mir/sudo
2
0
Fork 0
mirror of https://github.com/sudo-project/sudo.git synced 2025-08-29 13:28:10 +00:00
Code Issues Releases Wiki Activity

Add a callback field and use it for runas_default

Browse Source
This commit is contained in:
Todd C. Miller 2004-01-16 23:02:18 +00:00
parent ae1a984afc
commit 487cd96e08
2 changed files with 56 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

55
def_data.c
View File

@ -25,36 +25,47 @@ struct sudo_defs_types sudo_defs_table[] = {
{ {
"syslog", T_LOGFAC|T_BOOL, "syslog", T_LOGFAC|T_BOOL,
"Syslog facility if syslog is being used for logging: %s", "Syslog facility if syslog is being used for logging: %s",
NULL,
}, { }, {
"syslog_goodpri", T_LOGPRI, "syslog_goodpri", T_LOGPRI,
"Syslog priority to use when user authenticates successfully: %s", "Syslog priority to use when user authenticates successfully: %s",
NULL,
}, { }, {
"syslog_badpri", T_LOGPRI, "syslog_badpri", T_LOGPRI,
"Syslog priority to use when user authenticates unsuccessfully: %s", "Syslog priority to use when user authenticates unsuccessfully: %s",
NULL,
}, { }, {
"long_otp_prompt", T_FLAG, "long_otp_prompt", T_FLAG,
"Put OTP prompt on its own line", "Put OTP prompt on its own line",
NULL,
}, { }, {
"ignore_dot", T_FLAG, "ignore_dot", T_FLAG,
"Ignore '.' in $PATH", "Ignore '.' in $PATH",
NULL,
}, { }, {
"mail_always", T_FLAG, "mail_always", T_FLAG,
"Always send mail when sudo is run", "Always send mail when sudo is run",
NULL,
}, { }, {
"mail_badpass", T_FLAG, "mail_badpass", T_FLAG,
"Send mail if user authentication fails", "Send mail if user authentication fails",
NULL,
}, { }, {
"mail_no_user", T_FLAG, "mail_no_user", T_FLAG,
"Send mail if the user is not in sudoers", "Send mail if the user is not in sudoers",
NULL,
}, { }, {
"mail_no_host", T_FLAG, "mail_no_host", T_FLAG,
"Send mail if the user is not in sudoers for this host", "Send mail if the user is not in sudoers for this host",
NULL,
}, { }, {
"mail_no_perms", T_FLAG, "mail_no_perms", T_FLAG,
"Send mail if the user is not allowed to run a command", "Send mail if the user is not allowed to run a command",
NULL,
}, { }, {
"tty_tickets", T_FLAG, "tty_tickets", T_FLAG,
"Use a separate timestamp for each user/tty combo", "Use a separate timestamp for each user/tty combo",
NULL,
}, { }, {
"lecture", T_TUPLE|T_BOOL, "lecture", T_TUPLE|T_BOOL,
"Lecture user the first time they run sudo", "Lecture user the first time they run sudo",
@ -62,117 +73,156 @@ struct sudo_defs_types sudo_defs_table[] = {
}, { }, {
"lecture_file", T_STR|T_PATH|T_BOOL, "lecture_file", T_STR|T_PATH|T_BOOL,
"File containing the sudo lecture: %s", "File containing the sudo lecture: %s",
NULL,
}, { }, {
"authenticate", T_FLAG, "authenticate", T_FLAG,
"Require users to authenticate by default", "Require users to authenticate by default",
NULL,
}, { }, {
"root_sudo", T_FLAG, "root_sudo", T_FLAG,
"Root may run sudo", "Root may run sudo",
NULL,
}, { }, {
"log_host", T_FLAG, "log_host", T_FLAG,
"Log the hostname in the (non-syslog) log file", "Log the hostname in the (non-syslog) log file",
NULL,
}, { }, {
"log_year", T_FLAG, "log_year", T_FLAG,
"Log the year in the (non-syslog) log file", "Log the year in the (non-syslog) log file",
NULL,
}, { }, {
"shell_noargs", T_FLAG, "shell_noargs", T_FLAG,
"If sudo is invoked with no arguments, start a shell", "If sudo is invoked with no arguments, start a shell",
