From: Todd C. Miller Date: Wed, 31 Aug 2016 18:29:54 +0000 (-0600) Subject: Mention that match_group_by_gid has no effect when sudoers is stored X-Git-Tag: SUDO_1_8_18^2~44 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=dba28a945cbad42693568b94f55d7f5e2e384d6a;p=sudo Mention that match_group_by_gid has no effect when sudoers is stored in LDAP. --- diff --git a/doc/sudoers.cat b/doc/sudoers.cat index d0904c5e5..b02168aa7 100644 --- a/doc/sudoers.cat +++ b/doc/sudoers.cat @@ -1149,7 +1149,9 @@ SSUUDDOOEERRSS OOPPTTIIOONNSS _m_a_t_c_h___g_r_o_u_p___b_y___g_i_d flag to avoid resolving the user's group IDs to group names and instead resolve all group names listed in the _s_u_d_o_e_r_s file, matching by group ID - instead of by group name. This flag is _o_f_f by default. + instead of by group name. The _m_a_t_c_h___g_r_o_u_p___b_y___g_i_d flag + has no effect when _s_u_d_o_e_r_s data is stored in LDAP. + This flag is _o_f_f by default. This setting is only supported by version 1.8.18 or higher. @@ -2590,4 +2592,4 @@ DDIISSCCLLAAIIMMEERR file distributed with ssuuddoo or https://www.sudo.ws/license.html for complete details. -Sudo 1.8.18 August 30, 2016 Sudo 1.8.18 +Sudo 1.8.18 August 31, 2016 Sudo 1.8.18 diff --git a/doc/sudoers.man.in b/doc/sudoers.man.in index 1817e6ecc..e00cc064c 100644 --- a/doc/sudoers.man.in +++ b/doc/sudoers.man.in @@ -21,7 +21,7 @@ .\" Agency (DARPA) and Air Force Research Laboratory, Air Force .\" Materiel Command, USAF, under agreement number F39502-99-1-0512. .\" -.TH "SUDOERS" "5" "August 30, 2016" "Sudo @PACKAGE_VERSION@" "File Formats Manual" +.TH "SUDOERS" "5" "August 31, 2016" "Sudo @PACKAGE_VERSION@" "File Formats Manual" .nh .if n .ad l .SH "NAME" @@ -2436,6 +2436,11 @@ flag to avoid resolving the user's group IDs to group names and instead resolve all group names listed in the \fIsudoers\fR file, matching by group ID instead of by group name. +The +\fImatch_group_by_gid\fR +flag has no effect when +\fIsudoers\fR +data is stored in LDAP. This flag is \fIoff\fR by default. diff --git a/doc/sudoers.mdoc.in b/doc/sudoers.mdoc.in index ecf03aece..da20c82b8 100644 --- a/doc/sudoers.mdoc.in +++ b/doc/sudoers.mdoc.in @@ -19,7 +19,7 @@ .\" Agency (DARPA) and Air Force Research Laboratory, Air Force .\" Materiel Command, USAF, under agreement number F39502-99-1-0512. .\" -.Dd August 30, 2016 +.Dd August 31, 2016 .Dt SUDOERS @mansectform@ .Os Sudo @PACKAGE_VERSION@ .Sh NAME @@ -2282,6 +2282,11 @@ flag to avoid resolving the user's group IDs to group names and instead resolve all group names listed in the .Em sudoers file, matching by group ID instead of by group name. +The +.Em match_group_by_gid +flag has no effect when +.Em sudoers +data is stored in LDAP. This flag is .Em off by default.