From: Todd C. Miller Date: Wed, 24 Mar 2004 23:23:29 +0000 (+0000) Subject: Remove bogus sentence about uids in a User_List. Document usernames X-Git-Tag: SUDO_1_6_8~153 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=3b8dbaf4916e7a44b61ba110dabc58a9e10d9f02;p=sudo Remove bogus sentence about uids in a User_List. Document usernames vs. uid parsing in a Runas_List. --- diff --git a/sudoers.pod b/sudoers.pod index 4046427d2..046b2c1f4 100644 --- a/sudoers.pod +++ b/sudoers.pod @@ -112,12 +112,11 @@ The definitions of what constitutes a valid I member follow. '!'* '+'netgroup | '!'* User_Alias -A C is made up of one or more usernames, uids -(prefixed with '#'), System groups (prefixed with '%'), -netgroups (prefixed with '+') and other aliases. Each list -item may be prefixed with one or more '!' operators. An odd number -of '!' operators negate the value of the item; an even number -just cancel each other out. +A C is made up of one or more usernames, system groups +(prefixed with '%'), netgroups (prefixed with '+') and other aliases. +Each list item may be prefixed with one or more '!' operators. +An odd number of '!' operators negate the value of the item; an even +number just cancel each other out. Runas_List ::= Runas_User | Runas_User ',' Runas_List @@ -130,7 +129,11 @@ just cancel each other out. A C is similar to a C except that it can also contain uids (prefixed with '#') and instead of Ces -it can contain Ces. +it can contain Ces. Note that usernames and groups +are matched as strings. In other words, two users (groups) with +the same uid (gid) are considered to be distinct. If you wish to +match all usernames with the same uid (e.g. root and toor), you +can use a uid instead (#0 in the example given). Host_List ::= Host | Host ',' Host_List