with a `+'). The special value ALL will match any host. Host
netgroups are matched using the host (both qualified and
unqualified) and domain members only; the user member is not used
- when matching.
+ when matching. If a sudoHost entry is preceded by an exclamation
+ point, `!', and the entry matches, the sudoRole in which it resides
+ will be ignored.
s\bsu\bud\bdo\boC\bCo\bom\bmm\bma\ban\bnd\bd
A fully-qualified Unix command name with optional command line
will match any host.
Host netgroups are matched using the host (both qualified and unqualified)
and domain members only; the user member is not used when matching.
+If a
+\fRsudoHost\fR
+entry is preceded by an exclamation point,
+\(oq\&!\(cq,
+and the entry matches, the
+\fRsudoRole\fR
+in which it resides will be ignored.
.TP 6n
\fBsudoCommand\fR
A fully-qualified Unix command name with optional command line arguments,
will match any host.
Host netgroups are matched using the host (both qualified and unqualified)
and domain members only; the user member is not used when matching.
+If a
+.Li sudoHost
+entry is preceded by an exclamation point,
+.Ql \&! ,
+and the entry matches, the
+.Li sudoRole
+in which it resides will be ignored.
.It Sy sudoCommand
A fully-qualified Unix command name with optional command line arguments,
potentially including globbing characters (aka wild cards).
projects / sudo / commitdiff