Tamas Papp tompos at
Fri May 16 08:23:09 UTC 2014

On 05/16/2014 09:19 AM, Andrea Corbellini wrote:
> Actually, you are supposed to create a new file in /etc/sudoers.d for
> custom rules. You shouldn't edit /etc/sudoers directly; this will
> ensure that package upgrades can happen without asking you any
> question about the changes you made to that file.

If you edit sudoers via visudo there is a syntax checking.
If you do something wrong in /etc/sudoers.d/a, there is no syntax
checking and the your user gets locked out:

$ sudo -i
>>> /etc/sudoers.d/a: syntax error near line 1 <<<
sudo: parse error in /etc/sudoers.d/a near line 1
sudo: no valid sudoers sources found, quitting
sudo: unable to initialize policy plugin


More information about the Ubuntu-devel-discuss mailing list