Diff for /embedaddon/sudo/doc/sudo.cat between versions 1.1.1.2 and 1.1.1.3

version 1.1.1.2, 2012/05/29 12:26:49 version 1.1.1.3, 2012/10/09 09:29:52
Line 1 Line 1
SUDO(1m)                     MAINTENANCE COMMANDS                     SUDO(1m)SUDO(1m)                     System Manager's Manual                    SUDO(1m)
   
   
   
 NNAAMMEE  NNAAMMEE
       sudo, sudoedit - execute a command as another user     ssuuddoo, ssuuddooeeddiitt - execute a command as another user
   
 SSYYNNOOPPSSIISS  SSYYNNOOPPSSIISS
       ssuuddoo --hh | --KK | --kk | --VV     ssuuddoo --hh | --KK | --kk | --VV
      ssuuddoo --vv [--AAkknnSS] [--aa _a_u_t_h___t_y_p_e] [--gg _g_r_o_u_p _n_a_m_e | _#_g_i_d] [--pp _p_r_o_m_p_t]
           [--uu _u_s_e_r _n_a_m_e | _#_u_i_d]
      ssuuddoo --ll[_l] [--AAkknnSS] [--aa _a_u_t_h___t_y_p_e] [--gg _g_r_o_u_p _n_a_m_e | _#_g_i_d] [--pp _p_r_o_m_p_t]
           [--UU _u_s_e_r _n_a_m_e] [--uu _u_s_e_r _n_a_m_e | _#_u_i_d] [_c_o_m_m_a_n_d]
      ssuuddoo [--AAbbEEHHnnPPSS] [--aa _a_u_t_h___t_y_p_e] [--CC _f_d] [--cc _c_l_a_s_s | _-]
           [--gg _g_r_o_u_p _n_a_m_e | _#_g_i_d] [--pp _p_r_o_m_p_t] [--rr _r_o_l_e] [--tt _t_y_p_e]
           [--uu _u_s_e_r _n_a_m_e | _#_u_i_d] [VVAARR=_v_a_l_u_e] --ii | --ss [_c_o_m_m_a_n_d]
      ssuuddooeeddiitt [--AAnnSS] [--aa _a_u_t_h___t_y_p_e] [--CC _f_d] [--cc _c_l_a_s_s | _-]
               [--gg _g_r_o_u_p _n_a_m_e | _#_g_i_d] [--pp _p_r_o_m_p_t] [--uu _u_s_e_r _n_a_m_e | _#_u_i_d] file
               ...
   
        ssuuddoo --vv [--AAkknnSS] [--aa _a_u_t_h___t_y_p_e] [--gg _g_r_o_u_p _n_a_m_e|_#_g_i_d] [--pp _p_r_o_m_p_t]  
        [--uu _u_s_e_r _n_a_m_e|_#_u_i_d]  
   
        ssuuddoo --ll[[ll]] [--AAkknnSS] [--aa _a_u_t_h___t_y_p_e] [--gg _g_r_o_u_p _n_a_m_e|_#_g_i_d] [--pp _p_r_o_m_p_t]  
        [--UU _u_s_e_r _n_a_m_e] [--uu _u_s_e_r _n_a_m_e|_#_u_i_d] [_c_o_m_m_a_n_d]  
   
        ssuuddoo [--AAbbEEHHnnPPSS] [--aa _a_u_t_h___t_y_p_e] [--CC _f_d] [--cc _c_l_a_s_s|_-]  
        [--gg _g_r_o_u_p _n_a_m_e|_#_g_i_d] [--pp _p_r_o_m_p_t] [--rr _r_o_l_e] [--tt _t_y_p_e]  
        [--uu _u_s_e_r _n_a_m_e|_#_u_i_d] [VVAARR=_v_a_l_u_e] [--ii | --ss] [_c_o_m_m_a_n_d]  
   
        ssuuddooeeddiitt [--AAnnSS] [--aa _a_u_t_h___t_y_p_e] [--CC _f_d] [--cc _c_l_a_s_s|_-]  
        [--gg _g_r_o_u_p _n_a_m_e|_#_g_i_d] [--pp _p_r_o_m_p_t] [--uu _u_s_e_r _n_a_m_e|_#_u_i_d] file ...  
   
 DDEESSCCRRIIPPTTIIOONN  DDEESSCCRRIIPPTTIIOONN
       ssuuddoo allows a permitted user to execute a _c_o_m_m_a_n_d as the superuser or     ssuuddoo allows a permitted user to execute a _c_o_m_m_a_n_d as the superuser or
       another user, as specified by the security policy.  The real and     another user, as specified by the security policy.
       effective uid and gid are set to match those of the target user, as 
       specified in the password database, and the group vector is initialized 
       based on the group database (unless the --PP option was specified). 
   
       ssuuddoo supports a plugin architecture for security policies and     ssuuddoo supports a plugin architecture for security policies and
       input/output logging.  Third parties can develop and distribute their     input/output logging.  Third parties can develop and distribute their own
       own policy and I/O logging modules to work seamlessly with the ssuuddoo     policy and I/O logging plugins to work seamlessly with the ssuuddoo front
       front end.  The default security policy is _s_u_d_o_e_r_s, which is configured     end.  The default security policy is _s_u_d_o_e_r_s, which is configured via the
       via the file _/_e_t_c_/_s_u_d_o_e_r_s, or via LDAP.  See the PLUGINS section for     file _/_e_t_c_/_s_u_d_o_e_r_s, or via LDAP.  See the _P_L_U_G_I_N_S section for more
       more information.     information.
   
       The security policy determines what privileges, if any, a user has to     The security policy determines what privileges, if any, a user has to run
       run ssuuddoo.  The policy may require that users authenticate themselves     ssuuddoo.  The policy may require that users authenticate themselves with a
       with a password or another authentication mechanism.  If authentication     password or another authentication mechanism.  If authentication is
       is required, ssuuddoo will exit if the user's password is not entered     required, ssuuddoo will exit if the user's password is not entered within a
       within a configurable time limit.  This limit is policy-specific; the     configurable time limit.  This limit is policy-specific; the default
       default password prompt timeout for the _s_u_d_o_e_r_s security policy is 5     password prompt timeout for the _s_u_d_o_e_r_s security policy is 5 minutes.
       minutes. 
   
       Security policies may support credential caching to allow the user to     Security policies may support credential caching to allow the user to run
       run ssuuddoo again for a period of time without requiring authentication.     ssuuddoo again for a period of time without requiring authentication.  The
       The _s_u_d_o_e_r_s policy caches credentials for 5 minutes, unless overridden     _s_u_d_o_e_r_s policy caches credentials for 5 minutes, unless overridden in
       in _s_u_d_o_e_r_s(4).  By running ssuuddoo with the --vv option, a user can update     sudoers(4).  By running ssuuddoo with the --vv option, a user can update the
       the cached credentials without running a _c_o_m_m_a_n_d.     cached credentials without running a _c_o_m_m_a_n_d.
   
       When invoked as ssuuddooeeddiitt, the --ee option (described below), is implied.     When invoked as ssuuddooeeddiitt, the --ee option (described below), is implied.
   
       Security policies may log successful and failed attempts to use ssuuddoo.     Security policies may log successful and failed attempts to use ssuuddoo.  If
       If an I/O plugin is configured, the running command's input and output     an I/O plugin is configured, the running command's input and output may
       may be logged as well.     be logged as well.
   
