diff options
author | Todd C. Miller <Todd.Miller@courtesan.com> | 2000-01-17 17:28:41 +0000 |
---|---|---|
committer | Todd C. Miller <Todd.Miller@courtesan.com> | 2000-01-17 17:28:41 +0000 |
commit | 0898c0b0edde27dfc341f15e07c5937cc7a26735 (patch) | |
tree | fd57cb82e48e902e5a4af3527b8c73d617d7f102 /sudoers.cat | |
parent | e5bebdc5a1b38175438258c04999ddde995ac716 (diff) | |
download | sudo-0898c0b0edde27dfc341f15e07c5937cc7a26735.tar.gz |
Crank version to 1.6.2
Diffstat (limited to 'sudoers.cat')
-rw-r--r-- | sudoers.cat | 98 |
1 files changed, 49 insertions, 49 deletions
diff --git a/sudoers.cat b/sudoers.cat index 4c686cdbf..c0aacc157 100644 --- a/sudoers.cat +++ b/sudoers.cat @@ -61,7 +61,7 @@ DDDDEEEESSSSCCCCRRRRIIIIPPPPTTTTIIIIOOOONNNN -16/Jan/2000 1.6.1 1 +17/Jan/2000 1.6.2 1 @@ -127,7 +127,7 @@ sudoers(5) FILE FORMATS sudoers(5) -16/Jan/2000 1.6.1 2 +17/Jan/2000 1.6.2 2 @@ -193,7 +193,7 @@ sudoers(5) FILE FORMATS sudoers(5) -16/Jan/2000 1.6.1 3 +17/Jan/2000 1.6.2 3 @@ -259,7 +259,7 @@ sudoers(5) FILE FORMATS sudoers(5) -16/Jan/2000 1.6.1 4 +17/Jan/2000 1.6.2 4 @@ -268,6 +268,10 @@ sudoers(5) FILE FORMATS sudoers(5) sudoers(5) FILE FORMATS sudoers(5) + shell_noargs + If sudo is invoked with no arguments, start a + shell + set_home Set $HOME to the target user when starting a shell with -s @@ -318,14 +322,10 @@ sudoers(5) FILE FORMATS sudoers(5) syslog_goodpri Syslog priority to use when user authenticates - successfully - - syslog_badpri - Syslog priority to use when user authenticates -16/Jan/2000 1.6.1 5 +17/Jan/2000 1.6.2 5 @@ -334,6 +334,10 @@ sudoers(5) FILE FORMATS sudoers(5) sudoers(5) FILE FORMATS sudoers(5) + successfully + + syslog_badpri + Syslog priority to use when user authenticates unsuccessfully SSSSttttrrrriiiinnnnggggssss tttthhhhaaaatttt ccccaaaannnn bbbbeeee uuuusssseeeedddd iiiinnnn aaaa bbbboooooooolllleeeeaaaannnn ccccoooonnnntttteeeexxxxtttt: @@ -382,16 +386,12 @@ sudoers(5) FILE FORMATS sudoers(5) current host must have the C<NOPASSWD> flag set to avoid entering a password. - any At least one of the user's sudoers entries - for the current host must have the - C<NOPASSWD> flag set to avoid entering a - password. -16/Jan/2000 1.6.1 6 +17/Jan/2000 1.6.2 6 @@ -400,6 +400,11 @@ sudoers(5) FILE FORMATS sudoers(5) sudoers(5) FILE FORMATS sudoers(5) + any At least one of the user's sudoers entries + for the current host must have the + C<NOPASSWD> flag set to avoid entering a + password. + never The user need never enter a password to use the B<-l> flag. @@ -450,21 +455,21 @@ sudoers(5) FILE FORMATS sudoers(5) The user ddddggggbbbb may run _/_b_i_n_/_l_s, _/_b_i_n_/_k_i_l_l, and _/_u_s_r_/_b_i_n_/_l_p_r_m -- but only as ooooppppeeeerrrraaaattttoooorrrr. Eg. - sudo -u operator /bin/ls. - It is also possible to override a Runas_Spec later on in - an entry. If we modify the entry like so: +17/Jan/2000 1.6.2 7 -16/Jan/2000 1.6.1 7 +sudoers(5) FILE FORMATS sudoers(5) -sudoers(5) FILE FORMATS sudoers(5) + sudo -u operator /bin/ls. + It is also possible to override a Runas_Spec later on in + an entry. If we modify the entry like so: dgb boulder = (operator) /bin/ls, (root) /bin/kill, /usr/bin/lprm @@ -514,16 +519,11 @@ sudoers(5) FILE FORMATS sudoers(5) [...] Matches any character in the specified range. - [!...] Matches any