[sudo-workers] sudoers_* ldap keywords

Todd C. Miller Todd.Miller at courtesan.com
Tue Nov 29 20:19:36 EST 2011


On Tue, 29 Nov 2011 19:48:57 EST, Stephen Gallagher wrote:

> Well, just to amend to this, the fact that nslcd.conf has multiple
> consumers is a bug in itself - one that we're working to eliminate with
> SSSD by producing plugins for talking to sudo, automount, openssh-lpk
> and similar services.
> 
> It really is an abuse of another application's configuration. Just
> because it happens to be there doesn't necessarily mean it's correct for
> your application either.

You can specify the path to ldap.conf that sudo will use at configure
time.  Some distros (such as Debian) use /etc/sudo-ldap.conf to
avoid such problems.

 - todd



More information about the sudo-workers mailing list