topic Help on Script Print Nothing If Error, StdOut if All Good in Splunk Cloud Platform https://community.splunk.com/t5/Splunk-Cloud-Platform/Help-on-Script-Print-Nothing-If-Error-StdOut-if-All-Good/m-p/609202#M1704 <P>Hi Linux Experts!</P><P>Need help on a script that I'm working on to log sudo-enabled users. The script that I'm using is below</P><P>&nbsp;</P><LI-CODE lang="markup">#!/bin/sh getent passwd | cut -f1 -d: | xargs -L1 sudo -l -U | grep -v 'not allowed'</LI-CODE><P>&nbsp;</P><P>It is a `.sh` file that's ran once a day. The corresponding output is then parsed and massaged by some SEDCMD stuff, not relevant here.</P><P>This way, I can see which users are able to perform sudo on the machine.&nbsp; Note: I am aware of the `usersWithLoginPrivs.sh` but this includes users that I'm not interested.&nbsp; Hence the custom script. If there's another solution you can share, that'd be great. But here's my</P><P>PROBLEM: linux admins are complaining that they're getting messaged because `splunk` user that runs this script is generating messages for them. And they don't want to get the messages. So, they suggested to append this command at the end of the script:</P><P>&nbsp;</P><LI-CODE lang="markup">&gt; /dev/null 2&gt;&amp;1</LI-CODE><P>&nbsp;</P><P>which I did. However, it does not print output anymore for those Splunk UFs that previously were able to.&nbsp;</P><P>Yes, the main solution to this problem is to give `splunk` user permission to run the script. But due to the complexity of our organization, we can't request the same thing across the board.&nbsp;</P><P>So, basically, of the thousands of linux servers that we have some can run this script, some cannot. That's currently okay.</P><P>But to those that cannot, I'd like to modify the script in such a way that it will still work the same but will not produce any error. Is there any alternative?</P> Thu, 11 Aug 2022 18:46:08 GMT morethanyell 2022-08-11T18:46:08Z Help on Script Print Nothing If Error, StdOut if All Good https://community.splunk.com/t5/Splunk-Cloud-Platform/Help-on-Script-Print-Nothing-If-Error-StdOut-if-All-Good/m-p/609202#M1704 <P>Hi Linux Experts!</P><P>Need help on a script that I'm working on to log sudo-enabled users. The script that I'm using is below</P><P>&nbsp;</P><LI-CODE lang="markup">#!/bin/sh getent passwd | cut -f1 -d: | xargs -L1 sudo -l -U | grep -v 'not allowed'</LI-CODE><P>&nbsp;</P><P>It is a `.sh` file that's ran once a day. The corresponding output is then parsed and massaged by some SEDCMD stuff, not relevant here.</P><P>This way, I can see which users are able to perform sudo on the machine.&nbsp; Note: I am aware of the `usersWithLoginPrivs.sh` but this includes users that I'm not interested.&nbsp; Hence the custom script. If there's another solution you can share, that'd be great. But here's my</P><P>PROBLEM: linux admins are complaining that they're getting messaged because `splunk` user that runs this script is generating messages for them. And they don't want to get the messages. So, they suggested to append this command at the end of the script:</P><P>&nbsp;</P><LI-CODE lang="markup">&gt; /dev/null 2&gt;&amp;1</LI-CODE><P>&nbsp;</P><P>which I did. However, it does not print output anymore for those Splunk UFs that previously were able to.&nbsp;</P><P>Yes, the main solution to this problem is to give `splunk` user permission to run the script. But due to the complexity of our organization, we can't request the same thing across the board.&nbsp;</P><P>So, basically, of the thousands of linux servers that we have some can run this script, some cannot. That's currently okay.</P><P>But to those that cannot, I'd like to modify the script in such a way that it will still work the same but will not produce any error. Is there any alternative?</P> Thu, 11 Aug 2022 18:46:08 GMT https://community.splunk.com/t5/Splunk-Cloud-Platform/Help-on-Script-Print-Nothing-If-Error-StdOut-if-All-Good/m-p/609202#M1704 morethanyell 2022-08-11T18:46:08Z