From 48a84868d7dc224de7b42d8d6cd7707f2f60474d Mon Sep 17 00:00:00 2001
From: Bdale Garbee <bdale@gag.com>
Date: Mon, 31 Aug 2009 12:08:29 -0600
Subject: [PATCH] add support for /etc/sudoers.d

---
 debian/changelog          | 7 +++++++
 debian/sudo-ldap.postinst | 6 ++++--
 debian/sudo.postinst      | 4 +++-
 3 files changed, 14 insertions(+), 3 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index 1582d67..b0dedc1 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+sudo (1.7.2-3) UNRELEASED; urgency=low
+
+  * add support for /etc/sudoers.d using #includedir in default sudoers, 
+    closes: #539994
+
+ -- Bdale Garbee <bdale@gag.com>  Mon, 31 Aug 2009 12:08:04 -0600
+
 sudo (1.7.2-2) unstable; urgency=low
 
   * further improve initial sudoers to not include the NOPASSWD option on 
diff --git a/debian/sudo-ldap.postinst b/debian/sudo-ldap.postinst
index 5145cc9..9dea6d7 100644
--- a/debian/sudo-ldap.postinst
+++ b/debian/sudo-ldap.postinst
@@ -23,7 +23,9 @@ if ( ! -f "/etc/sudoers") {
 	  "# Allow members of group sudo to not need a password\n",
 	  "# (Note that later entries override this, so you might need to move\n",
           "# it further down)\n",
-	  "%sudo ALL=(ALL) ALL\n";
+	  "%sudo ALL=(ALL) ALL\n",
+	  "#\n",
+	  "#includedir /etc/sudoers.d\n";
 	close SUDOERS;
 
 }
@@ -32,7 +34,7 @@ if ( ! -f "/etc/sudoers") {
 system ('chown root:root /etc/sudoers');
 system ('chmod 440 /etc/sudoers');
 
-# do a remove first to un-do "bad" links created by previous versions
+# must do a remove first to un-do the "bad" links created by previous version
 system ('update-rc.d -f sudo remove >/dev/null 2>&1');
 
 system ('update-rc.d sudo start 75 S . >/dev/null');
diff --git a/debian/sudo.postinst b/debian/sudo.postinst
index c4f9482..6dc9cd2 100644
--- a/debian/sudo.postinst
+++ b/debian/sudo.postinst
@@ -23,7 +23,9 @@ if ( ! -f "/etc/sudoers") {
 	  "# Allow members of group sudo to not need a password\n",
 	  "# (Note that later entries override this, so you might need to move\n",
           "# it further down)\n",
-	  "%sudo ALL=(ALL) ALL\n";
+	  "%sudo ALL=(ALL) ALL\n",
+	  "#\n",
+	  "#includedir /etc/sudoers.d\n";
 	close SUDOERS;
 
 }
-- 
2.47.2