Changeset 77b64bd

Timestamp:

12/02/2018 11:05:51 PM (5 years ago)

Author:

DJ Lucas <dj@…>

Branches:

10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 8.4, 9.0, 9.1, bdubbs/svn, elogind, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, lazarus, lxqt, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal

Children:

ff7c4c3e

Parents:

03b278dc

Message:

Upadte sudo instructions to utilize /etc/sudoers.d directory. Extend configuation where appropriate for needed super user environment variables in QT, KDE, and Java packages. Fixes #11400.

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@20772 af4574ff-66df-0310-9fd7-8a98e5e911e0

Files:

• general/prog/ojdk-conf.xml (modified) (1 diff)
• introduction/welcome/changelog.xml (modified) (2 diffs)
• kde/kf5/kf5-intro.xml (modified) (1 diff)
• postlfs/security/sudo.xml (modified) (1 diff)
• x/lib/qt5.xml (modified) (1 diff)

general/prog/ojdk-conf.xml

@@ -59 +59 @@
 
 # End /etc/profile.d/openjdk.sh</literal>
+EOF</userinput></screen>
+
+    <para>
+      If <xref linkend="sudo"/> is installed, the super user should have
+      access to the above variables. Execute the following commands as the
+       <systemitem class="username">root</systemitem> user:
+    </para>
+
+<screen role="root"><userinput>cat &gt; /etc/sudoers.d/java &lt;&lt; "EOF"
+<literal>Defaults env_keep += JAVA_HOME
+Defaults env_keep += CLASSPATH</literal>
 EOF</userinput></screen>
 

introduction/welcome/changelog.xml

@@ -46 +46 @@
       <itemizedlist>
         <listitem>
+          <para>[dj] - Upadte sudo instructions to utilize /etc/sudoers.d
+          directory. Extend configuation where appropriate for needed super
+          user environment variables in QT, KDE, and Java packages. Fixes
+          <ulink url="&blfs-ticket-root;11400">#11400</ulink>.</para>
+        </listitem>
+        <listitem>
           <para>[bdubbs] - Update to sysstat-12.0.2. Fixes
           <ulink url="&blfs-ticket-root;11395">#11395</ulink>.</para>
@@ -57 +63 @@
           <ulink url="&blfs-ticket-root;11388">#11388</ulink>.</para>
         </listitem>
-      </itemizedlist>
-    </listitem>
-
-    <listitem>
-      <para>December 2nd, 2018</para>
-      <itemizedlist>
         <listitem>
           <para>[dj] - Update to make-ca-1.0. Fixes

kde/kf5/kf5-intro.xml

@@ -71 +71 @@
     $QT5DIR/lib/ portions of the above paths may need to be changed to
     $QT5DIR/lib/qt5/.</para></note>
+
+    <para>Additionally, if <xref linkend="sudo"/> is installed, these variables
+    should be available to the super user. Execute the following commands as
+    the <systemitem class="username">root</systemitem> user:</para>
+
+<screen role="root"><userinput>cat &gt;&gt; /etc/sudoers.d/qt &lt;&lt; "EOF
+<literal>Defaults env_keep += QT_PLUGIN_PATH
+Defaults env_keep += QML2_IMPORT_PATH</literal>
+EOF
+
+cat &gt;&gt; /etc/sudoers.d/kde &lt;&lt; "EOF
+<literal>Defaults env_keep += KF5_PREFIX</literal>
+EOF</userinput></screen>
 
     <warning>

postlfs/security/sudo.xml

@@ -209 +209 @@
         installs a default configuration that has no privileges installed for
         any user.
-     </para>
-
-      <para>
-        One example usage is to allow the system administrator to execute
-        any program without typing a password each time root privileges are
-        needed. This can be configured as:
-      </para>
-
-<screen># User alias specification
-User_Alias  ADMIN = <replaceable>YourLoginId</replaceable>
-
-# Allow people in group ADMIN to run all commands without a password
-ADMIN       ALL = NOPASSWD: ALL</screen>
-
-      <para>
-        Another common configuration is to allow members of the wheel group to
-        execute all commands after providing their own credientials. Use the
-        following command to edit default <filename>/etc/sudoers</filename>
-        file as the <systemitem class="username">root</systemitem> user:
-      </para>
-
-<screen role="nodump"><userinput>sed '/wheel.*) ALL/s/^# //' -i.bak /etc/sudoers</userinput></screen>
+      </para>
+
+      <para>
+        A couple of common configuration chanes are to set the path for the
+        super user and to allow members of the wheel group to execute all
+        commands after providing their own credientials. Use the following
+        commands to create the <filename>/etc/sudoers.d/sudo</filename>
+        configuration file as the
+        <systemitem class="username">root</systemitem> user:
+      </para>
+
+<screen role="root"><userinput>cat &gt; /etc/sudoers.d/sudo &lt;&lt; "EOF"
+<literal>Defaults secure_path="/usr/bin:/bin:/usr/sbin:/sbin"
+%wheel ALL=(ALL) ALL</literal>
+EOF</userinput></screen>
       
       <para>

x/lib/qt5.xml

@@ -451 +451 @@
 
 # End /etc/profile.d/qt5.sh</literal>
+EOF</userinput></screen>
+
+      <para>
+        If <xref linkend="sudo"/> is installed, QT5DIR should be available to
+        the super user as well. Execute the following commands as the
+        <systemitem class="username">root</systemitem> user:
+      </para>
+
+<screen role="root"><userinput>cat &gt; /etc/sudoers.d/qt &lt;&lt; "EOF"
+<literal>Defaults env_keep += QT5DIR</literal>
 EOF</userinput></screen>