Problem with sudoers

bwalton64
New Forum User
New Forum User
Posts: 3
Joined: Tue Dec 03, 2013 3:48 pm
Location: Challis

Problem with sudoers

Unread post by bwalton64 »

I'm running the latest version of the firewall under cpanel in an openvz container. The firewall is sending emails every second with the following content:

tortix : parse error in /etc/sudoers near line 119 ; TTY=unknown ; PWD=/var/asl/www ;

I've looked at every config file I can think of and can't find the problem. Anybody have a clue?
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4119
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: Problem with sudoers

Unread post by mikeshinn »

I'm running the latest version of the firewall under cpanel in an openvz container. The firewall is sending emails every second with the following content:
What firewall are you referring to?
I've looked at every config file I can think of and can't find the problem. Anybody have a clue?
Yes, so according to your error message:


tortix : parse error in /etc/sudoers near line 119 ; TTY=unknown ; PWD=/var/asl/www ;

You have a problem on line 119, of the file /etc/sudoers. So you need to fix the file /etc/sudoers.
bwalton64
New Forum User
New Forum User
Posts: 3
Joined: Tue Dec 03, 2013 3:48 pm
Location: Challis

Re: Problem with sudoers

Unread post by bwalton64 »

My bad: Atomic Secured Linux 3.2.14-31.el6.art

I checked the /etc/sudoers and there isn't an entry that corresponds with the error. Here the relevant entries out of the sudoers conf:

%xtra ALL=(ALL) NOPASSWD: , /scripts/restartsrv_apache, , /usr/bin/tail, /bin/grep, /usr/bin/find, /usr/bin/tail, /bin/traceroute, /usr/bin/locate, /scripts/restorepkg, /usr/bin/top, /usr/bin/replace
%switchit ALL=(ALL) NOPASSWD: /usr/bin/replace, /bin/grep
tortix ALL = NOPASSWD: /var/asl/bin/aum
tortix ALL = NOPASSWD: /var/asl/bin/rpm-query
tortix ALL = NOPASSWD: /var/asl/bin/asl
tortix ALL = (root) NOPASSWD: /sbin/iptables*
tortix ALL = (root) NOPASSWD: /var/ossec/bin/agent_control
tortix ALL = (root) NOPASSWD: /var/ossec/bin/manage_agents

And here again the error message:

tortix : parse error in /etc/sudoers near line 119 ; TTY=unknown ; PWD=/var/asl/www ;
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4119
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: Problem with sudoers

Unread post by mikeshinn »

SO whats on line 119 of /etc/sudoers?
bwalton64
New Forum User
New Forum User
Posts: 3
Joined: Tue Dec 03, 2013 3:48 pm
Location: Challis

Re: Problem with sudoers

Unread post by bwalton64 »

Thats the first line. Here again with line numbers:

119 %xtra ALL=(ALL) NOPASSWD: , /scripts/restartsrv_apache, , /usr/bin/tail, /bin/grep, /usr/bin/find, /usr/bin/tail, /bin/traceroute, /usr/bin/loca te, /scripts/restorepkg, /usr/bin/top, /usr/bin/replace
120 %switchit ALL=(ALL) NOPASSWD: /usr/bin/replace, /bin/grep
121 tortix ALL = NOPASSWD: /var/asl/bin/aum
122 tortix ALL = NOPASSWD: /var/asl/bin/rpm-query
123 tortix ALL = NOPASSWD: /var/asl/bin/asl
124 tortix ALL = (root) NOPASSWD: /sbin/iptables*
125 tortix ALL = (root) NOPASSWD: /var/ossec/bin/agent_control
126 tortix ALL = (root) NOPASSWD: /var/ossec/bin/manage_agents
User avatar
mikeshinn
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 4119
Joined: Thu Feb 07, 2008 7:49 pm
Location: Chantilly, VA

Re: Problem with sudoers

Unread post by mikeshinn »

119 %xtra ALL=(ALL) NOPASSWD: , /scripts/restartsrv_apache, , /usr/bin/tail, /bin/grep, /usr/bin/find, /usr/bin/tail, /bin/traceroute, /usr/bin/loca te, /scripts/restorepkg, /usr/bin/top, /usr/bin/replace
So something or someone added that line (ASL would not do that), and that line is invalid. You need to fix or remove that line. Its not formated correctly, and I couldnt tell you what the line should have since its not something our product would add, need, or use. My advice would be to remove the line, or contact the vendor that added that line.
Post Reply