2009/04/20(月)"To me, this is not a bug, but a local install/config issue. "
仕事は暇なようでいて、微妙に忙しいし。
さて、なんかCentOS5.3のsudoで引っかかったのでメモしておく。
# sudo -u hogehoge /hoge/fuga/moge sudo: Error dropping capabilities, aborting : Operation not permittedなんじゃこれ?
0003512: Sudo Bug On CentOS 5.3 - CentOS Bug Tracker
なんか全く同じ引っかかり方してる。
There is a serious bug on Centos 5.3 (i386) due to sudo version, it blocks root sudo commands as users on the server.2009.04.05にopenされているけど、そんなシリアスなバグ放置されてるかね?
Sudo Version:
Name : sudo
Arch : i386
Version : 1.6.9p17
Release : 3.el5_3.1
Example command in root ssh:
sudo -u anyuser mkdir /home/anyuser/test
Result: sudo: Error dropping capabilities, aborting
I've tested this issue on 5 different CentOS 5.3 release, they are all same.
で、そのコメント。
this appears to be something local to your system setups, as I've tried it on several x86 and x86_64 boxes with centos 5.2 and 5.3 here. I am completely unable to reproduce this bug.えー。
I thought it have have something to do using 'su' instead of 'su -' to gain root instead of logging in as root, but both methods work just fine here.
To me, this is not a bug, but a local install/config issue.
で、これは実はCPIのVPS環境下なのだけど
OpenVZ Forum: Support => SUDO inside VPS don't work
あらら。
inside vps make command:
[root@mars /]# sudo -u ftp ls /
sudo: Error dropping capabilities, aborting
- Operation not permitted
I have the latest RHEL5 Kernel supporting OpenVZ (2.6.18-92.1.18.el5.028stab060.2) and even at the host level I get this message "audit_log_user_command(): Connection refused".おいおい。
元タイ人留学生がのぞいたタイランド sudoのエラーについて CPIのVPS 3
Bug 401201 – sudo complains: audit_log_user_command(): Connection refused
んで。手元の環境は。
# yum list | grep -i sudo sudo.i386 1.6.9p17-3.el5_3.1 installedバージョン番号的には直ってそう?
眠い、よくわからん。