Sudo versions
Sudo versions
I think there is a bug in the sudo version, what should I do to fix it. I share the operating prompt information below. What update should I do and how will I update it. I added the sudo version on the operating system. Is the version of sudo I shared information about affected? what should I do?
Sudo versions 1.8.2 through 1.8.31p2 and 1.9.0 through 1.9.5p1 are affected.
Fix:
The bug is fixed in sudo 1.9.5p2.
[root@xxxx ~]# lsb_release -a
LSB Version: :base-4.0-amd64:base-4.0-noarch:core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarch
Distributor ID: CentOS
Description: CentOS release 6.10 (Final)
Release: 6.10
Codename: Final
[root@xxxx ~]# uname -r
2.6.32-754.23.1.el6.x86_64
[root@xxxx ~]# sudo -V
Sudoers policy plugin version 1.8.6p3
Sudoers file grammar version 42
Thanks for helping
Sudo versions 1.8.2 through 1.8.31p2 and 1.9.0 through 1.9.5p1 are affected.
Fix:
The bug is fixed in sudo 1.9.5p2.
[root@xxxx ~]# lsb_release -a
LSB Version: :base-4.0-amd64:base-4.0-noarch:core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarch
Distributor ID: CentOS
Description: CentOS release 6.10 (Final)
Release: 6.10
Codename: Final
[root@xxxx ~]# uname -r
2.6.32-754.23.1.el6.x86_64
[root@xxxx ~]# sudo -V
Sudoers policy plugin version 1.8.6p3
Sudoers file grammar version 42
Thanks for helping
Re: Sudo versions
CentOS6 is dead. You need to move to a newer version. There will never be any more patches for it.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: Sudo versions
There's another thread where it's suggested
that an oracle rpm possibly could be used.
But as Trevor says, CentOS 6 is dead.
viewtopic.php?f=17&t=76946&start=10
that an oracle rpm possibly could be used.
But as Trevor says, CentOS 6 is dead.
viewtopic.php?f=17&t=76946&start=10
Re: Sudo versions
as far as I understand I have to upgrade to centos 7 or centos 8. There is no package for the Centos 6. How can I upgrade from centos 6 to centos 7 or 8? My applications are running on this server. I don't want them to be affected. Can you tell me the upgrade methods?
I also have another centos 7 server so how can I install this patch on centos 7. With which command can I turn off the sudo option in centos 7 ?
thanks for helping
I also have another centos 7 server so how can I install this patch on centos 7. With which command can I turn off the sudo option in centos 7 ?
thanks for helping
Re: Sudo versions
On CentOS 7 you simply run yum update. The repository does already have a sudo with a fix (if you mean the CVE-2021-3156).
The "upgrade" is simple:
1. Install new OS. Clean new install from scratch
2. Install applications
3. Transfer data from old server
There is no supported way to convert (aka migrate, upgrade) an existing system. Things did change too much in 4/9 years.
The "upgrade" is simple:
1. Install new OS. Clean new install from scratch
2. Install applications
3. Transfer data from old server
There is no supported way to convert (aka migrate, upgrade) an existing system. Things did change too much in 4/9 years.
Re: Sudo versions
Sorry, there's no upgrade path from one major version to another.
Backup data (and settings), do a complete reinstall, copy data back
and setup services etc.
Backup data (and settings), do a complete reinstall, copy data back
and setup services etc.
Re: Sudo versions
i am new using CentOS. In my new job, my boss asked me to upgrade CentOS from 6 to 7. I have read a lot of forums here and outside and there is different information related with this upgrade. Some people say that there is tool to make this upgrade but not sure about it. When people say that there is an upgrade in the forums, how can I explain that we need to install a new server? Is there a document that the manufacturer says that it is negative? i am asking to show this to my boss. otherwise, I know you have a lot of experience and knowledge.
thanks for helping
thanks for helping
Re: Sudo versions
There's been quite a few threads about upgrading, and
the only answer you will get, is that there is NO upgrade
path.
The only option is to install from scratch. You may
not need a new server, but it should be easier to install
on a (new) separate disk. To avoid accidently overwriting
your old disk(s), disconnect them, install e.g. C7 on the
new disk, and then reconnect the old disks.
the only answer you will get, is that there is NO upgrade
path.
The only option is to install from scratch. You may
not need a new server, but it should be easier to install
on a (new) separate disk. To avoid accidently overwriting
your old disk(s), disconnect them, install e.g. C7 on the
new disk, and then reconnect the old disks.
Re: Sudo versions
There is no upgrade from any version to another. There was a tool that tried and it is now broken and will break any system it is used on. Do not try it.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: Sudo versions
What if?
What if your server breaks (for whatever reason)? What will you do?
If you make an (totally unsupported) attempt to upgrade and thus break your server, then you have to do the same as for every breakup.
You admit that you are inexperienced. If the experienced admins would not dare to attempt upgrade, then what are your chances to succeed?
On the other hand, a fresh install is something that you can do successfully (with fair chance).
What if your server breaks (for whatever reason)? What will you do?
If you make an (totally unsupported) attempt to upgrade and thus break your server, then you have to do the same as for every breakup.
You admit that you are inexperienced. If the experienced admins would not dare to attempt upgrade, then what are your chances to succeed?
On the other hand, a fresh install is something that you can do successfully (with fair chance).