Sudo: List available commands

Written by Benjamin Cane on 2011-08-17 20:32:06

Sudo is the Unix/Linux standard for providing users with the ability to run commands as another user. However when working with large teams sometimes its difficult to identify which user has what access, below is a command that makes it easy to see what is available for a user.

Example:

[[email protected] ~]$ sudo -l  

User sudoguy may run the following commands on this host:  
 (root) /bin/nice, /bin/kill, /usr/bin/kill, /usr/bin/killall, (root) /sbin/route, /sbin/ifconfig, /bin/ping, /sbin/dhclient, /usr/bin/net, /sbin/iptables, /usr/bin/rfcomm, /usr/bin/wvdial, /sbin/iwconfig, /sbin/mii-tool, (root)  
 /bin/rpm, /usr/bin/up2date, /usr/bin/yum, (root) NOPASSWD: ALL

The cool thing about this is you can also do this as root without switching to the user.

[[email protected] ~]# sudo -lU sudoguy  

User sudoguy may run the following commands on this host:  
 (ALL) NOPASSWD: ALL  
 (root) /bin/nice, /bin/kill, /usr/bin/kill, /usr/bin/killall, (root) /sbin/route, /sbin/ifconfig, /bin/ping, /sbin/dhclient, /usr/bin/net, /sbin/iptables, /usr/bin/rfcomm, /usr/bin/wvdial, /sbin/iwconfig, /sbin/mii-tool, (root)  
 /bin/rpm, /usr/bin/up2date, /usr/bin/yum, (root) NOPASSWD: ALL  

Picture of Benjamin Cane

Benjamin is a Systems Architect working in the financial services industry focused on platforms that require Continuous Availability. He has been working with Linux and Unix for over 10 years now and has recently published his first book; Red Hat Enterprise Linux Troubleshooting Guide.

Publications

Identify, capture and resolve common issues faced by Red Hat Enterprise Linux administrators using best practices and advanced troubleshooting techniques

What people are saying:
Red Hat Enterprise Linux Troubleshooting Guide may just be all you need in your quest to wear the red hat. - Perry N.
Buy on Amazon

Sponsored by