How to create a file that only sudo can read?

Note that sudo is not synonymous with root/superuser. In fact, sudo command let you execute commands as virtually any user, as specified by the security policy:

$ sudo whoami
root
$ sudo -u bob whoami
bob

I assume you meant to create a file that only root user can read:

# Create the file
touch file

# Change permissions of the file
# '600' means only owner has read and write permissions
chmod 600 file

# Change owner of the file
sudo chown root:root file

When you need to edit the content of the file:

# Replace 'nano' with your prefered editor
sudo nano file

See how only root can read the file:

$ cat file
cat: file: Permission denied
$ sudo cat file
foo bar baz

Figured it out:

echo 'hello world' > test
sudo chown root test
sudo chmod 600 test
sudo cat test

In another terminal, if you do it without sudo:

> cat test
cat: test: Permission denied

Tags:

Sudo

Chmod

Related

cron job to run under conda virtual environment Why are some Intel family 6 CPU models (Core 2, Pentium M) not supported by intel_idle? How to find what the fields in ls -l mean When to use /dev and /sys for userspace-kernel communication? How can I harden bash scripts against causing harm when changed in the future? How fakeroot is not a security breach in Linux? Bash shadow a command - function with same name as command Does include="*" in rsync copy all hidden files in all sub-directories? Fresh Ubuntu 18.04 LTS Installation will only boot into grub mode Why is mv so much faster than cp? How do I recover from an incorrect mv command? How to assign variable and use sed to replace contents of configuration file in Dockerfile? Samba network discovery fails through file managers, but works with smbtree

Recent Posts