better way to modify sudoers file [closed]

Question

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.

---

This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.

Closed 8 years ago.

Improve this question

We used to run our application as a special user (say "suser") instead of root user. So we will give some permissions to this suser for running some commands without needing a password by adding this in the /etc/sudoers file.

I believe changing this file will require a reboot or log off. Correct me if I am wrong.

Which one is better changing directly /etc/sudoers file or adding a separate sudoers file in /etc/sudoers.d directory ? Is there any reason to avoid modifying /etc/sudoers file directly ?

During uninstall of my application, is removing the user (suser) alone enough?

Answer 1

Changing /etc/sudoers file does not require a reboot or log off changes are reflected immediately once the file is saved.using the visudo command is the recommended way to update sudoers content, since it protects against many failure modes.

keeping changes in /etc/sudoers.d directory is a convenient way to add and remove permissions(application specific) instead of modifying the /etc/sudors file.