mir/sudo
2
0
Fork 0
mirror of https://github.com/sudo-project/sudo.git synced 2025-08-31 06:15:37 +00:00
Code Issues Releases Wiki Activity

Add sudoers option to perform authentication even in non-interative mode.

Browse Source 
If noninteractive_auth is set, authentication methods that do not
require input from the user's terminal may proceed.  It is off by
default, which restores the pre-1.9.9 behavior of "sudo -n".
This commit is contained in:
Todd C. Miller
2022-02-01 20:08:26 -07:00
parent 6564f1ae4c
commit 85fef8b50f
7 changed files with 53 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
docs/sudoers.man.in
View File

@@ -25,7 +25,7 @@
.nr BA @BAMAN@
.nr LC @LCMAN@
.nr PS @PSMAN@
.TH "SUDOERS" "@mansectform@" "January 27, 2022" "Sudo @PACKAGE_VERSION@" "File Formats Manual"
.TH "SUDOERS" "@mansectform@" "February 1, 2022" "Sudo @PACKAGE_VERSION@" "File Formats Manual"
.nh
.if n .ad l
.SH "NAME"
@@ -3251,6 +3251,23 @@ This flag is
\fIoff\fR
by default.
.TP 18n
noninteractive_auth
If set, authentication will be attempted even in non-interactive mode
(when
\fBsudo\fR's
\fB\-n\fR
option is specified).
This allows authentication methods that don't require user interaction
to succeed.
Authentication methods that require input from the user's terminal
will still fail.
If disabled, authentication will not be attempted in non-interactive mode.
This flag is
\fIoff\fR
by default.
.sp
This setting is only supported by version 1.9.10 or higher.
.TP 18n
pam_acct_mgmt
On systems that use PAM for authentication,
\fBsudo\fR

18
docs/sudoers.mdoc.in
View File

@@ -24,7 +24,7 @@
.nr BA @BAMAN@
.nr LC @LCMAN@
.nr PS @PSMAN@
.Dd January 27, 2022
.Dd February 1, 2022
.Dt SUDOERS @mansectform@
.Os Sudo @PACKAGE_VERSION@
.Sh NAME
@@ -3063,6 +3063,22 @@ section at the end of this manual.
This flag is
.Em off
by default.
.It noninteractive_auth
If set, authentication will be attempted even in non-interactive mode
(when
.Nm sudo Ns 's
.Fl n
option is specified).
This allows authentication methods that don't require user interaction
to succeed.
Authentication methods that require input from the user's terminal
will still fail.
If disabled, authentication will not be attempted in non-interactive mode.
This flag is
.Em off
by default.
.Pp
This setting is only supported by version 1.9.10 or higher.
.It pam_acct_mgmt
On systems that use PAM for authentication,
.Nm sudo