From mboxrd@z Thu Jan 1 00:00:00 1970 From: Tom Tromey To: Overseers List Subject: sudo again Date: Sat, 30 Dec 2000 06:08:00 -0000 Message-id: <874s4fepvo.fsf@creche.i-did-not-set--mail-host-address--so-shoot-me> X-SW-Source: 2000/msg00980.html Chris pointed out to me that I installed sudo but didn't test it, and it didn't work. I looked into it. It fails because none of us have passwords on sourceware. This confuses PAM. Fine. I looked into making it use our kerberos passwords, but we don't have the krb4 PAM module installed (and don't we use krb5 anyway?). So I made it `promiscuous'. This means that if you are listed in the sudoers file you won't need to use a password to use sudo. Maybe this is lame and dangerous (?). Another choice would be to give all the sudoers a real password. That's an easy change to make: just revert my change in /etc/pam.d/sudo and tell the list (or ask me to do it). Tom From mboxrd@z Thu Jan 1 00:00:00 1970 From: Tom Tromey To: Overseers List Subject: sudo again Date: Sun, 20 Aug 2000 11:35:00 -0000 Message-ID: <874s4fepvo.fsf@creche.i-did-not-set--mail-host-address--so-shoot-me> X-SW-Source: 2000-q3/msg00271.html Message-ID: <20000820113500.rGWstKJyqaa36jYr1DeP-Xg_QXMJFqZtr3-ovnQEyIk@z> Chris pointed out to me that I installed sudo but didn't test it, and it didn't work. I looked into it. It fails because none of us have passwords on sourceware. This confuses PAM. Fine. I looked into making it use our kerberos passwords, but we don't have the krb4 PAM module installed (and don't we use krb5 anyway?). So I made it `promiscuous'. This means that if you are listed in the sudoers file you won't need to use a password to use sudo. Maybe this is lame and dangerous (?). Another choice would be to give all the sudoers a real password. That's an easy change to make: just revert my change in /etc/pam.d/sudo and tell the list (or ask me to do it). Tom