NULL,
}, { }, {
"set_home", T_FLAG, "set_home", T_FLAG,
"Set $HOME to the target user when starting a shell with -s", "Set $HOME to the target user when starting a shell with -s",
NULL,
}, { }, {
"always_set_home", T_FLAG, "always_set_home", T_FLAG,
"Always set $HOME to the target user's home directory", "Always set $HOME to the target user's home directory",
NULL,
}, { }, {
"path_info", T_FLAG, "path_info", T_FLAG,
"Allow some information gathering to give useful error messages", "Allow some information gathering to give useful error messages",
NULL,
}, { }, {
"fqdn", T_FLAG, "fqdn", T_FLAG,
"Require fully-qualified hostnames in the sudoers file", "Require fully-qualified hostnames in the sudoers file",
NULL,
}, { }, {
"insults", T_FLAG, "insults", T_FLAG,
"Insult the user when they enter an incorrect password", "Insult the user when they enter an incorrect password",
NULL,
}, { }, {
"requiretty", T_FLAG, "requiretty", T_FLAG,
"Only allow the user to run sudo if they have a tty", "Only allow the user to run sudo if they have a tty",
NULL,
}, { }, {
"env_editor", T_FLAG, "env_editor", T_FLAG,
"Visudo will honor the EDITOR environment variable", "Visudo will honor the EDITOR environment variable",
NULL,
}, { }, {
"rootpw", T_FLAG, "rootpw", T_FLAG,
"Prompt for root's password, not the users's", "Prompt for root's password, not the users's",
NULL,
}, { }, {
"runaspw", T_FLAG, "runaspw", T_FLAG,
"Prompt for the runas_default user's password, not the users's", "Prompt for the runas_default user's password, not the users's",
NULL,
}, { }, {
"targetpw", T_FLAG, "targetpw", T_FLAG,
"Prompt for the target user's password, not the users's", "Prompt for the target user's password, not the users's",
NULL,
}, { }, {
"use_loginclass", T_FLAG, "use_loginclass", T_FLAG,
"Apply defaults in the target user's login class if there is one", "Apply defaults in the target user's login class if there is one",
NULL,
}, { }, {
"set_logname", T_FLAG, "set_logname", T_FLAG,
"Set the LOGNAME and USER environment variables", "Set the LOGNAME and USER environment variables",
NULL,
}, { }, {
"stay_setuid", T_FLAG, "stay_setuid", T_FLAG,
"Only set the effective uid to the target user, not the real uid", "Only set the effective uid to the target user, not the real uid",
NULL,
}, { }, {
"env_reset", T_FLAG, "env_reset", T_FLAG,
"Reset the environment to a default set of variables", "Reset the environment to a default set of variables",
NULL,
}, { }, {
"preserve_groups", T_FLAG, "preserve_groups", T_FLAG,
"Don't initialize the group vector to that of the target user", "Don't initialize the group vector to that of the target user",
NULL,
}, { }, {
"loglinelen", T_UINT|T_BOOL, "loglinelen", T_UINT|T_BOOL,
"Length at which to wrap log file lines (0 for no wrap): %d", "Length at which to wrap log file lines (0 for no wrap): %d",
NULL,
}, { }, {
"timestamp_timeout", T_INT|T_BOOL, "timestamp_timeout", T_INT|T_BOOL,
"Authentication timestamp timeout: %d minutes", "Authentication timestamp timeout: %d minutes",
NULL,
}, { }, {
"passwd_timeout", T_UINT|T_BOOL, "passwd_timeout", T_UINT|T_BOOL,
"Password prompt timeout: %d minutes", "Password prompt timeout: %d minutes",
NULL,
}, { }, {
"passwd_tries", T_UINT, "passwd_tries", T_UINT,
"Number of tries to enter a password: %d", "Number of tries to enter a password: %d",
