sudoers nopasswd screwiness
craigwhite at azapple.com
Sat Dec 10 02:08:27 UTC 2011
On Fri, 2011-12-09 at 14:06 +0200, Marius Gedminas wrote:
> On Thu, Dec 08, 2011 at 08:15:59PM -0700, Craig White wrote:
> > It's just 2 particular Ubuntu 10.04 that exhibit this problem though I
> > am running many others (Ubuntu 10.04) whose LDAP/NSS/PAM are all
> > completely identical which is assured by puppet. Since /etc/sudoers
> > and /etc/sudoers.d are also propagated by puppet, I know that they're
> > identical (not that I didn't check by copying them to a working server
> > and running diff on them as well as the entire /etc/pam.d directory).
> Can you check the permissions of the files and directories
> like /etc/sudoers.d as well?
I did before I checked the list but puppet asserts the permissions
of /etc/sudoers & /etc/sudoers.d/user and they are indeed 0440
> Is the version of sudo the same on all machines?
it is - they are all 10.04 and the same pkg version
> (Just scraping the bottom of the barrel for suggestions, since I've no
> idea why the same sudoers configuration would act differently on
> different machines.)
sort of where I am at this point and in the meantime, I've copied the
lines from /etc/sudoers.d/user into /etc/sudoers and commented them
in /etc/sudoers.d/user (apparently sudo is very unhappy to have
identical rules) and I'm at least function but still scratching my head.
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the ubuntu-users