From f452989c9e46cdfd30052e5cf1ce2bc264dad8ba Mon Sep 17 00:00:00 2001 From: "Todd C. Miller" Date: Fri, 30 Jan 2004 00:41:43 +0000 Subject: [PATCH] Clarify that when sudo is run by root with the SUDO_USER variable set, the sudoers lookup happens for root and not the SUDO_USER user. --- sudo.pod | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/sudo.pod b/sudo.pod index 9ca04dfa5..461a495f7 100644 --- a/sudo.pod +++ b/sudo.pod @@ -91,7 +91,8 @@ is set, B will use this value to determine who the actual user is. This can be used by a user to log commands through sudo even when a root shell has been invoked. It also allows the B<-e> flag to remain useful even when being run via a sudo-run script or -program. +program. Note however, that the sudoers lookup is still done for +root, not the user specified by C. B can log both successful and unsuccessful attempts (as well as errors) to syslog(3), a log file, or both. By default B -- 2.50.1