Where are sudo incidents reported? [closed]

command-line linux debian permissions sudo

Attempting something devious on my machine leads to

ryan@debian:~$ sudo EAT_ALL_THE_COOKIES_BEFORE_DINNER
[sudo] password for ryan: 
ryan is not in the sudoers file.  This incident will be reported.

Where is this incident reported, and how do I get the log of all the nasty attempted commands?


Solution 1:

Nevermind, I just found the answer in the alt-text at xkcd:

xkcd838

Replace root with your username, in my case ryan, so the log is found with:

cat /var/spool/mail/ryan

Solution 2:

The report is sent as an email to the root user. Many Linux distributions will automatically setup an alias for that user directing the mail to the first account created during the install process.

Related

Creating and returning Observable from Angular 2 Service
how to show progress bar(circle) in an activity having a listview before loading the listview with data
Can I prevent the Firefox developer tools network panel from clearing on page reload?
how to show underscores symbol in markdown?
How do I make an infinite empty loop that won't be optimized away?
Vim: How to change the highlight color for search hits and quickfix selection
Is there any haskell function to concatenate list with separator?
How to go back (ctrl+z) in vi/vim
Iterating over a numpy array
Google Cloud Bigtable vs Google Cloud Datastore
Automatically capture output of last command into a variable using Bash?
How to quickly drop a user with existing privileges