-As of Debian version 1.7.2p1-1, the default /etc/sudoers file created on
-installation of the package now includes the directive:
-
- #includedir /etc/sudoers.d
-
-This will cause sudo to read and parse any files in the /etc/sudoers.d
-directory that do not end in '~' or contain a '.' character.
-
-Note that because the sudoers file is not a 'conffile' in the Debian sense,
-and sudoers contents can very widely, no attempt is made to add this directive
-to existing sudoers files on upgrade. Feel free to add the above directive
-to the end of your /etc/sudoers file to enable this functionality for existing
-installations if you wish!
-
- - - - - -
-
The version of sudo that ships with Debian by default resets the
environment, as described by the "env_reset" flag in the sudoers file.
This implies that all environment variables are removed, except for
-HOME, LOGNAME, PATH, SHELL, TERM, DISPLAY, XAUTHORITY, XAUTHORIZATION,
-XAPPLRESDIR, XFILESEARCHPATH, XUSERFILESEARCHPATH, LANG, LANGUAGE, LC_*,
-and USER.
+LOGNAME, PATH, SHELL, TERM, DISPLAY, XAUTHORITY, XAUTHORIZATION, XAPPLRESDIR,
+XFILESEARCHPATH, XUSERFILESEARCHPATH, LANG, LANGUAGE, LC_*, and USER.
In case you want sudo to preserve more environment variables, you must
specify the env_keep variable in the sudoers file. You should edit the
- - - - -
+As of version 1.7, sudo-ldap now requires the LDAP source to be specified
+in /etc/nsswitch.conf with a line like:
+
+ sudoers: ldap
+
+ - - - - -
+
See the file OPTIONS in this directory for more information on the sudo
build options used in building the Debian package.