Automating the "sudo su - user" command

linux sudo su

I want to automate 

sudo su - user

from a script. It should then ask for a password.


I will try and guess what you asked.

If you want to use sudo su - user without a password, you should (if you have the privileges) do the following on you sudoers file:

<youuser>  ALL = NOPASSWD: /bin/su - <otheruser>

where:

  • <yourusername> is you username :D (saumun89, i.e.)
  • <otheruser> is the user you want to change to

Then put into the script:

sudo /bin/su - <otheruser>

Doing just this, won't get subsequent commands get run by <otheruser>, it will spawn a new shell. If you want to run another command from within the script as this other user, you should use something like:

 sudo -u <otheruser> <command>

And in sudoers file:

<yourusername>  ALL = (<otheruser>) NOPASSWD: <command>

Obviously, a more generic line like:

<yourusername> ALL = (ALL) NOPASSWD: ALL

Will get things done, but would grant the permission to do anything as anyone.


You can use command

 echo "your_password" | sudo -S [rest of your parameters for sudo]

(Of course without [ and ])

Please note that you should protect your script from read access from unauthorized users. If you want to read password from separate file, you can use

  sudo -S [rest of your parameters for sudo] < /etc/sudo_password_file

(Or whatever is the name of password file, containing password and single line break.)

From sudo man page:

   -S          The -S (stdin) option causes sudo to read the password from
               the standard input instead of the terminal device.  The
               password must be followed by a newline character.

The easiest way is to make it so that user doesn't have to type a password at all.

You can do that by running visudo, then changing the line that looks like:

someuser  ALL=(ALL) ALL

to

someuser  ALL=(ALL) NOPASSWD: ALL

However if it's just for one script, it would be more secure to restrict passwordless access to only that script, and remove the (ALL), so they can only run it as root, not any user , e.g.

Cmnd_Alias THESCRIPT = /usr/local/bin/scriptname

someuser  ALL=NOPASSWD: THESCRIPT

Run man 5 sudoers to see all the details in the sudoers man page.


When you login into a shell session via putty or moba where you have stored the login credentials for a non root account, simply add this command to be executed upon login in by putty or moba and it will switch your access to root right away.

echo "PASSWORD" | sudo -S su - && sudo su

Related

how can download large files in chunks
How to find out WHEN a usb disk was removed?
Where is "Browse in same window" in Windows 7
Is it possible to have Google Chrome always open shortcuts in a separate window?
How to stop Excel from formating the 16-digit account number in a way to avoid making the last digit zero? [duplicate]
Make programs (specifically chrome) open on same virtual desktop
Mystery radio station playing through headphones. How to find all sources of sound?
Recover data from a corrupt truecrypt encrypted partiton
How can I change the desktop icon size in Windows 7 without the mouse wheel? [duplicate]
How to start recovery from Recovery Partition on a ASUS A6000?
Windows XP hangs when shutting down in VMWare Fusion
Windows 8 64bit say low memory while 4+Gb free