Sync tmpfiles.d/sudo.conf with init.d/sudo.conf.in

author Todd C. Miller <Todd.Miller@courtesan.com>

Fri, 10 Apr 2015 15:03:15 +0000 (09:03 -0600)

committer Todd C. Miller <Todd.Miller@courtesan.com>

Fri, 10 Apr 2015 15:03:15 +0000 (09:03 -0600)
author Todd C. Miller <Todd.Miller@courtesan.com>
Fri, 10 Apr 2015 15:03:15 +0000 (09:03 -0600)
committer Todd C. Miller <Todd.Miller@courtesan.com>
Fri, 10 Apr 2015 15:03:15 +0000 (09:03 -0600)
diff --git a/sudo.pp b/sudo.pp

index 8e6101bfec106e6c251caf91b1d21c9be161a1c0..111f0d4aa1a88ff7a6862ae855ec25e29cf4abb2 100644 (file)
--- a/sudo.pp
+++ b/sudo.pp
@@ -409,6 +409,10 @@ still allow people to get their work done."
         # Create /usr/lib/tmpfiles.d/sudo.conf if systemd is configured.
         if [ -f /usr/lib/tmpfiles.d/systemd.conf ]; then
                 cat > /usr/lib/tmpfiles.d/sudo.conf <<-EOF
+               # Create an empty sudo time stamp directory on OSes using systemd.
+               # Sudo will create the directory itself but this can cause problems
+               # on systems that have SELinux enabled since the directories will be
+               # created with the user's security context.
                 d %{rundir} 0711 root root
                 D %{rundir}/ts 0700 root root
                 EOF
author	Todd C. Miller <Todd.Miller@courtesan.com>
	Fri, 10 Apr 2015 15:03:15 +0000 (09:03 -0600)
committer	Todd C. Miller <Todd.Miller@courtesan.com>
	Fri, 10 Apr 2015 15:03:15 +0000 (09:03 -0600)