SCIENTIFIC-LINUX-USERS Archives

August 2012

SCIENTIFIC-LINUX-USERS@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Problem with sudo and nsswitch.conf
From:
Akemi Yagi <[log in to unmask]>
Reply To:
Akemi Yagi <[log in to unmask]>
Date:
Wed, 15 Aug 2012 05:14:03 -0700
Content-Type:
text/plain
Parts/Attachments:
text/plain (24 lines) 
On Wed, Aug 15, 2012 at 1:51 AM, Sean Brisbane
<[log in to unmask]> wrote:
> Dear All,
>
> We have recently upgraded to sudo-1.7.2p1-14.el5_8.2.  This upgrade breaks
> our nis setup as it alters nsswitch.conf, but does not reset the permissions
> to world readable:
>
> # Remove the "sudoers:" line from nsswitch.conf if it's not modified
> # and only when we are erasing (not upgrading) the package!
> if [ $1 = 0 ] && grep -q "^sudoers:  files ldap$" "/etc/nsswitch.conf"; then
>    NSSWITCH_TMPFILE=$(mktemp)
>    grep -v "^sudoers:  files ldap$" "/etc/nsswitch.conf" >
> "$NSSWITCH_TMPFILE" && \
>    mv -f "$NSSWITCH_TMPFILE" "/etc/nsswitch.conf"
>    restorecon "/etc/nsswitch.conf"
> fi

This is a known issue and has been fixed in sudo-1.7.2p1-14.el5_8.3 :

https://rhn.redhat.com/errata/RHBA-2012-1160.html

Akemi

ATOM RSS1 RSS2