5 unlink ("/etc/alternatives/sudo") if ( -l "/etc/alternatives/sudo");
7 # make sure we have a sudoers file
8 if ( ! -f "/etc/sudoers") {
10 print "No /etc/sudoers found... creating one for you.\n";
12 open (SUDOERS, "> /etc/sudoers");
13 print SUDOERS "# /etc/sudoers\n",
15 "# This file MUST be edited with the 'visudo' command as root.\n",
17 "# See the man page for details on how to write a sudoers file.\n",
18 "#\n\nDefaults\tenv_reset\n\n",
19 "# Host alias specification\n\n",
20 "# User alias specification\n\n",
21 "# Cmnd alias specification\n\n",
22 "# User privilege specification\nroot\tALL=(ALL) ALL\n\n",
23 "# Allow members of group sudo to execute any command\n",
24 "# (Note that later entries override this, so you might need to move\n",
25 "# it further down)\n",
26 "%sudo ALL=(ALL) ALL\n",
28 "#includedir /etc/sudoers.d\n";
33 # handle state directory transition from /var/run/sudo to /var/lib/sudo,
34 # moving any existing content over to avoid re-lecturing existing users
35 if ( -d "/var/run/sudo") {
36 system ('mkdir -p /var/lib/sudo');
37 system ('(cd /var/run/sudo ; tar cf - .) | (cd /var/lib/sudo ; tar xf -)');
38 system ('rm -rf /var/run/sudo');
41 # make sure sudoers has the correct permissions and owner/group
42 system ('chown root:root /etc/sudoers');
43 system ('chmod 440 /etc/sudoers');
45 # must do a remove first to un-do the "bad" links created by previous version
46 system ('update-rc.d -f sudo remove >/dev/null 2>&1');
48 system ('update-rc.d sudo start 75 2 3 4 5 . >/dev/null');
50 # create symlink to ease transition to new path for ldap config
51 # if old config file exists and new one doesn't
52 if (-e "/etc/ldap/ldap.conf" && ! -e "/etc/sudo-ldap.conf") {
53 system("ln -s ldap/ldap.conf /etc/sudo-ldap.conf");
56 # make sure we have a sudo group
58 exit 0 if getgrnam("sudo"); # we're finished if there is a group sudo
60 $gid = 27; # start searcg with gid 27
62 while (getgrgid($gid)) {
68 print "On Debian we normally use gid 27 for 'sudo'.\n";
69 $gname = getgrgid(27);
70 print "However, on your system gid 27 is group '$gname'.\n\n";
71 print "Would you like me to stop configuring sudo so that you can change this? [n] ";
73 if ($ans =~ m/^[yY].*/) {
74 print "'dpkg --pending --configure' will restart the configuration.\n\n\n";
79 print "Creating group 'sudo' with gid = $gid\n";
80 system("groupadd -g $gid sudo");