On 11/2/23 06:43, Otto Hollmann wrote:
Existing TW installations will be migrated only for users with unmodified /etc/sudoers. Unmodified /etc/sudoers file will be removed and replaced with /usr/etc/sudoers.
However if you have modified /etc/sudoers it will *NOT* be migrated. The new file /usr/etc/sudoers will be installed, but as mentioned earlier, it will have no effect because it is overwritten by your /etc/sudoers.
@includedir /usr/etc/sudoers.d
So users who modified /etc/sudoers file need to remove it (if it's safe) or at least add line if they want to use our new packages.
Otto
On Tue, 2023-10-31 at 11:12 -0400, Joe Salmeri wrote:
On 10/31/23 07:01, Otto Hollmann wrote:
Thank you for questions.
Sudo will use the first file it found. So if /etc/sudoers file exists, /usr/etc/sudoers file will be ignored.
However this does not apply for included files. At the end of sudoers file we have the following lines: @includedir /usr/etc/sudoers.d @includedir /etc/sudoers.d So by default we will read from both locations.
This also corresponds with our recommendation (guids written by our doc team) to don't modify directly sudoers file but rather create your own file(s) in /etc/sudoers.d. If it's done this way, host-specific configuration files can coexist together with our distribution provided files.
Do we still have a problem or is this an acceptable solution?
Otto
Hi Otto,
Will existing TW installs be migrated to this or do we have to do it manually ?
For example, if a system has not modified /etc/sudoers ( the current location the install creates it ) when TW is updated to the build that includes this change will that file be removed since it was not overridden letting the system use the default in the new default location of /usr/etc/sudoers ?
Regards,
Joe
Hi Otto, In my question, I asked if an /etc/sudoers that was not modified would be removed. When is this change ocurring ? I just updated to 20231031 and I still have my unmomdified /etc/sudoers and there is no /usr/etc/sudoers -- Regards, Joe