After some discussion on IRC, this problem occurs when log_input and
log_output are provided as modifications to the standard sudoers
configuration.
Its possible to exclude this default from certain users using:
Defaults:nova !log_input,!log_output
so I think this is a better solution for installations wishing to
provide full audit of user accounts use of sudo, but exclude sudo calls
from system accounts such as neutron and nova.
This can be applied either in sudoers.d (in a new file, not the package
provided one) or in /etc/sudoers itself.
I'm going to mark this bug as a Won't Fix - we should assume minimal
configuration defaults as part of the packaging, and let end-users
tailor their sudo configuration as required.
** Changed in: cinder (Ubuntu)
Status: Triaged => Won't Fix
** Changed in: neutron (Ubuntu)
Status: Triaged => Won't Fix
** Changed in: nova (Ubuntu)
Status: Triaged => Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1564812
Title:
Disable sudo io logging for rootwrap
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cinder/+bug/1564812/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