OOPPTTIIOONNSS     The options are as follows:
       ssuuddoo accepts the following command line options: 
   
       -A          Normally, if ssuuddoo requires a password, it will read it from     --AA          Normally, if ssuuddoo requires a password, it will read it from
                   the user's terminal.  If the --AA (_a_s_k_p_a_s_s) option is                 the user's terminal.  If the --AA (_a_s_k_p_a_s_s) option is
                   specified, a (possibly graphical) helper program is                 specified, a (possibly graphical) helper program is executed
                   executed to read the user's password and output the                 to read the user's password and output the password to the
                   password to the standard output.  If the SUDO_ASKPASS                 standard output.  If the SUDO_ASKPASS environment variable is
                   environment variable is set, it specifies the path to the                 set, it specifies the path to the helper program.  Otherwise,
                   helper program.  Otherwise, if _/_e_t_c_/_s_u_d_o_._c_o_n_f contains a                 if _/_e_t_c_/_s_u_d_o_._c_o_n_f contains a line specifying the askpass
                   line specifying the askpass program, that value will be                 program, that value will be used.  For example:
                   used.  For example: 
   
                       # Path to askpass helper program                     # Path to askpass helper program
                       Path askpass /usr/X11R6/bin/ssh-askpass                     Path askpass /usr/X11R6/bin/ssh-askpass
   
                   If no askpass program is available, sudo will exit with an                 If no askpass program is available, ssuuddoo will exit with an
                   error.                 error.
   
       -a _t_y_p_e     The --aa (_a_u_t_h_e_n_t_i_c_a_t_i_o_n _t_y_p_e) option causes ssuuddoo to use the     --aa _t_y_p_e     The --aa (_a_u_t_h_e_n_t_i_c_a_t_i_o_n _t_y_p_e) option causes ssuuddoo to use the
                   specified authentication type when validating the user, as                 specified authentication type when validating the user, as
                   allowed by _/_e_t_c_/_l_o_g_i_n_._c_o_n_f.  The system administrator may                 allowed by _/_e_t_c_/_l_o_g_i_n_._c_o_n_f.  The system administrator may
                   specify a list of sudo-specific authentication methods by                 specify a list of sudo-specific authentication methods by
                   adding an "auth-sudo" entry in _/_e_t_c_/_l_o_g_i_n_._c_o_n_f.  This                 adding an ``auth-sudo'' entry in _/_e_t_c_/_l_o_g_i_n_._c_o_n_f.  This
                   option is only available on systems that support BSD                 option is only available on systems that support BSD
                   authentication.                 authentication.
   
       -b          The --bb (_b_a_c_k_g_r_o_u_n_d) option tells ssuuddoo to run the given     --bb          The --bb (_b_a_c_k_g_r_o_u_n_d) option tells ssuuddoo to run the given
                   command in the background.  Note that if you use the --bb                 command in the background.  Note that if you use the --bb
                   option you cannot use shell job control to manipulate the                 option you cannot use shell job control to manipulate the
                   process.  Most interactive commands will fail to work                 process.  Most interactive commands will fail to work
                   properly in background mode.                 properly in background mode.
   
       -C _f_d       Normally, ssuuddoo will close all open file descriptors other     --CC _f_d       Normally, ssuuddoo will close all open file descriptors other
                   than standard input, standard output and standard error.                 than standard input, standard output and standard error.  The
                   The --CC (_c_l_o_s_e _f_r_o_m) option allows the user to specify a                 --CC (_c_l_o_s_e _f_r_o_m) option allows the user to specify a starting
                   starting point above the standard error (file descriptor                 point above the standard error (file descriptor three).
                   three).  Values less than three are not permitted.  The                 Values less than three are not permitted.  The security
                   security policy may restrict the user's ability to use the                 policy may restrict the user's ability to use the --CC option.
                   --CC option.  The _s_u_d_o_e_r_s policy only permits use of the --CC                 The _s_u_d_o_e_r_s policy only permits use of the --CC option when the
                   option when the administrator has enabled the                 administrator has enabled the _c_l_o_s_e_f_r_o_m___o_v_e_r_r_i_d_e option.
                   _c_l_o_s_e_f_r_o_m___o_v_e_r_r_i_d_e option. 
   
       -c _c_l_a_s_s    The --cc (_c_l_a_s_s) option causes ssuuddoo to run the specified     --cc _c_l_a_s_s    The --cc (_c_l_a_s_s) option causes ssuuddoo to run the specified
                   command with resources limited by the specified login                 command with resources limited by the specified login class.
                   class.  The _c_l_a_s_s argument can be either a class name as                 The _c_l_a_s_s argument can be either a class name as defined in
                   defined in _/_e_t_c_/_l_o_g_i_n_._c_o_n_f, or a single '-' character.                 _/_e_t_c_/_l_o_g_i_n_._c_o_n_f, or a single `-' character.  Specifying a
                   Specifying a _c_l_a_s_s of - indicates that the command should                 _c_l_a_s_s of - indicates that the command should be run
                   be run restricted by the default login capabilities for the                 restricted by the default login capabilities for the user the
                   user the command is run as.  If the _c_l_a_s_s argument                 command is run as.  If the _c_l_a_s_s argument specifies an
                   specifies an existing user class, the command must be run                 existing user class, the command must be run as root, or the
                   as root, or the ssuuddoo command must be run from a shell that                 ssuuddoo command must be run from a shell that is already root.
                   is already root.  This option is only available on systems                 This option is only available on systems with BSD login
                   with BSD login classes.                 classes.
   
       -E          The --EE (_p_r_e_s_e_r_v_e _e_n_v_i_r_o_n_m_e_n_t) option indicates to the     --EE          The --EE (_p_r_e_s_e_r_v_e _e_n_v_i_r_o_n_m_e_n_t) option indicates to the
                   security policy that the user wishes to preserve their                 security policy that the user wishes to preserve their
                   existing environment variables.  The security policy may                 existing environment variables.  The security policy may
                   return an error if the --EE option is specified and the user                 return an error if the --EE option is specified and the user
                   does not have permission to preserve the environment.                 does not have permission to preserve the environment.
   
       -e          The --ee (_e_d_i_t) option indicates that, instead of running a     --ee          The --ee (_e_d_i_t) option indicates that, instead of running a
                   command, the user wishes to edit one or more files.  In                 command, the user wishes to edit one or more files.  In lieu
                   lieu of a command, the string "sudoedit" is used when                 of a command, the string "sudoedit" is used when consulting
                   consulting the security policy.  If the user is authorized                 the security policy.  If the user is authorized by the
                   by the policy, the following steps are taken:                 policy, the following steps are taken:
   
                   1.  Temporary copies are made of the files to be edited                  1.   Temporary copies are made of the files to be edited
                        with the owner set to the invoking user.                         with the owner set to the invoking user.
   
                   2.  The editor specified by the policy is run to edit the                  2.   The editor specified by the policy is run to edit the
                        temporary files.  The _s_u_d_o_e_r_s policy uses the                         temporary files.  The _s_u_d_o_e_r_s policy uses the
                        SUDO_EDITOR, VISUAL and EDITOR environment variables                         SUDO_EDITOR, VISUAL and EDITOR environment variables
                        (in that order).  If none of SUDO_EDITOR, VISUAL or                         (in that order).  If none of SUDO_EDITOR, VISUAL or
                        EDITOR are set, the first program listed in the _e_d_i_t_o_r                         EDITOR are set, the first program listed in the _e_d_i_t_o_r
                       _s_u_d_o_e_r_s(4) option is used.                       sudoers(4) option is used.
   
                   3.  If they have been modified, the temporary files are                  3.   If they have been modified, the temporary files are
                        copied back to their original location and the                         copied back to their original location and the
                        temporary versions are removed.                         temporary versions are removed.
   
