The sudo(8) program provides a safe, controlled facility that allows a user to run a defined set of programs using the credentials of a defined set of users. The superuser password need never be publicised or compromised, since sudo(8) is controlled from a configuration file crafted by the system administrator.

All commands run by sudo(8) are logged to the /var/log/secure file, while access violations are reported via email. Traceability results.

From a user perspective, sudo(8) is easy to use: simply prefix the desired command line with the word sudo, press return, and possibly enter a password (but not the superuser password).

End Of Document