudoers file in the file system. – Jon Kruger Feb 11 '11 at 18:33
5

It's right there in the last line of the output! – Alnitak Feb 11 '11 at 18:36

score 7 · Answer 2 · answered Feb 12 '11 at 03:09

7

Neither Solaris 9 or 10 include sudo - it wasn't bundled with Solaris until Solaris 11 - so for Solaris 9 & 10 the answer is “Whatever path was compiled into whatever version you installed.”

answered Feb 12 '11 at 03:09

alanc

1,500
9
12

4

One of the places to get sudo is OpenCSW. You can install a precompiled package. The sudoers file is then /etc/opt/csw/sudoers. – automaciej Feb 28 '12 at 18:40

score 3 · Answer 3 · answered Feb 12 '11 at 13:55

Solaris has a more advanced privilege system than that. For example you can allow someone access to privileged ports without giving general root access. To do what sudo does, add the "Primary Administrator" profile to the user:

# usermod -P"Primary Administrator" someuser

And then under that user:

$ pfexec command

The profiles are defined in /etc/security/prof_attr. In there you'll see a list of the fine grained privileges in the profile. The user/profile assignments are in /etc/user_attr.

are you sure that it works like this in 9 and 10? I know this works in 11. I seem to remember RBAC only working in 9 if you had the special nerfed shell. — cwebber, Feb 24 '11 at 05:10

score 2 · Answer 4 · answered Feb 11 '11 at 16:27

2

It depends where it was compiled into sudo; it can basically be anywhere, as long as the sudo and visudo tools both know about it.

I tend to run

strings `which sudo`

(which may need privilege) when I want to know where system X keeps its sudoers file.

answered Feb 11 '11 at 16:27

MadHatter

79,770
20
184
232

score 1 · Answer 5 · edited Aug 03 '16 at 06:58

1

It's under /usr/local/etc on my Oracle Solaris 10 1/13 s10x_u11wos_24a X86 system. There was no visudo command.

edited Aug 03 '16 at 06:58

HBruijn

77,029
24
135
201

answered Aug 02 '16 at 17:16

user368491

11
1

score 0 · Answer 6 · answered Mar 05 '11 at 21:13

0

instead of sudo, you can use

su -

answered Mar 05 '11 at 21:13

doh45

9
1

1

That's true but is generally not considered a good thing. Having people use sudo or RBAC and pfexec allows what they do to be logged and audited. – user9517 Mar 05 '11 at 21:20

score -1 · Answer 7 · edited Nov 20 '15 at 10:50

-1

/opt/csw/etc/sudoers is path....

edited Nov 20 '15 at 10:50

HBruijn

77,029
24
135
201

answered Nov 19 '15 at 20:46

kamal kumar

1

3

Not universally though, (see the other answer with the suggestion to use `visudo` to find the specific path for your sudo build). – HBruijn Nov 20 '15 at 10:51
@HBruijn which for some reason I just got downvoted for :( – Alnitak Nov 20 '15 at 12:46

Where is the sudoers file on Solaris?

7 Answers7