Re: [gentoo-user] Update to /etc/sudoers disables wheel users!!!

Wed, 26 Oct 2022 11:05:05 -0700

Indeed, an intersting question, which you actually already answered yourself. I just tested it myself: 

   $ visudo -f /etc/sudoers.d/00-wheel
        %wheel ALL=(ALL) ALL

   $ sudo --list
        User ramon may run the following commands on <some_hostname>:
            (ALL) ALL

   $ sudo -f /etc/sudoers.d/00-wheel
        # negate the entry
        !wheel ALL=(ALL) ALL

   $ sudo --list
        User ramon may run the following commands on <some_hostname>:
            Entry is gone

-Ramon

On 26/10/2022 18:52, Grant Taylor wrote:
What are end users / systems administrators to do if the default file has something like the following enabled in the default /etc/sudoers file and the EUs / SAs want it to not be there? 

   %wheel ALL=(ALL:ALL) ALL
They have no choice but to change (edit / replace) the /etc/sudoers file. 

--
GPG public key: 5983 98DA 5F4D A464 38FD CF87 155B E264 13E6 99BF

Attachment: OpenPGP_0x155BE26413E699BF.asc
Description: OpenPGP public key

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

Reply via email to