[sudo-users] Detecting unused rules

[Thomas Mueller]

Hi all

I just thought a bit about how to detect sudo rules not used (or never
used at all) to cleanup the configured rules. My conclusion is that i
would need some sort of unique rule id to match sudo logs with defined
rules. I tried to google what others do - but my googlefoo failed. :)

Is anybody matching defined rules with effectively used ones to detect
unused rules and if yes, how do you do this now?

- Thomas