From d3780641b2ec3471de5cc2a1ba1f7bb99444e439 Mon Sep 17 00:00:00 2001 From: "Todd C. Miller" Date: Wed, 28 Jul 2010 14:28:46 -0400 Subject: [PATCH] Add commented out SuSE-like targetpw settings --HG-- branch : 1.7 --- sudo.pp | 2 ++ sudoers | 11 ++++++++--- 2 files changed, 10 insertions(+), 3 deletions(-) diff --git a/sudo.pp b/sudo.pp index 4ca94168d..24a64efa2 100644 --- a/sudo.pp +++ b/sudo.pp @@ -55,6 +55,8 @@ still allow people to get their work done." /bin/ed - ${pp_destdir}${sudoersdir}/sudoers <<-'EOF' /Locale settings/+1,s/^# // /ConsoleKit session/+1,s/^# // + /allow any user to run sudo if they know the password/+2,s/^# // + /allow any user to run sudo if they know the password/+3,s/^# // w q EOF diff --git a/sudoers b/sudoers index 45cb86175..4d346a6f5 100644 --- a/sudoers +++ b/sudoers @@ -69,16 +69,21 @@ ## ## User privilege specification ## -root ALL=(ALL) ALL +root ALL=(ALL) ALL ## Uncomment to allow members of group wheel to execute any command -# %wheel ALL=(ALL) ALL +# %wheel ALL=(ALL) ALL ## Same thing without a password -# %wheel ALL=(ALL) NOPASSWD: ALL +# %wheel ALL=(ALL) NOPASSWD: ALL ## Uncomment to allow members of group sudo to execute any command # %sudo ALL=(ALL) ALL +## Uncomment to allow any user to run sudo if they know the password +## of the user they are running the command as (root by default). +# Defaults targetpw # Ask for the password of the target user +# ALL ALL=(ALL) ALL # WARNING: only use this together with 'Defaults targetpw' + ## Read drop-in files from /etc/sudoers.d (the # here does not mean a comment) #includedir /etc/sudoers.d -- 2.50.1