sudoers conf
This commit is contained in:
parent
d873cbcc21
commit
1b16c79148
|
@ -67,3 +67,8 @@ Allow sshd to listen on the non-default TCP port 4242:
|
|||
```bash
|
||||
semanage port --add -t ssh_port_t -p tcp 4242
|
||||
```
|
||||
|
||||
### sudo
|
||||
|
||||
Add the provided [sudoers policy file](rootfs/etc/sudoers.d/Born2beroot) in
|
||||
`/etc/sudoers.d`.
|
||||
|
|
7
rootfs/etc/sudoers.d/Born2beroot
Normal file
7
rootfs/etc/sudoers.d/Born2beroot
Normal file
|
@ -0,0 +1,7 @@
|
|||
Defaults log_input, log_output, requiretty
|
||||
Defaults iolog_dir = /var/log/sudo/io/%{user}
|
||||
Defaults iolog_file = %{runas_user}-%{command}-XXXXXX
|
||||
Defaults logfile=/var/log/sudo/sudo.log
|
||||
Defaults badpass_message = Nope...
|
||||
|
||||
%sudo ALL=(ALL) ALL
|
Loading…
Reference in a new issue