[sudo-users] sudo+ldap ignores env_keep

Chris lists at deksai.com
Tue Aug 11 13:08:52 EDT 2009

I've been playing with ldap and sudo, but I can't seem to make env_keep
actually keep anything.

Using syntax that I see come from the sudoers2ldap script, I would add
something like:
sudoOption: env_keep += "SSH_AUTH_SOCK"

but this gives the error "sudo: unknown defaults entry `env_keep '
referenced near line 1"

It looks like it may be unhappy about the space after the name?

If I change it to something like
sudoOption: env_keep+=SSH_AUTH_SOCK
sudoOption: env_keep+="SSH_AUTH_SOCK"

I get no error, but it does nothing.

Are there some strange quirks with syntax that I am missing?  Is there
some other rule that env_keep is dependent on other than env_reset?

I'm using version 1.7.2p1.


More information about the sudo-users mailing list