Question

84

Adding NOPASSWD in /etc/sudoers doesn't work

rated 0 times [ 84] [ 0] / answers: 1 / hits: 138116 / 2 Years ago, tue, june 28, 2022, 11:26:48

On 14.04 here. I SSHed into my machine, added the following line to /etc/sudoers:

myuser   ALL=NOPASSWD: ALL

And then tried running:

sudo mkdir /etc/blah

...and I'm being asked for my password. Why?!?

I do not want to be asked for my password when doing this operation. Please note that when I run ls -ltr / I get:

drwxr-xr-x 94 root root  4096 Jul 30 13:28 etc

But I don't think this matters because I've set myself up as a "sudoer", right?

More importantly, what do I need to do so that I can run sudo mkdir /etc/blah as my current user (myuser) without being asked for the password?

Here's my entire /etc/sudoers file:

#

# This file MUST be edited with the 'visudo' command as root.

#

# Please consider adding local content in /etc/sudoers.d/ instead of

# directly modifying this file.

#

# See the man page for details on how to write a sudoers file.

#

Defaults        env_reset

Defaults        mail_badpass

Defaults        secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"



# Host alias specification



# User alias specification



# Cmnd alias specification



# User privilege specification

root      ALL=(ALL:ALL) ALL

fizzbuzz  ALL=NOPASSWD: ALL

chadmin   ALL=NOPASSWD: ALL

# Members of the admin group may gain root privileges

%admin ALL=(ALL) ALL



# Allow members of group sudo to execute any command

%sudo   ALL=(ALL:ALL) ALL



# See sudoers(5) for more information on "#include" directives:



#includedir /etc/sudoers.d

Answers

Only authorized users can answer the question. Please sign in first, or register a free account.

fatuatexen

Add To Favorites

Follow

Total Points: 451

Total Questions: 107

Total Answers: 110

Location: Trinidad and Tobago

Member since Thu, Apr 27, 2023

1 Year ago

fatuatexen questions

1 Installed .deb package won't run because there's a snap version of the package with the same name

Fri, Sep 9, 22, 09:15, 2 Years ago

1 nautilus-compare on 22.04

Sat, May 21, 22, 08:47, 2 Years ago

1 ubuntu 22.04 - arm-none-eabi GDB complains about missing library

Thu, Sep 23, 21, 02:33, 3 Years ago

1 How to use a more recent clang-format or clang-tidy version on Ubuntu 18.04?

Sat, Sep 4, 21, 14:27, 3 Years ago

1 Software Sources not accessible from Discover

Sun, Jul 11, 21, 22:44, 3 Years ago

View All

answered 2 Years ago ngthmated · Accepted Answer

It is the sequence/ordering of the rules that caused this. The last rule takes preference.

In order to fix your problem, simply move your lines,

fizzbuzz  ALL=NOPASSWD: ALL

chadmin   ALL=NOPASSWD: ALL

from the sudoers file to

sudo visudo -f /etc/sudoers.d/myOverrides

This is better approach than editing the sudoers file with a plain text editor. If you accidentally insert errors into the file, you may not longer be able to run sudo. Always use visudo, so that the syntax is checked and you receive warnings about mistakes!

Your directive doesn't work because it is overridden by:

%admin ALL=(ALL) ALL

%sudo   ALL=(ALL:ALL) ALL

If you run the groups command you should see that your user belongs to these groups.