Sudo versions

General support questions
good_face
Posts: 70
Joined: 2019/10/15 13:29:09

Sudo versions

Post by good_face » 2021/02/02 21:20:05

I think there is a bug in the sudo version, what should I do to fix it. I share the operating prompt information below. What update should I do and how will I update it. I added the sudo version on the operating system. Is the version of sudo I shared information about affected? what should I do?

Sudo versions 1.8.2 through 1.8.31p2 and 1.9.0 through 1.9.5p1 are affected.
Fix:
The bug is fixed in sudo 1.9.5p2.


[root@xxxx ~]# lsb_release -a
LSB Version: :base-4.0-amd64:base-4.0-noarch:core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarch
Distributor ID: CentOS
Description: CentOS release 6.10 (Final)
Release: 6.10
Codename: Final
[root@xxxx ~]# uname -r
2.6.32-754.23.1.el6.x86_64
[root@xxxx ~]# sudo -V

Sudoers policy plugin version 1.8.6p3
Sudoers file grammar version 42

Thanks for helping

User avatar
TrevorH
Site Admin
Posts: 33191
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Sudo versions

Post by TrevorH » 2021/02/02 21:52:45

CentOS6 is dead. You need to move to a newer version. There will never be any more patches for it.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

tunk
Posts: 1204
Joined: 2017/02/22 15:08:17

Re: Sudo versions

Post by tunk » 2021/02/02 22:09:19

There's another thread where it's suggested
that an oracle rpm possibly could be used.
But as Trevor says, CentOS 6 is dead.

viewtopic.php?f=17&t=76946&start=10

good_face
Posts: 70
Joined: 2019/10/15 13:29:09

Re: Sudo versions

Post by good_face » 2021/02/02 22:29:49

as far as I understand I have to upgrade to centos 7 or centos 8. There is no package for the Centos 6. How can I upgrade from centos 6 to centos 7 or 8? My applications are running on this server. I don't want them to be affected. Can you tell me the upgrade methods?

I also have another centos 7 server so how can I install this patch on centos 7. With which command can I turn off the sudo option in centos 7 ?

thanks for helping

User avatar
jlehtone
Posts: 4523
Joined: 2007/12/11 08:17:33
Location: Finland

Re: Sudo versions

Post by jlehtone » 2021/02/02 22:39:43

On CentOS 7 you simply run yum update. The repository does already have a sudo with a fix (if you mean the CVE-2021-3156).


The "upgrade" is simple:
1. Install new OS. Clean new install from scratch
2. Install applications
3. Transfer data from old server

There is no supported way to convert (aka migrate, upgrade) an existing system. Things did change too much in 4/9 years.

tunk
Posts: 1204
Joined: 2017/02/22 15:08:17

Re: Sudo versions

Post by tunk » 2021/02/02 22:41:59

Sorry, there's no upgrade path from one major version to another.
Backup data (and settings), do a complete reinstall, copy data back
and setup services etc.

good_face
Posts: 70
Joined: 2019/10/15 13:29:09

Re: Sudo versions

Post by good_face » 2021/02/02 22:57:06

i am new using CentOS. In my new job, my boss asked me to upgrade CentOS from 6 to 7. I have read a lot of forums here and outside and there is different information related with this upgrade. Some people say that there is tool to make this upgrade but not sure about it. When people say that there is an upgrade in the forums, how can I explain that we need to install a new server? Is there a document that the manufacturer says that it is negative? i am asking to show this to my boss. otherwise, I know you have a lot of experience and knowledge.

thanks for helping

tunk
Posts: 1204
Joined: 2017/02/22 15:08:17

Re: Sudo versions

Post by tunk » 2021/02/02 23:37:27

There's been quite a few threads about upgrading, and
the only answer you will get, is that there is NO upgrade
path.

The only option is to install from scratch. You may
not need a new server, but it should be easier to install
on a (new) separate disk. To avoid accidently overwriting
your old disk(s), disconnect them, install e.g. C7 on the
new disk, and then reconnect the old disks.

User avatar
TrevorH
Site Admin
Posts: 33191
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Sudo versions

Post by TrevorH » 2021/02/03 00:53:51

There is no upgrade from any version to another. There was a tool that tried and it is now broken and will break any system it is used on. Do not try it.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

User avatar
jlehtone
Posts: 4523
Joined: 2007/12/11 08:17:33
Location: Finland

Re: Sudo versions

Post by jlehtone » 2021/02/03 07:55:30

What if?

What if your server breaks (for whatever reason)? What will you do?

If you make an (totally unsupported) attempt to upgrade and thus break your server, then you have to do the same as for every breakup.

You admit that you are inexperienced. If the experienced admins would not dare to attempt upgrade, then what are your chances to succeed?
On the other hand, a fresh install is something that you can do successfully (with fair chance).

Post Reply