Bug 287

It appears that sudo will grab the last entry in sudoers and execute the script from that folder rather than the one specified on the command line. I've so far been able to replicate this on all versions of sudo from 1.6.6 to 1.6.9p16. Here's an example of what I'm talking about:


First you create 2 symlinks to the same file in different directories:

monkey@notus ~ $ ln -sv /home/monkey/test-scripts/bin/script.sh /home/monkey/test-scripts/directory1/test.sh
`/home/monkey/test-scripts/directory1/test.sh' -> `/home/monkey/test-scripts/bin/script.sh'
monkey@notus ~ $ ln -sv /home/monkey/test-scripts/bin/script.sh /home/monkey/test-scripts/directory2/test.sh
`/home/monkey/test-scripts/directory2/test.sh' -> `/home/monkey/test-scripts/bin/script.sh'

Second, give 2 users permission to run things in those directories (must have these 2 users on adjacent lines) like so:

#DavidS
davids  ALL=(monkey) /home/monkey/test-scripts/directory1/

#JonR
jonr  ALL=(monkey) /home/monkey/test-scripts/directory2/


Then, try to run the symlink for the first user:

davids@notus / $ sudo -u monkey /home/monkey/test-scripts/directory1/test.sh
Password:
The current script running is:
/home/monkey/test-scripts/directory2/test.sh
Running from:
/
Running as:
monkey

As you can see, the user davids is running the wrong script using jonr's entry.

DavidS can then also run the script in directory2 directly:

davids@notus / $ sudo -u monkey /home/monkey/test-scripts/directory2/test.sh
The current script running is:
/home/monkey/test-scripts/directory2/test.sh
Running from:
/
Running as:
monkey

Here's the script I used to test it:

davids@notus / $ cat /home/monkey/test-scripts/bin/script.sh 
#!/bin/bash

echo "The current script running is:"
echo $0
echo "Running from:"
pwd
echo "Running as:"
whoami