                   If the specified file does not exist, it will be created.                 If the specified file does not exist, it will be created.
                   Note that unlike most commands run by ssuuddoo, the editor is                 Note that unlike most commands run by _s_u_d_o, the editor is run
                   run with the invoking user's environment unmodified.  If,                 with the invoking user's environment unmodified.  If, for
                   for some reason, ssuuddoo is unable to update a file with its                 some reason, ssuuddoo is unable to update a file with its edited
                   edited version, the user will receive a warning and the                 version, the user will receive a warning and the edited copy
                   edited copy will remain in a temporary file.                 will remain in a temporary file.
   
       -g _g_r_o_u_p    Normally, ssuuddoo runs a command with the primary group set to     --gg _g_r_o_u_p    Normally, ssuuddoo runs a command with the primary group set to
                   the one specified by the password database for the user the                 the one specified by the password database for the user the
                   command is being run as (by default, root).  The --gg (_g_r_o_u_p)                 command is being run as (by default, root).  The --gg (_g_r_o_u_p)
                   option causes ssuuddoo to run the command with the primary                 option causes ssuuddoo to run the command with the primary group
                   group set to _g_r_o_u_p instead.  To specify a _g_i_d instead of a                 set to _g_r_o_u_p instead.  To specify a _g_i_d instead of a _g_r_o_u_p
                   _g_r_o_u_p _n_a_m_e, use _#_g_i_d.  When running commands as a _g_i_d, many                 _n_a_m_e, use _#_g_i_d.  When running commands as a _g_i_d, many shells
                   shells require that the '#' be escaped with a backslash                 require that the `#' be escaped with a backslash (`\').  If
                   ('\').  If no --uu option is specified, the command will be                 no --uu option is specified, the command will be run as the
                   run as the invoking user (not root).  In either case, the                 invoking user (not root).  In either case, the primary group
                   primary group will be set to _g_r_o_u_p.                 will be set to _g_r_o_u_p.
   
       -H          The --HH (_H_O_M_E) option requests that the security policy set     --HH          The --HH (_H_O_M_E) option requests that the security policy set
                   the HOME environment variable to the home directory of the                 the HOME environment variable to the home directory of the
                   target user (root by default) as specified by the password                 target user (root by default) as specified by the password
                   database.  Depending on the policy, this may be the default                 database.  Depending on the policy, this may be the default
                   behavior.                 behavior.
   
       -h          The --hh (_h_e_l_p) option causes ssuuddoo to print a short help     --hh          The --hh (_h_e_l_p) option causes ssuuddoo to print a short help
                   message to the standard output and exit.                 message to the standard output and exit.
   
       -i [command]     --ii [_c_o_m_m_a_n_d]
                   The --ii (_s_i_m_u_l_a_t_e _i_n_i_t_i_a_l _l_o_g_i_n) option runs the shell                 The --ii (_s_i_m_u_l_a_t_e _i_n_i_t_i_a_l _l_o_g_i_n) option runs the shell
                   specified by the password database entry of the target user                 specified by the password database entry of the target user
                   as a login shell.  This means that login-specific resource                 as a login shell.  This means that login-specific resource
                   files such as .profile or .login will be read by the shell.                 files such as _._p_r_o_f_i_l_e or _._l_o_g_i_n will be read by the shell.
                   If a command is specified, it is passed to the shell for                 If a command is specified, it is passed to the shell for
                   execution via the shell's --cc option.  If no command is                 execution via the shell's --cc option.  If no command is
                   specified, an interactive shell is executed.  ssuuddoo attempts                 specified, an interactive shell is executed.  ssuuddoo attempts
                   to change to that user's home directory before running the                 to change to that user's home directory before running the
                   shell.  The security policy shall initialize the                 shell.  The security policy shall initialize the environment
                   environment to a minimal set of variables, similar to what                 to a minimal set of variables, similar to what is present
                   is present when a user logs in.  The _C_o_m_m_a_n_d _E_n_v_i_r_o_n_m_e_n_t                 when a user logs in.  The _C_o_m_m_a_n_d _E_n_v_i_r_o_n_m_e_n_t section in the
                   section in the _s_u_d_o_e_r_s(4) manual documents how the --ii                 sudoers(4) manual documents how the --ii option affects the
                   option affects the environment in which a command is run                 environment in which a command is run when the _s_u_d_o_e_r_s policy
                   when the _s_u_d_o_e_r_s policy is in use.                 is in use.
   
       -K          The --KK (sure _k_i_l_l) option is like --kk except that it removes     --KK          The --KK (sure _k_i_l_l) option is like --kk except that it removes
                   the user's cached credentials entirely and may not be used                 the user's cached credentials entirely and may not be used in
                   in conjunction with a command or other option.  This option                 conjunction with a command or other option.  This option does
                   does not require a password.  Not all security policies                 not require a password.  Not all security policies support
                   support credential caching.                 credential caching.
   
       -k [command]     --kk [_c_o_m_m_a_n_d]
                   When used alone, the --kk (_k_i_l_l) option to ssuuddoo invalidates                 When used alone, the --kk (_k_i_l_l) option to ssuuddoo invalidates the
                   the user's cached credentials.  The next time ssuuddoo is run a                 user's cached credentials.  The next time ssuuddoo is run a
                   password will be required.  This option does not require a                 password will be required.  This option does not require a
                   password and was added to allow a user to revoke ssuuddoo                 password and was added to allow a user to revoke ssuuddoo
                   permissions from a .logout file.  Not all security policies                 permissions from a _._l_o_g_o_u_t file.  Not all security policies
                   support credential caching.                 support credential caching.
   
                   When used in conjunction with a command or an option that                 When used in conjunction with a command or an option that may
                   may require a password, the --kk option will cause ssuuddoo to                 require a password, the --kk option will cause ssuuddoo to ignore
                   ignore the user's cached credentials.  As a result, ssuuddoo                 the user's cached credentials.  As a result, ssuuddoo will prompt
                   will prompt for a password (if one is required by the                 for a password (if one is required by the security policy)
                   security policy) and will not update the user's cached                 and will not update the user's cached credentials.
                   credentials. 
   
       -l[l] [_c_o_m_m_a_n_d]     --ll[ll] [_c_o_m_m_a_n_d]
                   If no _c_o_m_m_a_n_d is specified, the --ll (_l_i_s_t) option will list                 If no _c_o_m_m_a_n_d is specified, the --ll (_l_i_s_t) option will list
                   the allowed (and forbidden) commands for the invoking user                 the allowed (and forbidden) commands for the invoking user
                   (or the user specified by the --UU option) on the current                 (or the user specified by the --UU option) on the current host.
                   host.  If a _c_o_m_m_a_n_d is specified and is permitted by the                 If a _c_o_m_m_a_n_d is specified and is permitted by the security
                   security policy, the fully-qualified path to the command is                 policy, the fully-qualified path to the command is displayed
                   displayed along with any command line arguments.  If                 along with any command line arguments.  If _c_o_m_m_a_n_d is
                   _c_o_m_m_a_n_d is specified but not allowed, ssuuddoo will exit with a                 specified but not allowed, ssuuddoo will exit with a status value
                   status value of 1.  If the --ll option is specified with an ll                 of 1.  If the --ll option is specified with an _l argument (i.e.
                   argument (i.e. --llll), or if --ll is specified multiple times,                 --llll), or if --ll is specified multiple times, a longer list
                   a longer list format is used.                 format is used.
   
       -n          The --nn (_n_o_n_-_i_n_t_e_r_a_c_t_i_v_e) option prevents ssuuddoo from     --nn          The --nn (_n_o_n_-_i_n_t_e_r_a_c_t_i_v_e) option prevents ssuuddoo from prompting
                   prompting the user for a password.  If a password is                 the user for a password.  If a password is required for the
                   required for the command to run, ssuuddoo will display an error                 command to run, ssuuddoo will display an error message and exit.
                   messages and exit. 
   
