configuring sudo by default (was: Re: Today's (9/12) rawhide all users = unable to authenticate user!)

Callum Lerwick seg at haxxed.com
Thu Sep 18 02:29:42 UTC 2008


On Wed, 2008-09-17 at 19:35 -0400, Matthew Miller wrote:
> It could be done, but /etc/sudoers.d still might have odd interactions with
> the main file, and in any case it'd be a certain amount of work which might
> not get accepted upstream. Meanwhile, group approach works right now and
> requires a one character change to an existing config file.
> 
> Developing a special sudoers.d directory also doesn't automatically work
> with userhelper/consolehelper -- which the group solution does. (And
> PolicyKit can work off group membership too, right?)

Also, with a 'chgrp wheel /var/log/messages' and a 'chmod
640 /var/log/messages' you can solve the log reading problem too. Maybe
we should consider making that default too...
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
Url : http://lists.fedoraproject.org/pipermail/devel/attachments/20080917/83ec2dd8/attachment.bin 


More information about the devel mailing list