Regular user can't start admin application with sudo as specified in sudoers
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
sudo (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: sudo
I am using a clean install from Ubuntu Dapper 6.06.1 (LTS), fully update, only main repository.
My scenario is as follows:
1) Add a new user "test"
2) Add this line below "root..." using sudo visudo:
test ALL= /usr/bin/
Problem: sudo network-admin returns errors about the X session:
test@ubuntu:~$ sudo network-admin > t.txt
Xlib: connection to ":0.0" refused by server
Xlib: No protocol specified
Xlib: connection to ":0.0" refused by server
Xlib: No protocol specified
(network-
xhost + permits the command to go through as expected but I don't know how to make this behavior persistent and I'd like to only need to modify sudoers.
Expected results: test user can only run network-admin after providing his password
The same configuration gives the expected result under Edgy, though. I'd like to clarify that upgrading is not an option, as the LTS version is used for, well, Long Term Support purposes :) This will probably be escalated as a customer-reported bug.
description: | updated |
There's nothing in sudo to give the new user X permissions, so I wouldn't expect this to work. gksudo and kdesu should work, however kdesu can't be restricted by application because it goes through kdesu_stub so it needs sudoers acces to that which gives access to all applications.