How can I use docker without sudo?

Question

Aditya

Asked: 2014-04-11 09:17:16 +0800 CST2014-04-11 09:17:16 +0800 CST 2014-04-11 09:17:16 +0800 CST

How to make sudoreplay work?

772

I recently discovered sudoreplay whose manpage says that it replays sudo session logs. But I am not sure how do I make it work. For whatever little commands I ran it kept on saying that /var/log/sudo-io doesn't exist.

$ sudoreplay -l user aditya command apt-get
sudoreplay: unable to open /var/log/sudo-io: No such file or directory

$ sudoreplay -l fromdate yesterday
sudoreplay: unable to open /var/log/sudo-io: No such file or directory

The man page says:

/var/log/sudo-io          The default I/O log directory.

It looks like I need to enable logging and it isn't enabled by default. What changes do I need to make to use sudoreplay?

2 Answers

Voted

helpful · Answer 1 · 2014-11-28T17:00:35+08:00

To add support for sudoreplay, we need to edit the /etc/sudoers file. For this, execute the following command:

$ sudo visudo

This would open the sudoers file for us. Then insert the following lines at the end of the file and save it:

Defaults log_output
Defaults!/usr/bin/sudoreplay !log_output
Defaults!/sbin/reboot !log_output

It will automatically create the directory /var/log/sudo-io when the visudo command successfully exits AND you run sudo su -.

If it fails then that probably means that your version of sudoers package is out of date. Upgrade the package and try again.

To run a sudoreplay session - who do you need to be? root ofcourse, so

$ sudo sudoreplay -l
Nov 28 11:48:35 2014 : chrthomp : TTY=/dev/pts/1 ; CWD=/home/chrthomp/DJS/2014/Nov ; USER=root ; TSID=000001 ; COMMAND=/bin/su -

$ sudo sudoreplay 000001

will replay the session at normal speed.

If you ever have problems with sudoreplay check that the /var/log/sudo-io folder exists. If it doesn't, you NEED to go and create the directory as root.

$ sudo mkdir -m 750 /var/log/sudo-io

UberJim · Answer 2 · 2014-07-11T23:13:37+08:00

UberJim

2014-07-11T23:13:37+08:002014-07-11T23:13:37+08:00

You need to go and create the directory as root.

$ mkdir -m 750 /var/log/sudo-io

then you need to enable logging in the sudoers file: Add the following 3 lines........

Defaults log_output
Defaults!/usr/bin/sudoreplay !log_output
Defaults!/sbin/reboot !log_output

2

How to make sudoreplay work?

How to install Google Chrome

Is there a command to list all users? Also to add, delete, modify users, in the terminal?

How to delete a non-empty directory in Terminal?

How to unzip a zip file from the Terminal?

How can I copy the contents of a folder to another folder in a different directory using terminal?

How do I install a .deb file via the command line?

How do I run .sh scripts?

How do I install a .tar.gz (or .tar.bz2) file?

How to list all installed packages

Unable to lock the administration directory (/var/lib/dpkg/) is another process using it?