character nnnnooootttt in the specified range. - - \x For any character "x", evaluates to "x". This is - used to escape special characters such as: "*", - "?", "[", and "}". -16/Jan/2000 1.6.1 8 +17/Jan/2000 1.6.2 8 @@ -532,6 +532,12 @@ sudoers(5) FILE FORMATS sudoers(5) sudoers(5) FILE FORMATS sudoers(5) + [!...] Matches any character nnnnooootttt in the specified range. + + \x For any character "x", evaluates to "x". This is + used to escape special characters such as: "*", + "?", "[", and "}". + Note that a forward slash ('/') will nnnnooootttt be matched by wildcards used in the pathname. When matching the command line arguments, however, as slash ddddooooeeeessss get matched by @@ -581,15 +587,9 @@ sudoers(5) FILE FORMATS sudoers(5) syntactic characters in a _U_s_e_r _S_p_e_c_i_f_i_c_a_t_i_o_n ('=', ':', '(', ')') is optional. - The following characters must be escaped with a backslash - ('\') when used as part of a word (eg. a username or - hostname): '@', '!', '=', ':', ',', '(', ')', '\'. - - - -16/Jan/2000 1.6.1 9 +17/Jan/2000 1.6.2 9 @@ -598,6 +598,10 @@ sudoers(5) FILE FORMATS sudoers(5) sudoers(5) FILE FORMATS sudoers(5) + The following characters must be escaped with a backslash + ('\') when used as part of a word (eg. a username or + hostname): '@', '!', '=', ':', ',', '(', ')', '\'. + EEEEXXXXAAAAMMMMPPPPLLLLEEEESSSS Below are example _s_u_d_o_e_r_s entries. Admittedly, some of these are a bit contrived. First, we define our _a_l_i_a_s_e_s: @@ -649,13 +653,9 @@ EEEEXXXXAAAAMMMMPPPPLLLLEEEESSSS Defaults:millert !authenticate Defaults@SERVERS log_year, logfile=/var/log/sudo.log - The _U_s_e_r _s_p_e_c_i_f_i_c_a_t_i_o_n is the part that actually - determines who may run what. - - -16/Jan/2000 1.6.1 10 +17/Jan/2000 1.6.2 10 @@ -664,6 +664,9 @@ EEEEXXXXAAAAMMMMPPPPLLLLEEEESSSS sudoers(5) FILE FORMATS sudoers(5) + The _U_s_e_r _s_p_e_c_i_f_i_c_a_t_i_o_n is the part that actually + determines who may run what. + root ALL = (ALL) ALL %wheel ALL = (ALL) ALL @@ -715,13 +718,10 @@ sudoers(5) FILE FORMATS sudoers(5) assumes _p_a_s_s_w_d(1) does not take multiple usernames on the command line. - bob SPARC = (OP) ALL : SGI = (OP) ALL - - The user bbbboooobbbb may run anything on the _S_P_A_R_C and _S_G_I -16/Jan/2000 1.6.1 11 +17/Jan/2000 1.6.2 11 @@ -730,6 +730,9 @@ sudoers(5) FILE FORMATS sudoers(5) sudoers(5) FILE FORMATS sudoers(5) + bob SPARC = (OP) ALL : SGI = (OP) ALL + + The user bbbboooobbbb may run anything on the _S_P_A_R_C and _S_G_I machines as any user listed in the _O_P Runas_Alias (rrrrooooooootttt and ooooppppeeeerrrraaaattttoooorrrr). @@ -781,13 +784,10 @@ sudoers(5) FILE FORMATS sudoers(5) On the host www, any user in the _W_E_B_M_A_S_T_E_R_S User_Alias (will, wendy, and wim), may run any command as user www - (which owns the web pages) or simply _s_u(1) to www. - - -16/Jan/2000 1.6.1 12 +17/Jan/2000 1.6.2 12 @@ -796,6 +796,8 @@ sudoers(5) FILE FORMATS sudoers(5) sudoers(5) FILE FORMATS sudoers(5) + (which owns the web pages) or simply _s_u(1) to www. + ALL CDROM = NOPASSWD: /sbin/umount /CDROM,\ /sbin/mount -o nosuid\,nodev /dev/cd0a /CDROM @@ -851,9 +853,7 @@ SSSSEEEEEEEE AAAALLLLSSSSOOOO - - -16/Jan/2000 1.6.1 13 +17/Jan/2000 1.6.2 13 @@ -919,6 +919,6 @@ sudoers(5) FILE FORMATS sudoers(5) -16/Jan/2000 1.6.1 14 +17/Jan/2000 1.6.2 14 |