[sudo-users] Disallow User switching in Group
Patrik Peng
patrik.peng at hostpoint.ch
Tue Nov 16 08:06:19 MST 2021
On 16.11.21 15:34, Todd C. Miller wrote:
> %sudo-iolog ALL=(:) SETENV: NOPASSWD: LOG_INPUT: LOG_OUTPUT: /bin/bash, /usr/bin/bash, /usr/local/bin/bash
>
> should do the trick. An empty RunasUser will match the invoking
> user. An empty set of parentheses should also work. You can verify
> this by running "sudo -l" as that user. The output will expand the
> empty RunasUser to the user's login name.
>
> - todd
Hi Todd
Thanks for the swift response. This was exactly what I was looking for,
very nice.
Thanks a lot
Patrik
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://www.sudo.ws/pipermail/sudo-users/attachments/20211116/bf6429c6/attachment.bin>
More information about the sudo-users
mailing list