From: Todd C. Miller <Todd.Miller@courtesan.com>
Date: Fri, 10 Apr 2015 15:03:15 +0000 (-0600)
Subject: Sync tmpfiles.d/sudo.conf with init.d/sudo.conf.in
X-Git-Tag: SUDO_1_8_14^2~164
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=02aa57c16916c182833bd4fe2d977bcd5cc9f7c7;p=sudo

Sync tmpfiles.d/sudo.conf with init.d/sudo.conf.in
---

diff --git a/sudo.pp b/sudo.pp
index 8e6101bfe..111f0d4aa 100644
--- a/sudo.pp
+++ b/sudo.pp
@@ -409,6 +409,10 @@ still allow people to get their work done."
 	# Create /usr/lib/tmpfiles.d/sudo.conf if systemd is configured.
 	if [ -f /usr/lib/tmpfiles.d/systemd.conf ]; then
 		cat > /usr/lib/tmpfiles.d/sudo.conf <<-EOF
+		# Create an empty sudo time stamp directory on OSes using systemd.
+		# Sudo will create the directory itself but this can cause problems
+		# on systems that have SELinux enabled since the directories will be
+		# created with the user's security context.
 		d %{rundir} 0711 root root
 		D %{rundir}/ts 0700 root root
 		EOF