Question about Replication of the /etc/sudoers

Aaron Spangler as at
Thu May 27 20:33:42 EDT 2004

If you have an LDAP server (such as Active Directory, or iPlanet or
NDS/eDirectory) you might consider storing your /etc/sudoers in LDAP.  Then
you make one mod to LDAP and all servers are instantly updated.  (Even if
the systems are all standalone)

The LDAP version is available in the latest sudo beta (1.6.8b1 or 1.6.8b2).
You can find this on the web page under beta versions.  It
takes a little work to get it setup.  (You have to add some schema
extensions to the ldap server) but once it is all in place, then sudo
becomes centralized!


----- Original Message ----- 
From: "Danny Bendersky" <dbenders at>
To: <sudo-users at>
Sent: Thursday, May 27, 2004 1:01 PM
Subject: Question about Replication of the /etc/sudoers

> Hi,
> Last few days I started to use sudo in order to do things as root
> without using the root password. The problem that I have is that I have
> about 35 Servers and I want to replicate the /etc/sudoers in all the
> servers to have exactly the same privilegies in each server.
> The way i configure all the servers is having a central server that
> serve CVS and RSYNC, so all the configurations, including the
> "/etc/sudoers" file I upload ti the CVS Server, and then each server
> get the file using RSYNC.
> Then, when I try to use the sudo, it claims that the "/etc/sudoers" is
> corrupt. I just edit the file locally with VI doing nothing more than
> delete any coment line, and then the sudo works.
> Any idea why the replication fails? any suggestion to implement this?
> I apreciate  any TIP/HELP.
> -- 
> Saludos....
> Daniel Bendersky.
> ------------------------------------------------------------------
> Daniel Bendersky              Director de Operaciones y Tecnología
> dbenders at                
> NETLINE                                Av. Vitacura # 2939 of. 202
> Oficina   : +56 2 751 2600            Las Condes, Santiago - CHILE
> Celular   : +56 9 998 9122               Fax2mail : +56 2 751 2651
> Voice2mail: +56 2 751 2618
>             "Success is a journey, not a destination"
> ------------------------------------------------------------------
> ____________________________________________________________
> sudo-users mailing list <sudo-users at>
> For list information, options, or to unsubscribe, visit:

More information about the sudo-users mailing list