iCompaas Support

Profile Applicability:
 • Level 1

Description:
 The sudo package allows users to execute commands with elevated privileges in a controlled manner. Ensuring that sudo is installed is fundamental for secure privilege management and auditing.

Rationale:
 Installing sudo enables administrators to delegate specific privileges securely without sharing the root password, improving accountability and system security.

Impact:
 Pros:

• Facilitates secure and auditable privilege escalation.
  
  

• Supports principle of least privilege.
  
  

Cons:

• Misconfiguration may lead to unauthorized privilege use.
  
  

Default Value:
 sudo may not be installed by default on minimal or custom Linux installations.

Pre-requisites:

• Root or sudo privileges to install software packages.
  
  

Remediation:

Test Plan:

Using Linux command line:

1. Check if sudo is installed:
   

On RPM-based systems:

rpm -q sudo

On Debian-based systems:

dpkg -l | grep sudo

2. Confirm package installation status.

Implementation Plan:

Using Linux command line:

1. Install sudo if missing:
   

On RPM-based systems:

yum install sudo -y

On Debian-based systems:

apt-get install sudo -y

Verify installation:

sudo -V

Backout Plan:

Using Linux command line:

1. Remove sudo if necessary:
   
   

On RPM-based systems:

yum remove sudo -y

On Debian-based systems:

apt-get remove sudo -y

2. Confirm removal.

References:

• https://aws.amazon.com/amazon-linux-2/release-notes/

• https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final

• https://www.cisecurity.org/benchmark/amazon_linux/