Suppress log entry for single sudo commands

linux unix sudo syslog
StephenKing picture StephenKing · Jan 11, 2013 · Viewed 9.3k times · Source

For server monitoring, we execute couple of commands with password-less sudo every minute. This fills the server logs.

sudo: zabbix : TTY=unknown ; PWD=/ ; USER=root ; COMMAND=/foo/bar

Can I prevent these entries? The options NOLOG_INPUT and NOLOG_OUTPUT don't look like what I want.

I don't want to omit sudo's logging completely, only for the one user and the one (or more) command.

Is there a way to achieve this?

Answer

dwalter picture dwalter · Jan 11, 2013

You can disable the logging on a user basis using the Defaults: directive

example (disabled logging for user bla)

Defaults:bla !syslog

or using a Cmnd_Alias to disable it per command(s)

Cmnd_Alias SCRIPT = /usr/local/bin/myscript
Defaults!SCRIPT !syslog
# multiple commands need a comma between them
Cmnd_Alias MORE = /bin/ls, /bin/cat
Defaults!MORE !syslog

Tested on Debian 6.0.6 with sudo version 1.7.4p4 (so rather old ;) )

Related questions

How do you find the original user through multiple sudo and su commands?

When running a script via sudo or su I want to get the original user. This should happen regardless of multiple sudo or su runs inside of each other and specifically sudo su -.

Read More
Change owner of the root folder and subfolders (Ubuntu 13.04)

I accidentally set owner of root folder (/) and all subfolders to one user by command $ sudo chown -R 'userName' /* Now I wanna set owner back to root user by command $ chown -R root:root /* But I have no permission for …

Read More
Switching users using WinSCP between different accounts

Is there way to switch between user accounts using WinSCP? When I am using PuTTY, I can use su command to switch users between different accounts. For an example: kitis@localhost$ kitis@localhost$ su abc abc@localhost$ In the same …

Read More