Using the sudo command got me reported!

[thewhitehart]

For any of you advanced unix users out there -

I tried to use the "sudo periodic daily weekly monthly" command under my standard user account. It asked for my user's password after warning me about the consequences of the "sudo" command. I typed in my standard user password, and this is what I got.

"user john is not a sudoer. This incident will be reported"

Reported to whom?!

Where does it store the info that I attempted to run the "sudo" command?

 

[dops7107]

It goes straight to the very top of the chain of command. I'd be extremely careful how you behave from now on.

 

[balamw]

Where does it store the info that I attempted to run the "sudo" command?

It goes on your permanent record like all the bad choices you made as a kid.









Actually, it just goes to a log file so a real sudoer can see if someone has been trying to mess with this machine.

B

 

[Queso]

Well, normally I'd expect it to go into the /var/log/auth.log, but taking a peek in the Terminal it doesn't appear OSX has one of those

So in this case it looks like the message remains from the original UNIX source code but the report itself goes nowhere. Unless anyone else can track the trail and find its final resting place.

 

[mkrishnan]

I thought it would go in the form of a system mail message (that you access using "mail"), but it doesn't seem to be the case. Unless it shows up in that form when you login as root?

 

[iMeowbot]

Where does it store the info that I attempted to run the "sudo" command?

On the Mac, it's stored in both /var/log/asl.log and /var/log/system.log

 

[epochblue]

Reported just to the admin of the system...no biggie. Definitely not reported to anyone of note (not to impugn you, mind you).

 

[Shadow]

It goes straight to the very top of the chain of command. I'd be extremely careful how you behave from now on.

Yeah, I heard all this kinda stuff goes to Mad Jews post count

 

[MagicUK]

No doubt Homeland security has been informed. What size orange jump suit would you like .

Dam forgot they can extradite us UK bod's. I take it all back Mr Bush Sir.

 

[jeremy.king]

I just got an email saying John was trying to sudo when he shouldn't be

 

[MacsRgr8]

I just got an email saying John was trying to sudo when he shouldn't be

If you're working for the CIA, that's what you should expect.

 

[FrankBlack]

You can read all the system and security logs in the console application. It's in Applications/Utilities.

No need to panic. There won't be any black helicopters over your house, and no guys who look like agents of the Matrix out to get you. Your use of Sudo as a non-admin just gets logged, that's all.

I've worked in some companies where the IT departments are indeed run like little Fiefdoms, and mere mortals aren't allowed to do much of anything.