       -P          The --PP (_p_r_e_s_e_r_v_e _g_r_o_u_p _v_e_c_t_o_r) option causes ssuuddoo to     --PP          The --PP (_p_r_e_s_e_r_v_e _g_r_o_u_p _v_e_c_t_o_r) option causes ssuuddoo to preserve
                   preserve the invoking user's group vector unaltered.  By                 the invoking user's group vector unaltered.  By default, the
                   default, the _s_u_d_o_e_r_s policy will initialize the group                 _s_u_d_o_e_r_s policy will initialize the group vector to the list
                   vector to the list of groups the target user is in.  The                 of groups the target user is in.  The real and effective
                   real and effective group IDs, however, are still set to                 group IDs, however, are still set to match the target user.
                   match the target user. 
   
       -p _p_r_o_m_p_t   The --pp (_p_r_o_m_p_t) option allows you to override the default     --pp _p_r_o_m_p_t   The --pp (_p_r_o_m_p_t) option allows you to override the default
                   password prompt and use a custom one.  The following                 password prompt and use a custom one.  The following percent
                   percent (`%') escapes are supported by the _s_u_d_o_e_r_s policy:                 (`%') escapes are supported by the _s_u_d_o_e_r_s policy:
   
                   %H  expanded to the host name including the domain name (on                 %H  expanded to the host name including the domain name (on
                       if the machine's host name is fully qualified or the                     if the machine's host name is fully qualified or the _f_q_d_n
                       _f_q_d_n option is set in _s_u_d_o_e_r_s(4))                     option is set in sudoers(4))
   
                   %h  expanded to the local host name without the domain name                 %h  expanded to the local host name without the domain name
   
                   %p  expanded to the name of the user whose password is                 %p  expanded to the name of the user whose password is being
                       being requested (respects the _r_o_o_t_p_w, _t_a_r_g_e_t_p_w and                     requested (respects the _r_o_o_t_p_w, _t_a_r_g_e_t_p_w, and _r_u_n_a_s_p_w
                       _r_u_n_a_s_p_w flags in _s_u_d_o_e_r_s(4))                     flags in sudoers(4))
   
                   %U  expanded to the login name of the user the command will                 %U  expanded to the login name of the user the command will
                       be run as (defaults to root unless the -u option is                     be run as (defaults to root unless the --uu option is also
                       also specified)                     specified)
   
                   %u  expanded to the invoking user's login name                 %u  expanded to the invoking user's login name
   
                   %%  two consecutive % characters are collapsed into a                 %%  two consecutive `%' characters are collapsed into a
                       single % character                     single `%' character
   
                   The prompt specified by the --pp option will override the                 The prompt specified by the --pp option will override the
                   system password prompt on systems that support PAM unless                 system password prompt on systems that support PAM unless the
                   the _p_a_s_s_p_r_o_m_p_t___o_v_e_r_r_i_d_e flag is disabled in _s_u_d_o_e_r_s.                 _p_a_s_s_p_r_o_m_p_t___o_v_e_r_r_i_d_e flag is disabled in _s_u_d_o_e_r_s.
   
       -r _r_o_l_e     The --rr (_r_o_l_e) option causes the new (SELinux) security     --rr _r_o_l_e     The --rr (_r_o_l_e) option causes the new (SELinux) security
                   context to have the role specified by _r_o_l_e.                 context to have the role specified by _r_o_l_e.
   
       -S          The --SS (_s_t_d_i_n) option causes ssuuddoo to read the password from     --SS          The --SS (_s_t_d_i_n) option causes ssuuddoo to read the password from
                   the standard input instead of the terminal device.  The                 the standard input instead of the terminal device.  The
                   password must be followed by a newline character.                 password must be followed by a newline character.
   
       -s [command]     --ss [_c_o_m_m_a_n_d]
                   The --ss (_s_h_e_l_l) option runs the shell specified by the _S_H_E_L_L                 The --ss (_s_h_e_l_l) option runs the shell specified by the SHELL
                   environment variable if it is set or the shell as specified                 environment variable if it is set or the shell as specified
                   in the password database.  If a command is specified, it is                 in the password database.  If a command is specified, it is
                   passed to the shell for execution via the shell's --cc                 passed to the shell for execution via the shell's --cc option.
                   option.  If no command is specified, an interactive shell                 If no command is specified, an interactive shell is executed.
                   is executed. 
   
       -t _t_y_p_e     The --tt (_t_y_p_e) option causes the new (SELinux) security     --tt _t_y_p_e     The --tt (_t_y_p_e) option causes the new (SELinux) security
                   context to have the type specified by _t_y_p_e.  If no type is                 context to have the type specified by _t_y_p_e.  If no type is
                   specified, the default type is derived from the specified                 specified, the default type is derived from the specified
                   role.                 role.
   
       -U _u_s_e_r     The --UU (_o_t_h_e_r _u_s_e_r) option is used in conjunction with the     --UU _u_s_e_r     The --UU (_o_t_h_e_r _u_s_e_r) option is used in conjunction with the --ll
                   --ll option to specify the user whose privileges should be                 option to specify the user whose privileges should be listed.
                   listed.  The security policy may restrict listing other                 The security policy may restrict listing other users'
                   users' privileges.  The _s_u_d_o_e_r_s policy only allows root or                 privileges.  The _s_u_d_o_e_r_s policy only allows root or a user
                   a user with the ALL privilege on the current host to use                 with the ALL privilege on the current host to use this
                   this option.                 option.
   
       -u _u_s_e_r     The --uu (_u_s_e_r) option causes ssuuddoo to run the specified     --uu _u_s_e_r     The --uu (_u_s_e_r) option causes ssuuddoo to run the specified command
                   command as a user other than _r_o_o_t.  To specify a _u_i_d                 as a user other than _r_o_o_t.  To specify a _u_i_d instead of a
                   instead of a _u_s_e_r _n_a_m_e, use _#_u_i_d.  When running commands as                 _u_s_e_r _n_a_m_e, _#_u_i_d.  When running commands as a _u_i_d, many shells
                   a _u_i_d, many shells require that the '#' be escaped with a                 require that the `#' be escaped with a backslash (`\').
                   backslash ('\').  Security policies may restrict _u_i_ds to                 Security policies may restrict _u_i_ds to those listed in the
                   those listed in the password database.  The _s_u_d_o_e_r_s policy                 password database.  The _s_u_d_o_e_r_s policy allows _u_i_ds that are
                   allows _u_i_ds that are not in the password database as long                 not in the password database as long as the _t_a_r_g_e_t_p_w option
                   as the _t_a_r_g_e_t_p_w option is not set.  Other security policies                 is not set.  Other security policies may not support this.
                   may not support this. 
   
       -V          The --VV (_v_e_r_s_i_o_n) option causes ssuuddoo to print its version     --VV          The --VV (_v_e_r_s_i_o_n) option causes ssuuddoo to print its version
                   string and the version string of the security policy plugin                 string and the version string of the security policy plugin
                   and any I/O plugins.  If the invoking user is already root                 and any I/O plugins.  If the invoking user is already root
                   the --VV option will display the arguments passed to                 the --VV option will display the arguments passed to configure
                   configure when _s_u_d_o was built and plugins may display more                 when ssuuddoo was built and plugins may display more verbose
                   verbose information such as default options.                 information such as default options.
   
       -v          When given the --vv (_v_a_l_i_d_a_t_e) option, ssuuddoo will update the     --vv          When given the --vv (_v_a_l_i_d_a_t_e) option, ssuuddoo will update the
                   user's cached credentials, authenticating the user's                 user's cached credentials, authenticating the user's password
                   password if necessary.  For the _s_u_d_o_e_r_s plugin, this                 if necessary.  For the _s_u_d_o_e_r_s plugin, this extends the ssuuddoo
                   extends the ssuuddoo timeout for another 5 minutes (or whatever                 timeout for another 5 minutes (or whatever the timeout is set
                   the timeout is set to in _s_u_d_o_e_r_s) but does not run a                 to by the security policy) but does not run a command.  Not
                   command.  Not all security policies support cached                 all security policies support cached credentials.
                   credentials. 
   
