[sudo-users] sudo-users Digest, Vol 223, Issue 2

Grant Taylor gtaylor at tnetconsulting.net
Thu Oct 6 12:45:36 MDT 2022

On 10/6/22 12:34 PM, Greg Gerke wrote:
> Such a thing isn't permitted here on the off chance that 
> somebody, somehow comes along and creates something like a 
> /etc/sudoers.d/cmds_for_miscreants file. In that case, if it were 
> created and chmod/chown were right, the commands would get sucked 
> in always.

Okay.  So your pain is your organizations' making.  Been there.  Done 
that.  Moving on.

> So instead there's a series of:
> #include /etc/sudoers.d/app_cmds1
> #include /etc/sudoers.d/app_cmds2
> #include /etc/sudoers.d/app_cmds3
> etc, etc

I have no idea if it would work or not, but what happens if you include 
one file that includes the other files.

Does visudo recursively edit all the #include files?  Even those in 
another file?

Grant. . . .
unix || die

More information about the sudo-users mailing list