pool/sudo
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 1032755 from Base:System

Browse Source 
OBS-URL: https://build.opensuse.org/request/show/1032755
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sudo?expand=0&rev=135
This commit is contained in:
Dominique Leuenberger 2022-11-03 18:13:03 +00:00 committed by Git OBS Bridge
commit 8250ad4c64
2 changed files with 14 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
sudo-sudoers.patch
View File

@ -52,7 +52,7 @@ index 5efda5d..e757da4 100644
## ##
## Uncomment to send mail if the user does not enter the correct password. ## Uncomment to send mail if the user does not enter the correct password.
# Defaults mail_badpass # Defaults mail_badpass
@@ -68,10 +59,16 @@ @@ -68,7 +59,6 @@
## Set maxseq to a smaller number if you don't have unlimited disk space. ## Set maxseq to a smaller number if you don't have unlimited disk space.
# Defaults log_output # Defaults log_output
# Defaults!/usr/bin/sudoreplay !log_output # Defaults!/usr/bin/sudoreplay !log_output
@ -60,27 +60,13 @@ index 5efda5d..e757da4 100644
# Defaults!REBOOT !log_output # Defaults!REBOOT !log_output
# Defaults maxseq = 1000 # Defaults maxseq = 1000
+## In the default (unconfigured) configuration, sudo asks for the root password. @@ -87,9 +84,6 @@ root ALL=(ALL:ALL) ALL
+## This allows use of an ordinary user account for administration of a freshly
+## installed system. When configuring sudo, delete the two
+## following lines:
+Defaults targetpw # ask for the password of the target user i.e. root
+ALL ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'!
+
##
## Runas alias specification
##
@@ -87,13 +84,5 @@ root ALL=(ALL:ALL) ALL
## Same thing without a password ## Same thing without a password
# %wheel ALL=(ALL:ALL) NOPASSWD: ALL # %wheel ALL=(ALL:ALL) NOPASSWD: ALL
-## Uncomment to allow members of group sudo to execute any command -## Uncomment to allow members of group sudo to execute any command
-# %sudo ALL=(ALL:ALL) ALL -# %sudo ALL=(ALL:ALL) ALL
- -
-## Uncomment to allow any user to run sudo if they know the password ## Uncomment to allow any user to run sudo if they know the password
-## of the user they are running the command as (root by default). ## of the user they are running the command as (root by default).
-# Defaults targetpw # Ask for the password of the target user # Defaults targetpw # Ask for the password of the target user
-# ALL ALL=(ALL:ALL) ALL # WARNING: only use this together with 'Defaults targetpw'
-
## Read drop-in files from @sysconfdir@/sudoers.d
@includedir @sysconfdir@/sudoers.d

9
sudo.changes
View File

@ -1,3 +1,12 @@
-------------------------------------------------------------------
Tue Nov 1 22:04:32 UTC 2022 - Jason Sikes <jsikes@suse.com>
- Modified sudo-sudoers.patch
* [bsc#1203978 jsc#PED-260]
* Remove uncommented "Defaults targetpw" portion of /etc/sudo-sudoers file.
* Sudo now asks for the password of the user calling sudo instead of the
target (i.e. root) user.
------------------------------------------------------------------- -------------------------------------------------------------------
Tue Oct 25 23:41:55 UTC 2022 - Jason Sikes <jsikes@suse.com> Tue Oct 25 23:41:55 UTC 2022 - Jason Sikes <jsikes@suse.com>