       --          The ---- option indicates that ssuuddoo should stop processing     ----          The ---- option indicates that ssuuddoo should stop processing
                   command line arguments.                 command line arguments.
   
       Environment variables to be set for the command may also be passed on     Environment variables to be set for the command may also be passed on the
       the command line in the form of VVAARR=_v_a_l_u_e, e.g.     command line in the form of VVAARR=_v_a_l_u_e, e.g.
       LLDD__LLIIBBRRAARRYY__PPAATTHH=_/_u_s_r_/_l_o_c_a_l_/_p_k_g_/_l_i_b.  Variables passed on the command     LLDD__LLIIBBRRAARRYY__PPAATTHH=_/_u_s_r_/_l_o_c_a_l_/_p_k_g_/_l_i_b.  Variables passed on the command line
       line are subject to the same restrictions as normal environment     are subject to the same restrictions as normal environment variables with
       variables with one important exception.  If the _s_e_t_e_n_v option is set in     one important exception.  If the _s_e_t_e_n_v option is set in _s_u_d_o_e_r_s, the
       _s_u_d_o_e_r_s, the command to be run has the SETENV tag set or the command     command to be run has the SETENV tag set or the command matched is ALL,
       matched is ALL, the user may set variables that would otherwise be     the user may set variables that would otherwise be forbidden.  See
       forbidden.  See _s_u_d_o_e_r_s(4) for more information.     sudoers(4) for more information.
   
   CCOOMMMMAANNDD EEXXEECCUUTTIIOONN
        When ssuuddoo executes a command, the security policy specifies the execution
        envionment for the command.  Typically, the real and effective uid and
        gid are set to match those of the target user, as specified in the
        password database, and the group vector is initialized based on the group
        database (unless the --PP option was specified).
   
        The following parameters may be specified by security policy:
   
        oo   real and effective user ID
   
        oo   real and effective group ID
   
        oo   supplementary group IDs
   
        oo   the environment list
   
        oo   current working directory
   
        oo   file creation mode mask (umask)
   
        oo   SELinux role and type
   
        oo   Solaris project
   
        oo   Solaris privileges
   
        oo   BSD login class
   
        oo   scheduling priority (aka nice value)
   
      PPrroocceessss mmooddeell
        When ssuuddoo runs a command, it calls fork(2), sets up the execution
        environment as described above, and calls the execve system call in the
        child process.  The main ssuuddoo process waits until the command has
        completed, then passes the command's exit status to the security policy's
        close method and exits.  If an I/O logging plugin is configured, a new
        pseudo-terminal (``pty'') is created and a second ssuuddoo process is used to
        relay job control signals between the user's existing pty and the new pty
        the command is being run in.  This extra process makes it possible to,
        for example, suspend and resume the command.  Without it, the command
        would be in what POSIX terms an ``orphaned process group'' and it would
        not receive any job control signals.
   
      SSiiggnnaall hhaannddlliinngg
        Because the command is run as a child of the ssuuddoo process, ssuuddoo will
        relay signals it receives to the command.  Unless the command is being
        run in a new pty, the SIGHUP, SIGINT and SIGQUIT signals are not relayed
        unless they are sent by a user process, not the kernel.  Otherwise, the
        command would receive SIGINT twice every time the user entered control-C.
        Some signals, such as SIGSTOP and SIGKILL, cannot be caught and thus will
        not be relayed to the command.  As a general rule, SIGTSTP should be used
        instead of SIGSTOP when you wish to suspend a command being run by ssuuddoo.
   
        As a special case, ssuuddoo will not relay signals that were sent by the
        command it is running.  This prevents the command from accidentally
        killing itself.  On some systems, the reboot(1m) command sends SIGTERM to
        all non-system processes other than itself before rebooting the systyem.
        This prevents ssuuddoo from relaying the SIGTERM signal it received back to
        reboot(1m), which might then exit before the system was actually rebooted,
        leaving it in a half-dead state similar to single user mode.  Note,
        however, that this check only applies to the command run by ssuuddoo and not
        any other processes that the command may create.  As a result, running a
        script that calls reboot(1m) or shutdown(1m) via ssuuddoo may cause the system
        to end up in this undefined state unless the reboot(1m) or shutdown(1m) are
        run using the eexxeecc() family of functions instead of ssyysstteemm() (which
        interposes a shell between the command and the calling process).
   
 PPLLUUGGIINNSS  PPLLUUGGIINNSS
       Plugins are dynamically loaded based on the contents of the     Plugins are dynamically loaded based on the contents of the
       _/_e_t_c_/_s_u_d_o_._c_o_n_f file.  If no _/_e_t_c_/_s_u_d_o_._c_o_n_f file is present, or it     _/_e_t_c_/_s_u_d_o_._c_o_n_f file.  If no _/_e_t_c_/_s_u_d_o_._c_o_n_f file is present, or it
       contains no Plugin lines, ssuuddoo will use the traditional _s_u_d_o_e_r_s     contains no Plugin lines, ssuuddoo will use the traditional _s_u_d_o_e_r_s security
       security policy and I/O logging, which corresponds to the following     policy and I/O logging, which corresponds to the following _/_e_t_c_/_s_u_d_o_._c_o_n_f
       _/_e_t_c_/_s_u_d_o_._c_o_n_f file.     file.
   
        #     #
        # Default /etc/sudo.conf file     # Default /etc/sudo.conf file
        #     #
        # Format:     # Format:
        #   Plugin plugin_name plugin_path plugin_options ...     #   Plugin plugin_name plugin_path plugin_options ...
        #   Path askpass /path/to/askpass     #   Path askpass /path/to/askpass
        #   Path noexec /path/to/sudo_noexec.so     #   Path noexec /path/to/sudo_noexec.so
        #   Debug sudo /var/log/sudo_debug all@warn     #   Debug sudo /var/log/sudo_debug all@warn
        #   Set disable_coredump true     #   Set disable_coredump true
        #     #
        # The plugin_path is relative to /usr/local/libexec unless     # The plugin_path is relative to /usr/local/libexec unless
        #   fully qualified.     #   fully qualified.
        # The plugin_name corresponds to a global symbol in the plugin     # The plugin_name corresponds to a global symbol in the plugin
        #   that contains the plugin interface structure.     #   that contains the plugin interface structure.
        # The plugin_options are optional.     # The plugin_options are optional.
        #     #
        Plugin policy_plugin sudoers.so     Plugin policy_plugin sudoers.so
        Plugin io_plugin sudoers.so     Plugin io_plugin sudoers.so
   
       A Plugin line consists of the Plugin keyword, followed by the     A Plugin line consists of the Plugin keyword, followed by the _s_y_m_b_o_l___n_a_m_e
       _s_y_m_b_o_l___n_a_m_e and the _p_a_t_h to the shared object containing the plugin.     and the _p_a_t_h to the shared object containing the plugin.  The _s_y_m_b_o_l___n_a_m_e
       The _s_y_m_b_o_l___n_a_m_e is the name of the struct policy_plugin or struct     is the name of the struct policy_plugin or struct io_plugin in the plugin
       io_plugin in the plugin shared object.  The _p_a_t_h may be fully qualified     shared object.  The _p_a_t_h may be fully qualified or relative.  If not
       or relative.  If not fully qualified it is relative to the     fully qualified it is relative to the _/_u_s_r_/_l_o_c_a_l_/_l_i_b_e_x_e_c directory.  Any
       _/_u_s_r_/_l_o_c_a_l_/_l_i_b_e_x_e_c directory.  Any additional parameters after the _p_a_t_h     additional parameters after the _p_a_t_h are passed as arguments to the
       are passed as arguments to the plugin's _o_p_e_n function.  Lines that     plugin's _o_p_e_n function.  Lines that don't begin with Plugin, Path, Debug,
       don't begin with Plugin, Path, Debug or Set are silently ignored.     or Set are silently ignored.
   
