Sudo and supplemental group memberships

Todd C. Miller Todd.Miller at
Thu Nov 15 14:40:01 EST 2001

In message <Pine.LNX.4.33.0111150911010.9723-100000 at>
	so spake TJ Saunders (tj):

> I would assume that sudo would always set the credentials of the process
> to the user's UID and primary and supplemental GIDs, no matter which user.
> That user root is handled as an exception, differently than other users,
> is a little obscure and potentially confusing.

Because root can already do anything.  The only exception to this
is NFS with root mapped to uid -2.

 - todd

More information about the sudo-workers mailing list