rootsh in Ansible for privilege escalation

write_Bapun · November 12, 2018, 2:17pm

Hello All,

I am looking if Ansible supports rootsh for privilege escalation. I have tried all possible ways but i am not successful yet.

Documenation: https://linux.die.net/man/1/rootsh

If there is no module/plugin present for rootsh : My question is can i create a new module or plugin for rootsh for my use? I would like to know which source code files i need to modify for rootsh privilege escalation.

Here is my sudoer file:

Allow root to run any commands anywhere

root ALL=(ALL) ALL
poweruser ALL=(ALL) ALL
normaluser ALL=(root) /usr/bin/rootsh /bin/su - poweruser

I would like to ssh using normaluser and then change the user to poweruser and run all sudo commands.

normal user only can run: sudo /usr/bin/rootsh /bin/su - poweruser
it asks for password to change to poweruser

-Sam

Topic		Replies	Views
How to customise privilege escalation using sudo Ansible Project	0	0	September 25, 2016
Can't Use Standard become_method As Have To Use rootsh. Options? Ansible Project	4	2	April 26, 2024
"sudo su user" and "sudo bash" for privilege escalation Ansible Project	0	0	January 9, 2016
Sudo privilege escalation is not working Ansible Project	3	5	May 24, 2019
ansible privilege escalation ( sudo su - ) Ansible Project	3	2	March 17, 2020

rootsh in Ansible for privilege escalation

Allow root to run any commands anywhere

Related topics