[arch-general] Sudo arch wiki
Kevin Chadwick
ma1l1ists at yahoo.co.uk
Thu Aug 30 19:48:41 EDT 2012
Cmnd_Alias EDITS
= /usr/bin/vim, /usr/bin/nano, /usr/bin/cat, /usr/bin/vi Cmnd_Alias
ARCHLINUX = /usr/sbin/gparted, /usr/bin/pacman, /usr/bin/pacman-color
root ALL = (ALL) ALL
USER_NAME ALL = (ALL) ALL, NOPASSWD: WHEELER, NOPASSWD: PROCESSES,
NOPASSWD: ARCHLINUX, NOPASSWD: EDITS
The arch wiki docs are usually very good but the sudo page is
dangerous.
The offered configs suggest adding editors to sudo when sudoedit should
only be added and only to a set file otherwise sudo is basically just
su and without a password in the example so suid all due to the user
being able to edit sudoers or escape the editor.
--
_______________________________________________________________________
'Write programs that do one thing and do it well. Write programs to work
together. Write programs to handle text streams, because that is a
universal interface'
(Doug McIlroy)
_______________________________________________________________________
More information about the arch-general
mailing list