AlmaLinux9 sudoの設定

# cat /etc/sudoers
＜省略＞

Defaults secure_path = /sbin:/bin:/usr/sbin:/usr/bin

## Next comes the main part: which users can run what software on
## which machines (the sudoers file can be shared between multiple
## systems).
## Syntax:
##
## user MACHINE=COMMANDS
##
## The COMMANDS section may have other options added to it.
##
## Allow root to run any commands anywhere
root ALL=(ALL) ALL

## Allows members of the 'sys' group to run networking, software,
## service management apps and more.
# %sys ALL = NETWORKING, SOFTWARE, SERVICES, STORAGE, DELEGATING, PROCESSES, LOCATE, DRIVERS

## Allows people in group wheel to run all commands
%wheel ALL=(ALL) ALL

## Same thing without a password
# %wheel ALL=(ALL) NOPASSWD: ALL

## Allows members of the users group to mount and unmount the
## cdrom as root
# %users ALL=/sbin/mount /mnt/cdrom, /sbin/umount /mnt/cdrom

## Allows members of the users group to shutdown this system
# %users localhost=/sbin/shutdown -h now

## Read drop-in files from /etc/sudoers.d (the # here does not mean a comment)
#includedir /etc/sudoers.d

ユーザー名　ホスト名=(権限)　[NOPASSWD:] 対象コマンド1,対象コマンド2,

# useradd -g wheel testuser
# passwd testuser
Changing password for user testuser.
New password:

[パスワード設定後、testuserでログイン]

$ whoami
testuser
$ cat /etc/shadow
cat: /etc/shadow: Permission denied
$ sudo cat /etc/shadow

We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:

#1) Respect the privacy of others.
#2) Think before you type.
#3) With great power comes great responsibility.

[sudo] password for testuser: [testuserのパスワードを入力]

＜表示＞

# visudo

＜追記＞
testuser ALL=(ALL) NOPASSWD: ALL

# visudo

＜追記＞
testuser ALL=(ALL) ALL