Diff for /embedaddon/sudo/doc/sudoers.ldap.cat between versions 1.1.1.4 and 1.1.1.6

version 1.1.1.4, 2013/07/22 10:46:12 version 1.1.1.6, 2014/06/15 16:12:54
Line 285  DDEESSCCRRIIPPTTIIOONN Line 285  DDEESSCCRRIIPPTTIIOONN
      by ssuuddoo are honored.  Configuration options are listed below in upper       by ssuuddoo are honored.  Configuration options are listed below in upper
      case but are parsed in a case-independent manner.       case but are parsed in a case-independent manner.
   
        The pound sign (`#') is used to indicate a comment.  Both the comment
        character and any text after it, up to the end of the line, are ignored.
      Long lines can be continued with a backslash (`\') as the last character       Long lines can be continued with a backslash (`\') as the last character
      on the line.  Note that leading white space is removed from the beginning       on the line.  Note that leading white space is removed from the beginning
      of lines even when the continuation character is used.       of lines even when the continuation character is used.
Line 344  DDEESSCCRRIIPPTTIIOONN Line 346  DDEESSCCRRIIPPTTIIOONN
            An LDAP filter which is used to restrict the set of records             An LDAP filter which is used to restrict the set of records
            returned when performing a ssuuddoo LDAP query.  Typically, this is of             returned when performing a ssuuddoo LDAP query.  Typically, this is of
            the form attribute=value or             the form attribute=value or
           (&(attribute=value)(attribute2=value2)).           (&(attribute=value)(attribute2=value2)).  The default search filter
            is: objectClass=sudoRole.  If _l_d_a_p___f_i_l_t_e_r is omitted, no search
            filter will be used.
   
      SSUUDDOOEERRSS__TTIIMMEEDD _o_n_/_t_r_u_e_/_y_e_s_/_o_f_f_/_f_a_l_s_e_/_n_o       SSUUDDOOEERRSS__TTIIMMEEDD _o_n_/_t_r_u_e_/_y_e_s_/_o_f_f_/_f_a_l_s_e_/_n_o
            Whether or not to evaluate the sudoNotBefore and sudoNotAfter             Whether or not to evaluate the sudoNotBefore and sudoNotAfter
Line 465  DDEESSCCRRIIPPTTIIOONN Line 469  DDEESSCCRRIIPPTTIIOONN
                  tls_key /var/ldap/key3.db                   tls_key /var/ldap/key3.db
   
            Tivoli Directory Server:             Tivoli Directory Server:
                 tls_cert /usr/ldap/ldapkey.kdb                 tls_key /usr/ldap/ldapkey.kdb
            When using Tivoli LDAP libraries, this file may also contain             When using Tivoli LDAP libraries, this file may also contain
            Certificate Authority and client certificates and may be encrypted.             Certificate Authority and client certificates and may be encrypted.
   
      TTLLSS__KKEEYYPPWW _s_e_c_r_e_t       TTLLSS__KKEEYYPPWW _s_e_c_r_e_t
            The TTLLSS__KKEEYYPPWW contains the password used to decrypt the key             The TTLLSS__KKEEYYPPWW contains the password used to decrypt the key
            database on clients using the Tivoli Directory Server LDAP library.             database on clients using the Tivoli Directory Server LDAP library.
              This should be a simple string without quotes.  The password may
              not include the comment character (`#') and escaping of special
              characters with a backslash (`\') is not supported.  If this option
              is used, _/_e_t_c_/_l_d_a_p_._c_o_n_f must not be world-readable to avoid
              exposing the password.  Alternately, a _s_t_a_s_h _f_i_l_e can be used to
              store the password in encrypted form (see below).
   
            If no TTLLSS__KKEEYYPPWW is specified, a _s_t_a_s_h _f_i_l_e will be used if it             If no TTLLSS__KKEEYYPPWW is specified, a _s_t_a_s_h _f_i_l_e will be used if it
            exists.  The _s_t_a_s_h _f_i_l_e must have the same path as the file             exists.  The _s_t_a_s_h _f_i_l_e must have the same path as the file
            specified by TTLLSS__KKEEYY, but use a .sth file extension instead of             specified by TTLLSS__KKEEYY, but use a .sth file extension instead of
            .kdb, e.g. ldapkey.sth.  The default ldapkey.kdb that ships with             .kdb, e.g. ldapkey.sth.  The default ldapkey.kdb that ships with
            Tivoli Directory Server is encrypted with the password             Tivoli Directory Server is encrypted with the password
           ssl_password.  This option is only supported by the Tivoli LDAP           ssl_password.  The _g_s_k_8_c_a_p_i_c_m_d utility can be used to manage the
           libraries.           key database and create a _s_t_a_s_h _f_i_l_e.  This option is only
            supported by the Tivoli LDAP libraries.
   
      TTLLSS__RRAANNDDFFIILLEE _f_i_l_e _n_a_m_e       TTLLSS__RRAANNDDFFIILLEE _f_i_l_e _n_a_m_e
            The TTLLSS__RRAANNDDFFIILLEE parameter specifies the path to an entropy source             The TTLLSS__RRAANNDDFFIILLEE parameter specifies the path to an entropy source
Line 800  DDIISSCCLLAAIIMMEERR Line 812  DDIISSCCLLAAIIMMEERR
      file distributed with ssuuddoo or http://www.sudo.ws/sudo/license.html for       file distributed with ssuuddoo or http://www.sudo.ws/sudo/license.html for
      complete details.       complete details.
   
Sudo 1.8.7                      April 25, 2013                      Sudo 1.8.7Sudo 1.8.10                    February 7, 2014                    Sudo 1.8.10

Removed from v.1.1.1.4  
changed lines
  Added in v.1.1.1.6


FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>