store | blogs | forums | twitter | facebook | wiki | downloads | support portal
Atomic Secure Linux
It is currently Tue Oct 22, 2019 5:30 pm

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]




Post new topic Reply to topic  [ 6 posts ] 
Author Message
 Post subject: Problem with sudoers
Unread postPosted: Tue Dec 10, 2013 9:44 am 
Offline
New Forum User
New Forum User

Joined: Tue Dec 03, 2013 3:48 pm
Posts: 3
Location: Challis
I'm running the latest version of the firewall under cpanel in an openvz container. The firewall is sending emails every second with the following content:

tortix : parse error in /etc/sudoers near line 119 ; TTY=unknown ; PWD=/var/asl/www ;

I've looked at every config file I can think of and can't find the problem. Anybody have a clue?


Top
 Profile  
Reply with quote  
 Post subject: Re: Problem with sudoers
Unread postPosted: Tue Dec 10, 2013 2:36 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 4086
Location: Chantilly, VA
Quote:
I'm running the latest version of the firewall under cpanel in an openvz container. The firewall is sending emails every second with the following content:


What firewall are you referring to?

Quote:
I've looked at every config file I can think of and can't find the problem. Anybody have a clue?


Yes, so according to your error message:


tortix : parse error in /etc/sudoers near line 119 ; TTY=unknown ; PWD=/var/asl/www ;

You have a problem on line 119, of the file /etc/sudoers. So you need to fix the file /etc/sudoers.

_________________
Michael Shinn
Atomicorp - Security For Everyone


Top
 Profile  
Reply with quote  
 Post subject: Re: Problem with sudoers
Unread postPosted: Tue Dec 10, 2013 3:49 pm 
Offline
New Forum User
New Forum User

Joined: Tue Dec 03, 2013 3:48 pm
Posts: 3
Location: Challis
My bad: Atomic Secured Linux 3.2.14-31.el6.art

I checked the /etc/sudoers and there isn't an entry that corresponds with the error. Here the relevant entries out of the sudoers conf:

%xtra ALL=(ALL) NOPASSWD: , /scripts/restartsrv_apache, , /usr/bin/tail, /bin/grep, /usr/bin/find, /usr/bin/tail, /bin/traceroute, /usr/bin/locate, /scripts/restorepkg, /usr/bin/top, /usr/bin/replace
%switchit ALL=(ALL) NOPASSWD: /usr/bin/replace, /bin/grep
tortix ALL = NOPASSWD: /var/asl/bin/aum
tortix ALL = NOPASSWD: /var/asl/bin/rpm-query
tortix ALL = NOPASSWD: /var/asl/bin/asl
tortix ALL = (root) NOPASSWD: /sbin/iptables*
tortix ALL = (root) NOPASSWD: /var/ossec/bin/agent_control
tortix ALL = (root) NOPASSWD: /var/ossec/bin/manage_agents

And here again the error message:

tortix : parse error in /etc/sudoers near line 119 ; TTY=unknown ; PWD=/var/asl/www ;


Top
 Profile  
Reply with quote  
 Post subject: Re: Problem with sudoers
Unread postPosted: Tue Dec 10, 2013 4:49 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 4086
Location: Chantilly, VA
SO whats on line 119 of /etc/sudoers?

_________________
Michael Shinn
Atomicorp - Security For Everyone


Top
 Profile  
Reply with quote  
 Post subject: Re: Problem with sudoers
Unread postPosted: Tue Dec 10, 2013 4:56 pm 
Offline
New Forum User
New Forum User

Joined: Tue Dec 03, 2013 3:48 pm
Posts: 3
Location: Challis
Thats the first line. Here again with line numbers:

119 %xtra ALL=(ALL) NOPASSWD: , /scripts/restartsrv_apache, , /usr/bin/tail, /bin/grep, /usr/bin/find, /usr/bin/tail, /bin/traceroute, /usr/bin/loca te, /scripts/restorepkg, /usr/bin/top, /usr/bin/replace
120 %switchit ALL=(ALL) NOPASSWD: /usr/bin/replace, /bin/grep
121 tortix ALL = NOPASSWD: /var/asl/bin/aum
122 tortix ALL = NOPASSWD: /var/asl/bin/rpm-query
123 tortix ALL = NOPASSWD: /var/asl/bin/asl
124 tortix ALL = (root) NOPASSWD: /sbin/iptables*
125 tortix ALL = (root) NOPASSWD: /var/ossec/bin/agent_control
126 tortix ALL = (root) NOPASSWD: /var/ossec/bin/manage_agents


Top
 Profile  
Reply with quote  
 Post subject: Re: Problem with sudoers
Unread postPosted: Tue Dec 10, 2013 5:20 pm 
Offline
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
User avatar

Joined: Thu Feb 07, 2008 7:49 pm
Posts: 4086
Location: Chantilly, VA
Quote:
119 %xtra ALL=(ALL) NOPASSWD: , /scripts/restartsrv_apache, , /usr/bin/tail, /bin/grep, /usr/bin/find, /usr/bin/tail, /bin/traceroute, /usr/bin/loca te, /scripts/restorepkg, /usr/bin/top, /usr/bin/replace


So something or someone added that line (ASL would not do that), and that line is invalid. You need to fix or remove that line. Its not formated correctly, and I couldnt tell you what the line should have since its not something our product would add, need, or use. My advice would be to remove the line, or contact the vendor that added that line.

_________________
Michael Shinn
Atomicorp - Security For Everyone


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 6 posts ] 

» Feed - Atomicorp

All times are UTC - 5 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group