{"id":11341,"date":"2019-03-13T04:13:30","date_gmt":"2019-03-13T04:13:30","guid":{"rendered":"http:\/\/www.appservgrid.com\/paw92\/?p=11341"},"modified":"2019-03-13T04:13:30","modified_gmt":"2019-03-13T04:13:30","slug":"how-to-run-shell-scripts-with-sudo-command-in-linux","status":"publish","type":"post","link":"https:\/\/www.appservgrid.com\/paw92\/index.php\/2019\/03\/13\/how-to-run-shell-scripts-with-sudo-command-in-linux\/","title":{"rendered":"How to Run Shell Scripts with Sudo Command in Linux"},"content":{"rendered":"

sudo<\/strong>\u00a0is a powerful command line tool that enables a \u201cpermitted user<\/strong>\u201d to run a command as another user (the superuser by default), as defined by a security policy. On most if not all Linux systems, the security policy is driven by the\u00a0\/etc\/sudoers<\/strong>\u00a0file.<\/strong><\/p>\n

Read Also<\/strong>:\u00a010 Useful Sudoers Configurations for Setting \u2018sudo\u2019 in Linux<\/a><\/p>\n

Therefore, to run a shell script or program as root, you need to use\u00a0sudo command<\/a>. However,\u00a0sudo<\/strong>\u00a0only recognizes and runs commands that exist in directories specified in the\u00a0secure_path<\/strong>\u00a0in the\u00a0\/etc\/sudoers<\/strong>, unless a command is present in the\u00a0secure_path<\/strong>, you\u2019ll counter an error such as the one below.<\/p>\n

This will happen even if the script exists in a directory in the\u00a0PATH<\/strong>\u00a0environmental variable, because when a user invokes\u00a0sudo<\/strong>,\u00a0PATH<\/strong>\u00a0is replaced with\u00a0secure_path<\/strong>.<\/p>\n

$ echo  $PATH\r\n$ ls  -l\r\n$ sudo proconport.sh 80\r\n<\/pre>\n
\n
\"Sudo<\/a><\/p>\n
Sudo Error While Running Script<\/p>\n
In the above scenario, the directory\u00a0\/home\/aaronkilik\/bin<\/strong>\u00a0is in the\u00a0PATH<\/strong>\u00a0environment variable and we are trying to run the script\u00a0\/home\/aaronkilik\/bin\/proconport.sh<\/strong>\u00a0(finds process listening on a port) with root privileges.<\/p>\n
Then we encountered the error \u201csudo: proconport.sh: command not found<\/strong>\u201d, since\u00a0\/home\/aaronkilik\/bin<\/strong>\u00a0is not in the\u00a0sudo secure_path<\/strong>\u00a0as shown in next screenshot.<\/p>\n
\n
\"Check<\/a><\/p>\n
Check Sudo Secure Path<\/p>\n<\/div>\n
To fix this, we need to add the directory containing our scripts in the\u00a0sudo secure_path<\/strong>\u00a0by using the\u00a0visudo command<\/strong>\u00a0by editing\u00a0\/etc\/sudoers<\/strong>\u00a0file as follows.<\/p>\n
$ sudo visudo\r\n<\/pre>\n
Attention<\/strong>: This method has serious security implications especially on servers running on the Internet. This way, we risk exposing our systems to various attacks, because an attacker who manages to gain access to an unsecure (without superuser privileges) directory that has been added to secure_path, can run a malicious script\/program with\u00a0sudo command<\/strong>.<\/p>\n
For security reason, do check out the following article from the sudo website explains a vulnerability relating to secure_path:\u00a0https:\/\/www.sudo.ws\/sudo\/alerts\/secure_path.html<\/a><\/p>\n
Preferably, we can provide the absolute path to a script while running it with sudo:<\/p>\n
$ sudo .\/proconport.sh 80\r\n<\/pre>\n
\n
\"Run<\/a><\/p>\n
Run Script Using Sudo Command<\/p>\n<\/div>\n
That\u2019s It! You may follow list of articles about sudo command:<\/p>\n
    \n
  1. How to Run \u2018sudo\u2019 Command Without Entering a Password in Linux<\/a><\/li>\n
  2. How to Keep \u2018sudo\u2019 Password Timeout Session Longer in Linux<\/a><\/li>\n
  3. How to Fix \u201cUsername is not in the sudoers file. This incident will be reported\u201d in Ubuntu<\/a><\/li>\n
  4. Let Sudo Insult You When You Enter Incorrect Password<\/a><\/li>\n<\/ol>\n
    Source<\/a><\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"
    sudo\u00a0is a powerful command line tool that enables a \u201cpermitted user\u201d to run a command as another user (the superuser by default), as defined by a security policy. On most if not all Linux systems, the security policy is driven by the\u00a0\/etc\/sudoers\u00a0file. Read Also:\u00a010 Useful Sudoers Configurations for Setting \u2018sudo\u2019 in Linux Therefore, to run … <\/p>\n
    Continue reading “How to Run Shell Scripts with Sudo Command in Linux”<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-11341","post","type-post","status-publish","format-standard","hentry","category-linux"],"_links":{"self":[{"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/posts\/11341","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/comments?post=11341"}],"version-history":[{"count":1,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/posts\/11341\/revisions"}],"predecessor-version":[{"id":11342,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/posts\/11341\/revisions\/11342"}],"wp:attachment":[{"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/media?parent=11341"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/categories?post=11341"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/tags?post=11341"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}