[sudo-workers] broken parsing of #includedir with sudo-1.8.5

Mike Frysinger vapier at gentoo.org
Thu May 17 15:34:59 EDT 2012

On Thursday 17 May 2012 15:18:14 Mike Frysinger wrote:
> however, that leads us to another bug: files with bad perms inside of
> included dirs no longer get warned.  so with sudo-1.8.4, i can do:
> # touch /etc/sudoers.d/f
> # chmod 644 /etc/sudoers.d/f
> # chown 0:0 /etc/sudoers.d/f
> # sudo true
> sudo: /etc/sudoers.d/f is mode 0644, should be 0440
> but now with 1.8.5 (and the fix above), i get no warning:
> # sudo true

Diego pointed out i should have read the NEWS file where this is intended 
behavior.  if i chmod to 777, i still get a warning.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/sudo-workers/attachments/20120517/ff7fe6f1/attachment.bin>

More information about the sudo-workers mailing list