NULL,
}, { }, {
"umask", T_MODE|T_BOOL, "umask", T_MODE|T_BOOL,
"Umask to use or 0777 to use user's: 0%o", "Umask to use or 0777 to use user's: 0%o",
NULL,
}, { }, {
"logfile", T_STR|T_BOOL|T_PATH, "logfile", T_STR|T_BOOL|T_PATH,
"Path to log file: %s", "Path to log file: %s",
NULL,
}, { }, {
"mailerpath", T_STR|T_BOOL|T_PATH, "mailerpath", T_STR|T_BOOL|T_PATH,
"Path to mail program: %s", "Path to mail program: %s",
NULL,
}, { }, {
"mailerflags", T_STR|T_BOOL, "mailerflags", T_STR|T_BOOL,
"Flags for mail program: %s", "Flags for mail program: %s",
NULL,
}, { }, {
"mailto", T_STR|T_BOOL, "mailto", T_STR|T_BOOL,
"Address to send mail to: %s", "Address to send mail to: %s",
NULL,
}, { }, {
"mailsub", T_STR, "mailsub", T_STR,
"Subject line for mail messages: %s", "Subject line for mail messages: %s",
NULL,
}, { }, {
"badpass_message", T_STR, "badpass_message", T_STR,
"Incorrect password message: %s", "Incorrect password message: %s",
NULL,
}, { }, {
"timestampdir", T_STR|T_PATH, "timestampdir", T_STR|T_PATH,
"Path to authentication timestamp dir: %s", "Path to authentication timestamp dir: %s",
NULL,
}, { }, {
"timestampowner", T_STR, "timestampowner", T_STR,
"Owner of the authentication timestamp dir: %s", "Owner of the authentication timestamp dir: %s",
NULL,
}, { }, {
"exempt_group", T_STR|T_BOOL, "exempt_group", T_STR|T_BOOL,
"Users in this group are exempt from password and PATH requirements: %s", "Users in this group are exempt from password and PATH requirements: %s",
NULL,
}, { }, {
"passprompt", T_STR, "passprompt", T_STR,
"Default password prompt: %s", "Default password prompt: %s",
NULL,
}, { }, {
"runas_default", T_STR, "runas_default", T_STR,
"Default user to run commands as: %s", "Default user to run commands as: %s",
NULL,
set_runaspw,
}, { }, {
"editor", T_STR|T_PATH, "editor", T_STR|T_PATH,
"Path to the editor for use by visudo: %s", "Path to the editor for use by visudo: %s",
NULL,
}, { }, {
"listpw", T_TUPLE|T_BOOL, "listpw", T_TUPLE|T_BOOL,
"When to require a password for 'list' pseudocommand: %s", "When to require a password for 'list' pseudocommand: %s",
@ -184,18 +234,23 @@ struct sudo_defs_types sudo_defs_table[] = {
}, { }, {
"noexec", T_FLAG, "noexec", T_FLAG,
"Preload the dummy execve() function contained in 'noexec_file'", "Preload the dummy execve() function contained in 'noexec_file'",
NULL,
}, { }, {
"noexec_file", T_STR|T_PATH, "noexec_file", T_STR|T_PATH,
"File containing a dummy execve() function: %s", "File containing a dummy execve() function: %s",
NULL,
}, { }, {
"env_check", T_LIST|T_BOOL, "env_check", T_LIST|T_BOOL,
"Environment variables to check for sanity:", "Environment variables to check for sanity:",
NULL,
}, { }, {
"env_delete", T_LIST|T_BOOL, "env_delete", T_LIST|T_BOOL,
"Environment variables to remove:", "Environment variables to remove:",
NULL,
}, { }, {
"env_keep", T_LIST|T_BOOL, "env_keep", T_LIST|T_BOOL,
"Environment variables to preserve:", "Environment variables to preserve:",
NULL,
}, { }, {
NULL, 0, NULL NULL, 0, NULL
} }

1
def_data.in
View File

@ -155,6 +155,7 @@ passprompt
runas_default runas_default
T_STR T_STR
"Default user to run commands as: %s" "Default user to run commands as: %s"
*set_runaspw
editor editor
T_STR|T_PATH T_STR|T_PATH
"Path to the editor for use by visudo: %s" "Path to the editor for use by visudo: %s"