1 The version of sudo that ships with Debian by default resets the
2 environment, as described by the "env_reset" flag in the sudoers file.
4 This implies that all environment variables are removed, except for
5 HOME, LOGNAME, PATH, SHELL, TERM, DISPLAY, XAUTHORITY, XAUTHORIZATION,
6 XAPPLRESDIR, XFILESEARCHPATH, XUSERFILESEARCHPATH, LANG, LANGUAGE, LC_*,
9 In case you want sudo to preserve more environment variables, you must
10 specify the env_keep variable in the sudoers file. You should edit the
11 sudoers file using the visudo tool.
14 Preserve the default variables plus the EDITOR variable:
16 Defaults env_keep+="EDITOR"
18 Preserve the default variables plus all variables starting with LC_:
20 Defaults env_keep+="LC_*"
24 If you're using the sudo-ldap package, note that it is now configured to
25 look for /etc/sudo-ldap.conf. Depending on your system configuration, it
26 probably makes sense for this to be a symlink to /etc/ldap.conf, or perhaps
27 to /etc/libnss-ldap.conf or /etc/pam_ldap.conf. By default, no symlink or
28 file is provided, you'll need to decide what to do and create a suitable
29 file before sudo-ldap will work.
33 As of version 1.7, sudo-ldap now requires the LDAP source to be specified
34 in /etc/nsswitch.conf with a line like:
40 See the file OPTIONS in this directory for more information on the sudo
41 build options used in building the Debian package.
45 If you're having trouble grasping the fundamental idea of what sudo is all
46 about, here's a succinct and humorous take on it...
48 http://www.xkcd.com/c149.html
52 If you choose to run with the RAMRUN option set in /etc/default/rcS, you may
53 grow weary of being lectured after each reboot. If so, adding 'lecture never'
54 to sudoers may make you happier. See the sudoers(5) man page for more info.
projects / debian / sudo / blob