       For more information, see the _s_u_d_o___p_l_u_g_i_n(1m) manual.     For more information, see the sudo_plugin(1m) manual.
   
 PPAATTHHSS  PPAATTHHSS
       A Path line consists of the Path keyword, followed by the name of the     A Path line consists of the Path keyword, followed by the name of the
       path to set and its value.  E.g.     path to set and its value.  E.g.
   
        Path noexec /usr/local/libexec/sudo_noexec.so           Path noexec /usr/local/libexec/sudo_noexec.so
        Path askpass /usr/X11R6/bin/ssh-askpass           Path askpass /usr/X11R6/bin/ssh-askpass
   
       The following plugin-agnostic paths may be set in the _/_e_t_c_/_s_u_d_o_._c_o_n_f     The following plugin-agnostic paths may be set in the _/_e_t_c_/_s_u_d_o_._c_o_n_f
       file.     file:
   
       askpass         The fully qualified path to a helper program used to     askpass   The fully qualified path to a helper program used to read the
                       read the user's password when no terminal is available.               user's password when no terminal is available.  This may be the
                       This may be the case when ssuuddoo is executed from a               case when ssuuddoo is executed from a graphical (as opposed to
                       graphical (as opposed to text-based) application.  The               text-based) application.  The program specified by _a_s_k_p_a_s_s
                       program specified by _a_s_k_p_a_s_s should display the               should display the argument passed to it as the prompt and
                       argument passed to it as the prompt and write the               write the user's password to the standard output.  The value of
                       user's password to the standard output.  The value of               _a_s_k_p_a_s_s may be overridden by the SUDO_ASKPASS environment
                       _a_s_k_p_a_s_s may be overridden by the SUDO_ASKPASS               variable.
                       environment variable. 
   
       noexec          The fully-qualified path to a shared library containing     noexec    The fully-qualified path to a shared library containing dummy
                       dummy versions of the _e_x_e_c_v_(_), _e_x_e_c_v_e_(_) and _f_e_x_e_c_v_e_(_)               versions of the eexxeeccvv(), eexxeeccvvee() and ffeexxeeccvvee() library
                       library functions that just return an error.  This is               functions that just return an error.  This is used to implement
                       used to implement the _n_o_e_x_e_c functionality on systems               the _n_o_e_x_e_c functionality on systems that support LD_PRELOAD or
                       that support LD_PRELOAD or its equivalent.  Defaults to               its equivalent.  Defaults to _/_u_s_r_/_l_o_c_a_l_/_l_i_b_e_x_e_c_/_s_u_d_o___n_o_e_x_e_c_._s_o.
                       _/_u_s_r_/_l_o_c_a_l_/_l_i_b_e_x_e_c_/_s_u_d_o___n_o_e_x_e_c_._s_o. 
   
 DDEEBBUUGG FFLLAAGGSS  DDEEBBUUGG FFLLAAGGSS
       ssuuddoo versions 1.8.4 and higher support a flexible debugging framework     ssuuddoo versions 1.8.4 and higher support a flexible debugging framework
       that can help track down what ssuuddoo is doing internally if there is a     that can help track down what ssuuddoo is doing internally if there is a
       problem.     problem.
   
       A Debug line consists of the Debug keyword, followed by the name of the     A Debug line consists of the Debug keyword, followed by the name of the
       program to debug (ssuuddoo, vviissuuddoo, ssuuddoorreeppllaayy), the debug file name and a     program to debug (ssuuddoo, vviissuuddoo, ssuuddoorreeppllaayy), the debug file name and a
       comma-separated list of debug flags.  The debug flag syntax used by     comma-separated list of debug flags.  The debug flag syntax used by ssuuddoo
       ssuuddoo and the _s_u_d_o_e_r_s plugin is _s_u_b_s_y_s_t_e_m@_p_r_i_o_r_i_t_y but the plugin is     and the _s_u_d_o_e_r_s plugin is _s_u_b_s_y_s_t_e_m@_p_r_i_o_r_i_t_y but the plugin is free to
       free to use a different format so long as it does not include a command     use a different format so long as it does not include a comma (`,').
       ,. 
   
       For instance:     For instance:
   
        Debug sudo /var/log/sudo_debug all@warn,plugin@info           Debug sudo /var/log/sudo_debug all@warn,plugin@info
   
       would log all debugging statements at the _w_a_r_n level and higher in     would log all debugging statements at the _w_a_r_n level and higher in
       addition to those at the _i_n_f_o level for the plugin subsystem.     addition to those at the _i_n_f_o level for the plugin subsystem.
   
       Currently, only one Debug entry per program is supported.  The sudo     Currently, only one Debug entry per program is supported.  The ssuuddoo Debug
       Debug entry is shared by the ssuuddoo front end, ssuuddooeeddiitt and the plugins.     entry is shared by the ssuuddoo front end, ssuuddooeeddiitt and the plugins.  A
       A future release may add support for per-plugin Debug lines and/or     future release may add support for per-plugin Debug lines and/or support
       support for multiple debugging files for a single program.     for multiple debugging files for a single program.
   
       The priorities used by the ssuuddoo front end, in order of decreasing     The priorities used by the ssuuddoo front end, in order of decreasing
       severity, are: _c_r_i_t, _e_r_r, _w_a_r_n, _n_o_t_i_c_e, _d_i_a_g, _i_n_f_o, _t_r_a_c_e and _d_e_b_u_g.     severity, are: _c_r_i_t, _e_r_r, _w_a_r_n, _n_o_t_i_c_e, _d_i_a_g, _i_n_f_o, _t_r_a_c_e and _d_e_b_u_g.
       Each priority, when specified, also includes all priorities higher than     Each priority, when specified, also includes all priorities higher than
       it.  For example, a priority of _n_o_t_i_c_e would include debug messages     it.  For example, a priority of _n_o_t_i_c_e would include debug messages
       logged at _n_o_t_i_c_e and higher.     logged at _n_o_t_i_c_e and higher.
   
       The following subsystems are used by ssuuddoo:     The following subsystems are used by the ssuuddoo front-end:
   
       _a_l_l       matches every subsystem     _a_l_l         matches every subsystem
   
       _a_r_g_s      command line argument processing     _a_r_g_s        command line argument processing
   
       _c_o_n_v      user conversation     _c_o_n_v        user conversation
   
       _e_d_i_t      sudoedit     _e_d_i_t        sudoedit
   
       _e_x_e_c      command execution     _e_x_e_c        command execution
   
       _m_a_i_n      ssuuddoo main function     _m_a_i_n        ssuuddoo main function
   
       _n_e_t_i_f     network interface handling     _n_e_t_i_f       network interface handling
   
       _p_c_o_m_m     communication with the plugin     _p_c_o_m_m       communication with the plugin
   
       _p_l_u_g_i_n    plugin configuration     _p_l_u_g_i_n      plugin configuration
   
       _p_t_y       pseudo-tty related code     _p_t_y         pseudo-tty related code
   
       _s_e_l_i_n_u_x   SELinux-specific handling     _s_e_l_i_n_u_x     SELinux-specific handling
   
       _u_t_i_l      utility functions     _u_t_i_l        utility functions
   
       _u_t_m_p      utmp handling     _u_t_m_p        utmp handling
   
RREETTUURRNN VVAALLUUEESSEEXXIITT VVAALLUUEE
       Upon successful execution of a program, the exit status from ssuuddoo will     Upon successful execution of a program, the exit status from _s_u_d_o will
       simply be the exit status of the program that was executed.     simply be the exit status of the program that was executed.
   
