mir/sudo
2
0
Fork 0
mirror of https://github.com/sudo-project/sudo.git synced 2025-08-28 21:07:55 +00:00
Code Issues Releases Wiki Activity

Document that sudoers will re-use existing I/O log paths unless

Browse Source 
they are mktemp-style with trailing X's.
This commit is contained in:
Todd C. Miller 2013-04-25 15:11:06 -04:00
parent fa6c857112
commit 7c9aaa2f2f
3 changed files with 48 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
doc/sudoers.cat
View File

@ -1337,6 +1337,11 @@ SSUUDDOOEERRSS OOPPTTIIOONNSS
unique combination of digits and letters, similar to unique combination of digits and letters, similar to
the mktemp(3) function. the mktemp(3) function.
If the path created by concatenating _i_o_l_o_g___d_i_r and
_i_o_l_o_g___f_i_l_e already exists, the existing I/O log file
will be truncated and overwritten unless _i_o_l_o_g___f_i_l_e
ends in six or more Xs.
limitprivs The default Solaris limit privileges to use when limitprivs The default Solaris limit privileges to use when
constructing a new privilege set for a command. This constructing a new privilege set for a command. This
bounds all privileges of the executing process. The bounds all privileges of the executing process. The
@ -1358,6 +1363,11 @@ SSUUDDOOEERRSS OOPPTTIIOONNSS
truncated to 2176782336. The default value is truncated to 2176782336. The default value is
2176782336. 2176782336.
Once the local sequence number reaches the value of
_m_a_x_s_e_q, it will ``roll over'' to zero, after which
ssuuddooeerrss will truncate and re-use any existing I/O log
pathnames.
This setting is only supported by version 1.8.7 or This setting is only supported by version 1.8.7 or
higher. higher.

19
doc/sudoers.man.in
View File

@ -2782,6 +2782,17 @@ will have the
replaced with a unique combination of digits and letters, similar to the replaced with a unique combination of digits and letters, similar to the
mktemp(3) mktemp(3)
function. function.
.sp
If the path created by concatenating
\fIiolog_dir\fR
and
\fIiolog_file\fR
already exists, the existing I/O log file will be truncated and
overwritten unless
\fIiolog_file\fR
ends in six or
more
\fRX\fRs.
.PD .PD
.TP 18n .TP 18n
limitprivs limitprivs
@ -2821,6 +2832,14 @@ base 36 sequence number
will be silently truncated to 2176782336. will be silently truncated to 2176782336.
The default value is 2176782336. The default value is 2176782336.
.sp .sp
Once the local sequence number reaches the value of
\fImaxseq\fR,
it will
``roll over''
to zero, after which
\fBsudoers\fR
will truncate and re-use any existing I/O log pathnames.
.sp
This setting is only supported by version 1.8.7 or higher. This setting is only supported by version 1.8.7 or higher.
.TP 18n .TP 18n
noexec_file noexec_file

19
doc/sudoers.mdoc.in
View File

@ -2598,6 +2598,17 @@ will have the
replaced with a unique combination of digits and letters, similar to the replaced with a unique combination of digits and letters, similar to the
.Xr mktemp 3 .Xr mktemp 3
function. function.
.Pp
If the path created by concatenating
.Em iolog_dir
and
.Em iolog_file
already exists, the existing I/O log file will be truncated and
overwritten unless
.Em iolog_file
ends in six or
more
.Li X Ns No s .
.It limitprivs .It limitprivs
The default Solaris limit privileges to use when constructing a new The default Solaris limit privileges to use when constructing a new
privilege set for a command. privilege set for a command.
@ -2633,6 +2644,14 @@ base 36 sequence number
will be silently truncated to 2176782336. will be silently truncated to 2176782336.
The default value is 2176782336. The default value is 2176782336.
.Pp .Pp
Once the local sequence number reaches the value of
.Em maxseq ,
it will
.Dq roll over
to zero, after which
.Nm sudoers
will truncate and re-use any existing I/O log pathnames.
.Pp
This setting is only supported by version 1.8.7 or higher. This setting is only supported by version 1.8.7 or higher.
.It noexec_file .It noexec_file
As of As of