View list of sudoers with no sudo privileges

permissions sudo group
38,302

No you're unable to find out whom has access to sudo rights if you yourself do not have access directly. You could possibly "back into it" by seeing what users if any are members of the Unix group "wheel".

Example

This shows that user "saml" is a member of the wheel group.

$ getent group wheel
wheel:x:10:saml

Being a member of the "wheel" group typically allows for full sudo rights through this rule that's often in a systems sudoers file, /etc/sudoers.

## Allows people in group wheel to run all commands
%wheel  ALL=(ALL)   ALL

But there are no guarantees that the administrator of a given system decided to give sudo rights out in this manner. The just as easily could've done it like so:

## Allow root to run any commands anywhere 
root    ALL=(ALL)   ALL
saml    ALL=(ALL)   ALL

In which case, without sudo rights you could never gain access to a system's /etc/sudoers file to see this entry.

What about /etc/groups

This file only shows users who have a 2nd, 3rd, etc. group associated with them. Often times user accounts only have a single group associated, in which case you'd need to use a slightly different command to find out a given user's primary group:

$ getent passwd saml
saml:x:1000:1000:saml:/home/saml:/bin/bash

Here user "saml" has the primary group 1000. This GID equates to this group:

$ getent group 1000
saml:x:1000:saml

But none of this actually tells you anything as to which user accounts have sudo rights.

Why the big secret?

This is all done to prevent what's known as a side channel attack. Leaking information out, such as which accounts have privileges, would give important information out to a would be attacker, if they were able to gain access to any account on a given system. So often times it's best to mask this info from any non-privileged account.

Share:
38,302
rakesh
Author by

rakesh

Updated on September 18, 2022

Comments

  • rakesh
    rakesh over 1 year
    • If I'm not a sudoer, is it possible to view the list of sudoers?
    • Does /etc/group show this information?
    • Jakob Bennemann
      Jakob Bennemann almost 10 years
      Well, if a user is in the wheel group, that is often a give-away, but it's not guaranteed. I do not believe /etc/group contains any information specific to the sudoers.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

sudo access vs wheel group
Open file or application as root from GUI
How can I have a PHP script run a shell script as root?
Should Vagrant require sudo for each command?
Allow chown command to www-data user
"Sorry, user user1 is not allowed to execute '/bin/ls' as root on hostname"
Why should I be installing my applications in the /opt location?
Allow certain guests to execute certain commands
Sudo is not asking for password on Ubuntu 16.04
Editing sudoers.d to allow www-data run a specific file