       Otherwise, ssuuddoo exits with a value of 1 if there is a     Otherwise, ssuuddoo exits with a value of 1 if there is a
       configuration/permission problem or if ssuuddoo cannot execute the given     configuration/permission problem or if ssuuddoo cannot execute the given
       command.  In the latter case the error string is printed to the     command.  In the latter case the error string is printed to the standard
       standard error.  If ssuuddoo cannot _s_t_a_t(2) one or more entries in the     error.  If ssuuddoo cannot stat(2) one or more entries in the user's PATH, an
       user's PATH, an error is printed on stderr.  (If the directory does not     error is printed on stderr.  (If the directory does not exist or if it is
       exist or if it is not really a directory, the entry is ignored and no     not really a directory, the entry is ignored and no error is printed.)
       error is printed.)  This should not happen under normal circumstances.     This should not happen under normal circumstances.  The most common
       The most common reason for _s_t_a_t(2) to return "permission denied" is if     reason for stat(2) to return ``permission denied'' is if you are running
       you are running an automounter and one of the directories in your PATH     an automounter and one of the directories in your PATH is on a machine
       is on a machine that is currently unreachable.     that is currently unreachable.
   
 SSEECCUURRIITTYY NNOOTTEESS  SSEECCUURRIITTYY NNOOTTEESS
       ssuuddoo tries to be safe when executing external commands.     ssuuddoo tries to be safe when executing external commands.
   
       To prevent command spoofing, ssuuddoo checks "." and "" (both denoting     To prevent command spoofing, ssuuddoo checks "." and "" (both denoting
       current directory) last when searching for a command in the user's PATH     current directory) last when searching for a command in the user's PATH
       (if one or both are in the PATH).  Note, however, that the actual PATH     (if one or both are in the PATH).  Note, however, that the actual PATH
       environment variable is _n_o_t modified and is passed unchanged to the     environment variable is _n_o_t modified and is passed unchanged to the
       program that ssuuddoo executes.     program that ssuuddoo executes.
   
       Please note that ssuuddoo will normally only log the command it explicitly     Please note that ssuuddoo will normally only log the command it explicitly
       runs.  If a user runs a command such as sudo su or sudo sh, subsequent     runs.  If a user runs a command such as sudo su or sudo sh, subsequent
       commands run from that shell are not subject to ssuuddoo's security policy.     commands run from that shell are not subject to ssuuddoo's security policy.
       The same is true for commands that offer shell escapes (including most     The same is true for commands that offer shell escapes (including most
       editors).  If I/O logging is enabled, subsequent commands will have     editors).  If I/O logging is enabled, subsequent commands will have their
       their input and/or output logged, but there will not be traditional     input and/or output logged, but there will not be traditional logs for
       logs for those commands.  Because of this, care must be taken when     those commands.  Because of this, care must be taken when giving users
       giving users access to commands via ssuuddoo to verify that the command     access to commands via ssuuddoo to verify that the command does not
       does not inadvertently give the user an effective root shell.  For more     inadvertently give the user an effective root shell.  For more
       information, please see the PREVENTING SHELL ESCAPES section in     information, please see the _P_R_E_V_E_N_T_I_N_G _S_H_E_L_L _E_S_C_A_P_E_S section in
       _s_u_d_o_e_r_s(4).     sudoers(4).
   
       To prevent the disclosure of potentially sensitive information, ssuuddoo     To prevent the disclosure of potentially sensitive information, ssuuddoo
       disables core dumps by default while it is executing (they are re-     disables core dumps by default while it is executing (they are re-enabled
       enabled for the command that is run).  To aid in debugging ssuuddoo     for the command that is run).  To aid in debugging ssuuddoo crashes, you may
       crashes, you may wish to re-enable core dumps by setting     wish to re-enable core dumps by setting ``disable_coredump'' to false in
       "disable_coredump" to false in the _/_e_t_c_/_s_u_d_o_._c_o_n_f file.     the _/_e_t_c_/_s_u_d_o_._c_o_n_f file as follows:
   
        Set disable_coredump false           Set disable_coredump false
   
       Note that by default, most operating systems disable core dumps from     Note that by default, most operating systems disable core dumps from
       setuid programs, which includes ssuuddoo.  To actually get a ssuuddoo core file     setuid programs, which includes ssuuddoo.  To actually get a ssuuddoo core file
       you may need to enable core dumps for setuid processes.  On BSD and     you may need to enable core dumps for setuid processes.  On BSD and Linux
       Linux systems this is accomplished via the sysctl command, on Solaris     systems this is accomplished via the sysctl command, on Solaris the
       the coreadm command can be used.     coreadm command can be used.
   
 EENNVVIIRROONNMMEENNTT  EENNVVIIRROONNMMEENNTT
       ssuuddoo utilizes the following environment variables.  The security policy     ssuuddoo utilizes the following environment variables.  The security policy
       has control over the content of the command's environment.     has control over the actual content of the command's environment.
   
       EDITOR          Default editor to use in --ee (sudoedit) mode if neither     EDITOR           Default editor to use in --ee (sudoedit) mode if neither
                       SUDO_EDITOR nor VISUAL is set                      SUDO_EDITOR nor VISUAL is set.
   
       MAIL            In --ii mode or when _e_n_v___r_e_s_e_t is enabled in _s_u_d_o_e_r_s, set     MAIL             In --ii mode or when _e_n_v___r_e_s_e_t is enabled in _s_u_d_o_e_r_s, set
                       to the mail spool of the target user                      to the mail spool of the target user.
   
       HOME            Set to the home directory of the target user if --ii or     HOME             Set to the home directory of the target user if --ii or --HH
                       --HH are specified, _e_n_v___r_e_s_e_t or _a_l_w_a_y_s___s_e_t___h_o_m_e are set                      are specified, _e_n_v___r_e_s_e_t or _a_l_w_a_y_s___s_e_t___h_o_m_e are set in
                       in _s_u_d_o_e_r_s, or when the --ss option is specified and                      _s_u_d_o_e_r_s, or when the --ss option is specified and _s_e_t___h_o_m_e
                       _s_e_t___h_o_m_e is set in _s_u_d_o_e_r_s                      is set in _s_u_d_o_e_r_s.
   
       PATH            May be overridden by the security policy.     PATH             May be overridden by the security policy.
   
       SHELL           Used to determine shell to run with -s option     SHELL            Used to determine shell to run with --ss option.
   
       SUDO_ASKPASS    Specifies the path to a helper program used to read the     SUDO_ASKPASS     Specifies the path to a helper program used to read the
                       password if no terminal is available or if the -A                      password if no terminal is available or if the --AA option
                       option is specified.                      is specified.
   
       SUDO_COMMAND    Set to the command run by sudo     SUDO_COMMAND     Set to the command run by sudo.
   
       SUDO_EDITOR     Default editor to use in --ee (sudoedit) mode     SUDO_EDITOR      Default editor to use in --ee (sudoedit) mode.
   
       SUDO_GID        Set to the group ID of the user who invoked sudo     SUDO_GID         Set to the group ID of the user who invoked sudo.
   
       SUDO_PROMPT     Used as the default password prompt     SUDO_PROMPT      Used as the default password prompt.
   
       SUDO_PS1        If set, PS1 will be set to its value for the program     SUDO_PS1         If set, PS1 will be set to its value for the program
                       being run                      being run.
   
