How should I use sudo from an upstart script?

amazon-ec2 node.js upstart su
7,456

Q: "How should I use sudo from an upstart (or any other kind of system startup/init) script?"
A: "You shouldn't".

Sudo is really designed to be used interactively (hence the you must have a tty to run sudo message) -- It's not the right tool to be used in non-interactive startup scripts.

To do what you want requires a little hackery because Upstart doesn't support launching jobs as unprivileged users (yet -- hopefully one day they'll fix this problem). The question was asked and answered over on SuperUser, but I'll reproduce it here as it's equally valuable for sysadmins:

Asking on the #upstart channel on freenode, the official take on the matter is:

A future release of Upstart will have native support for that, but for now, you can use something like:

exec su -s /bin/sh -c 'exec "$0" "$@"' username -- /path/to/command [parameters]

Share:
7,456

Related videos on Youtube

Justin Moore
Author by

Justin Moore

Updated on September 18, 2022

Comments

  • Justin Moore
    Justin Moore over 1 year

    I am using upstart to run my node.js app on an Amazon Linux AMI EC2 instance. I have had a few issues getting it to work, summarized below.

    In my script I had a line like this:

    exec sudo -u www /usr/local/bin/node /var/www/foo/app.js >> /var/log/foo.sys.log 2>&1

    When run, the job never got passed stop/waiting, and when I turned on log-priority debug I saw this line:

    sudo: sorry, you must have a tty to run sudo

    I ended up at this post talking about visudo and why I shouldn't use it and how it recommends using --session-command instead. So I changed the line to:

    exec su --session-command="/usr/local/bin/node /var/www/foo/app.js >> /var/log/foo.sys.log 2>&1" www

    The log now says (sys) Starting but initctl status foo still says foo stop/waiting.

    It this point I am not sure how what to do to get this working, any help would be appreciated.

    Update: I have been over this post from SO and the results are the same.

  • voretaq7
    voretaq7 about 12 years
    (There are also a number of other options mentioned on that SuperUser answer which might be worth investigating. If you find this answer useful please go visit the original question/answer on SuperUser & upvote those as well)

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Loading credentials JSON with AWS SDK Results in Error
running node.js server using upstart causes 'terminated with status 127' on 'ubuntu 10.04'
Can't add new command when connection is in closed state
How to keep node app running?
How to run `npm install` in Amazon Elastic Beanstalk with .ebextensions
Elegant way to create thumbnails of images stored on s3 with ec2 and communicate with rails on finish?
Changing user in a script?
How do I switch users on Amazon Linux for EC2 instances?
How can I run Apache Tomcat and Node.JS servers at the same time?
Simple upstart script for nodejs + forever on Ubuntu