Currently sudoers are either enumerated locally in /etc/sudoers or via ldap, in which case the local file is ignored: both are needed
Registered by
Patrick Goetz
Currently, one can install either sudo or sudo-ldap; these packages replace each other. When using sudo, sudoers are enumerated in the file /etc/sudoers and the ldap sudoers ou is ignored, while when using sudo-ldap, the sudoers are identified by the ldap sudoers ou and the local /etc/sudoers file is ignored. Sudo should use /etc/nsswitch.conf so that both local and network sudoers can be specified on the same machine. It shouldn't be hard to see why this is both useful and necessary, since it's frequently the case that someone might be given limited root privileges on a particular set of workstations (possibly only their own) while network administrators continue to have sudo privileges on all machines on the network.
Blueprint information
- Status:
- Not started
- Approver:
- None
- Priority:
- Undefined
- Drafter:
- None
- Direction:
- Needs approval
- Assignee:
- None
- Definition:
- New
- Series goal:
- None
- Implementation:
- Unknown
- Milestone target:
- None
- Started by
- Completed by
Related branches
Related bugs
Sprints
Whiteboard
(?)