       SUDO_UID        Set to the user ID of the user who invoked sudo     SUDO_UID         Set to the user ID of the user who invoked sudo.
   
       SUDO_USER       Set to the login of the user who invoked sudo     SUDO_USER        Set to the login name of the user who invoked sudo.
   
       USER            Set to the target user (root unless the --uu option is     USER             Set to the target user (root unless the --uu option is
                       specified)                      specified).
   
       VISUAL          Default editor to use in --ee (sudoedit) mode if     VISUAL           Default editor to use in --ee (sudoedit) mode if
                       SUDO_EDITOR is not set                      SUDO_EDITOR is not set.
   
 FFIILLEESS  FFIILLEESS
       _/_e_t_c_/_s_u_d_o_._c_o_n_f          ssuuddoo front end configuration     _/_e_t_c_/_s_u_d_o_._c_o_n_f            ssuuddoo front end configuration
   
 EEXXAAMMPPLLEESS  EEXXAAMMPPLLEESS
       Note: the following examples assume a properly configured security     Note: the following examples assume a properly configured security
       policy.     policy.
   
       To get a file listing of an unreadable directory:     To get a file listing of an unreadable directory:
   
        $ sudo ls /usr/local/protected           $ sudo ls /usr/local/protected
   
       To list the home directory of user yaz on a machine where the file     To list the home directory of user yaz on a machine where the file system
       system holding ~yaz is not exported as root:     holding ~yaz is not exported as root:
   
        $ sudo -u yaz ls ~yaz           $ sudo -u yaz ls ~yaz
   
       To edit the _i_n_d_e_x_._h_t_m_l file as user www:     To edit the _i_n_d_e_x_._h_t_m_l file as user www:
   
        $ sudo -u www vi ~www/htdocs/index.html           $ sudo -u www vi ~www/htdocs/index.html
   
       To view system logs only accessible to root and users in the adm group:     To view system logs only accessible to root and users in the adm group:
   
        $ sudo -g adm view /var/log/syslog           $ sudo -g adm view /var/log/syslog
   
       To run an editor as jim with a different primary group:     To run an editor as jim with a different primary group:
   
        $ sudo -u jim -g audio vi ~jim/sound.txt           $ sudo -u jim -g audio vi ~jim/sound.txt
   
       To shutdown a machine:     To shut down a machine:
   
        $ sudo shutdown -r +15 "quick reboot"           $ sudo shutdown -r +15 "quick reboot"
   
       To make a usage listing of the directories in the /home partition.     To make a usage listing of the directories in the /home partition.  Note
       Note that this runs the commands in a sub-shell to make the cd and file     that this runs the commands in a sub-shell to make the cd and file
       redirection work.     redirection work.
   
        $ sudo sh -c "cd /home ; du -s * | sort -rn > USAGE"           $ sudo sh -c "cd /home ; du -s * | sort -rn > USAGE"
   
 SSEEEE AALLSSOO  SSEEEE AALLSSOO
       _g_r_e_p(1)_s_u(1)_s_t_a_t(2)_l_o_g_i_n___c_a_p(3)_p_a_s_s_w_d(4)_s_u_d_o_e_r_s(4),     grep(1)su(1)stat(2)login_cap(3)passwd(4)sudoers(4),
       _s_u_d_o___p_l_u_g_i_n(1m), _s_u_d_o_r_e_p_l_a_y(1m), _v_i_s_u_d_o(1m)     sudo_plugin(1m), sudoreplay(1m), visudo(1m)
   
   HHIISSTTOORRYY
        See the HISTORY file in the ssuuddoo distribution
        (http://www.sudo.ws/sudo/history.html) for a brief history of sudo.
   
 AAUUTTHHOORRSS  AAUUTTHHOORRSS
       Many people have worked on ssuuddoo over the years; this version consists     Many people have worked on ssuuddoo over the years; this version consists of
       of code written primarily by:     code written primarily by:
   
               Todd C. Miller           Todd C. Miller
   
       See the CONTRIBUTORS file in the ssuuddoo distribution     See the CONTRIBUTORS file in the ssuuddoo distribution
       (http://www.sudo.ws/sudo/contributors.html) for a list of people who     (http://www.sudo.ws/sudo/contributors.html) for an exhaustive list of
       have contributed to ssuuddoo.     people who have contributed to ssuuddoo.
   
 HHIISSTTOORRYY  
        See the HISTORY file in the ssuuddoo distribution  
        (http://www.sudo.ws/sudo/history.html) for a brief history of sudo.  
   
 CCAAVVEEAATTSS  CCAAVVEEAATTSS
       There is no easy way to prevent a user from gaining a root shell if     There is no easy way to prevent a user from gaining a root shell if that
       that user is allowed to run arbitrary commands via ssuuddoo.  Also, many     user is allowed to run arbitrary commands via ssuuddoo.  Also, many programs
       programs (such as editors) allow the user to run commands via shell     (such as editors) allow the user to run commands via shell escapes, thus
       escapes, thus avoiding ssuuddoo's checks.  However, on most systems it is     avoiding ssuuddoo's checks.  However, on most systems it is possible to
       possible to prevent shell escapes with the _s_u_d_o_e_r_s(4) module's _n_o_e_x_e_c     prevent shell escapes with the sudoers(4) plugin's _n_o_e_x_e_c functionality.
       functionality. 
   
       It is not meaningful to run the cd command directly via sudo, e.g.,     It is not meaningful to run the cd command directly via sudo, e.g.,
   
        $ sudo cd /usr/local/protected           $ sudo cd /usr/local/protected
   
       since when the command exits the parent process (your shell) will still     since when the command exits the parent process (your shell) will still
       be the same.  Please see the EXAMPLES section for more information.     be the same.  Please see the _E_X_A_M_P_L_E_S section for more information.
   
       Running shell scripts via ssuuddoo can expose the same kernel bugs that     Running shell scripts via ssuuddoo can expose the same kernel bugs that make
       make setuid shell scripts unsafe on some operating systems (if your OS     setuid shell scripts unsafe on some operating systems (if your OS has a
       has a /dev/fd/ directory, setuid shell scripts are generally safe).     /dev/fd/ directory, setuid shell scripts are generally safe).
   
 BBUUGGSS  BBUUGGSS
       If you feel you have found a bug in ssuuddoo, please submit a bug report at     If you feel you have found a bug in ssuuddoo, please submit a bug report at
       http://www.sudo.ws/sudo/bugs/     http://www.sudo.ws/sudo/bugs/
   
 SSUUPPPPOORRTT  SSUUPPPPOORRTT
       Limited free support is available via the sudo-users mailing list, see     Limited free support is available via the sudo-users mailing list, see
       http://www.sudo.ws/mailman/listinfo/sudo-users to subscribe or search     http://www.sudo.ws/mailman/listinfo/sudo-users to subscribe or search the
       the archives.     archives.
   
 DDIISSCCLLAAIIMMEERR  DDIISSCCLLAAIIMMEERR
       ssuuddoo is provided ``AS IS'' and any express or implied warranties,     ssuuddoo is provided ``AS IS'' and any express or implied warranties,
       including, but not limited to, the implied warranties of     including, but not limited to, the implied warranties of merchantability
       merchantability and fitness for a particular purpose are disclaimed.     and fitness for a particular purpose are disclaimed.  See the LICENSE
       See the LICENSE file distributed with ssuuddoo or     file distributed with ssuuddoo or http://www.sudo.ws/sudo/license.html for
       http://www.sudo.ws/sudo/license.html for complete details.     complete details.
   
Sudo 1.8.6                       July 10, 2012                      Sudo 1.8.6
 
1.8.5                           March 15, 2012                        SUDO(1m) 

Removed from v.1.1.1.2  
changed lines
  Added in v.1.1.1.3


FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>