2
0
mirror of https://github.com/sudo-project/sudo.git synced 2025-08-31 06:15:37 +00:00

Mention HP-UX pam.conf settings.

This commit is contained in:
Todd C. Miller
2012-09-28 09:05:31 -04:00
parent 0fa33ccf0f
commit acb9c62987

View File

@@ -67,7 +67,7 @@ A) Make sure you have an entry in your syslog.conf file to save
its conf file. Also, remember that syslogd does *not* create
log files, you need to create the file before syslogd will log
to it (ie: touch /var/log/sudo).
Note: the facility (e.g. "auth.debug") must be separated from the
Note: the facility (e.g. "auth.debug") must be separated from the
destination (e.g. "/var/log/auth" or "@loghost") by
tabs, *not* spaces. This is a common error.
@@ -240,6 +240,18 @@ A) On systems that use a Mozilla-derived LDAP SDK there must be a
Enter new password: <return>
Re-enter password: <return>
Q) On HP-UX, when I run command via sudo it displays information
about the last successful login and last authentication failure
for every command. How can I fix this?
A) This output comes from /usr/lib/security/libpam_hpsec.so.1.
To suppress it, add a line like the following to /etc/pam.conf:
sudo session required libpam_hpsec.so.1 bypass_umask bypass_last_login
Q) On HP-UX, the umask setting in sudoers has no effect.
A) If your /etc/pam.conf file has the libpam_hpsec.so.1 session module
enabled, you may need to a add line like the following to pam.conf:
sudo session required libpam_hpsec.so.1 bypass_umask
Q) When I run sudo on AIX I get the following error:
setuidx(ID_EFFECTIVE|ID_REAL|ID_SAVED, ROOT_UID): Operation not permitted.
A) AIX's Enhanced RBAC is preventing sudo from running. To fix