Changeset 77b64bd


Ignore:
Timestamp:
12/02/2018 11:05:51 PM (3 years ago)
Author:
DJ Lucas <dj@…>
Branches:
10.0, 10.1, 11.0, 8.4, 9.0, 9.1, bdubbs/svn, elogind, qt5new, trunk, xry111/git-date, xry111/git-date-for-trunk, xry111/git-date-test
Children:
ff7c4c3e
Parents:
03b278dc
Message:

Upadte sudo instructions to utilize /etc/sudoers.d directory. Extend configuation where appropriate for needed super user environment variables in QT, KDE, and Java packages. Fixes #11400.

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@20772 af4574ff-66df-0310-9fd7-8a98e5e911e0

Files:
5 edited

Legend:

Unmodified
Added
Removed
  • general/prog/ojdk-conf.xml

    r03b278dc r77b64bd  
    5959
    6060# End /etc/profile.d/openjdk.sh</literal>
     61EOF</userinput></screen>
     62
     63    <para>
     64      If <xref linkend="sudo"/> is installed, the super user should have
     65      access to the above variables. Execute the following commands as the
     66       <systemitem class="username">root</systemitem> user:
     67    </para>
     68
     69<screen role="root"><userinput>cat &gt; /etc/sudoers.d/java &lt;&lt; "EOF"
     70<literal>Defaults env_keep += JAVA_HOME
     71Defaults env_keep += CLASSPATH</literal>
    6172EOF</userinput></screen>
    6273
  • introduction/welcome/changelog.xml

    r03b278dc r77b64bd  
    4646      <itemizedlist>
    4747        <listitem>
     48          <para>[dj] - Upadte sudo instructions to utilize /etc/sudoers.d
     49          directory. Extend configuation where appropriate for needed super
     50          user environment variables in QT, KDE, and Java packages. Fixes
     51          <ulink url="&blfs-ticket-root;11400">#11400</ulink>.</para>
     52        </listitem>
     53        <listitem>
    4854          <para>[bdubbs] - Update to sysstat-12.0.2. Fixes
    4955          <ulink url="&blfs-ticket-root;11395">#11395</ulink>.</para>
     
    5763          <ulink url="&blfs-ticket-root;11388">#11388</ulink>.</para>
    5864        </listitem>
    59       </itemizedlist>
    60     </listitem>
    61 
    62     <listitem>
    63       <para>December 2nd, 2018</para>
    64       <itemizedlist>
    6565        <listitem>
    6666          <para>[dj] - Update to make-ca-1.0. Fixes
  • kde/kf5/kf5-intro.xml

    r03b278dc r77b64bd  
    7171    $QT5DIR/lib/ portions of the above paths may need to be changed to
    7272    $QT5DIR/lib/qt5/.</para></note>
     73
     74    <para>Additionally, if <xref linkend="sudo"/> is installed, these variables
     75    should be available to the super user. Execute the following commands as
     76    the <systemitem class="username">root</systemitem> user:</para>
     77
     78<screen role="root"><userinput>cat &gt;&gt; /etc/sudoers.d/qt &lt;&lt; "EOF
     79<literal>Defaults env_keep += QT_PLUGIN_PATH
     80Defaults env_keep += QML2_IMPORT_PATH</literal>
     81EOF
     82
     83cat &gt;&gt; /etc/sudoers.d/kde &lt;&lt; "EOF
     84<literal>Defaults env_keep += KF5_PREFIX</literal>
     85EOF</userinput></screen>
    7386
    7487    <warning>
  • postlfs/security/sudo.xml

    r03b278dc r77b64bd  
    209209        installs a default configuration that has no privileges installed for
    210210        any user.
    211      </para>
    212 
    213       <para>
    214         One example usage is to allow the system administrator to execute
    215         any program without typing a password each time root privileges are
    216         needed. This can be configured as:
    217       </para>
    218 
    219 <screen># User alias specification
    220 User_Alias  ADMIN = <replaceable>YourLoginId</replaceable>
    221 
    222 # Allow people in group ADMIN to run all commands without a password
    223 ADMIN       ALL = NOPASSWD: ALL</screen>
    224 
    225       <para>
    226         Another common configuration is to allow members of the wheel group to
    227         execute all commands after providing their own credientials. Use the
    228         following command to edit default <filename>/etc/sudoers</filename>
    229         file as the <systemitem class="username">root</systemitem> user:
    230       </para>
    231 
    232 <screen role="nodump"><userinput>sed '/wheel.*) ALL/s/^# //' -i.bak /etc/sudoers</userinput></screen>
     211      </para>
     212
     213      <para>
     214        A couple of common configuration chanes are to set the path for the
     215        super user and to allow members of the wheel group to execute all
     216        commands after providing their own credientials. Use the following
     217        commands to create the <filename>/etc/sudoers.d/sudo</filename>
     218        configuration file as the
     219        <systemitem class="username">root</systemitem> user:
     220      </para>
     221
     222<screen role="root"><userinput>cat &gt; /etc/sudoers.d/sudo &lt;&lt; "EOF"
     223<literal>Defaults secure_path="/usr/bin:/bin:/usr/sbin:/sbin"
     224%wheel ALL=(ALL) ALL</literal>
     225EOF</userinput></screen>
    233226     
    234227      <para>
  • x/lib/qt5.xml

    r03b278dc r77b64bd  
    451451
    452452# End /etc/profile.d/qt5.sh</literal>
     453EOF</userinput></screen>
     454
     455      <para>
     456        If <xref linkend="sudo"/> is installed, QT5DIR should be available to
     457        the super user as well. Execute the following commands as the
     458        <systemitem class="username">root</systemitem> user:
     459      </para>
     460
     461<screen role="root"><userinput>cat &gt; /etc/sudoers.d/qt &lt;&lt; "EOF"
     462<literal>Defaults env_keep += QT5DIR</literal>
    453463EOF</userinput></screen>
    454464
Note: See TracChangeset for help on using the changeset viewer.