FreeBSD Port: sudo-1.6.8.12_1
Tom Judge
tom at tomjudge.com
Fri Jun 9 08:36:45 UTC 2006
Hi,
Sorry I forgot to attach the patch to the last email.
I have created a small patch for sudo that allows it to do an LDAP sub
tree search for the sudoers entries, which in turn allows you to
categorize sudo rights within the LDAP tree. Would it be possible to
get this added to the sudo port?
Regards
Tom J
-------------- next part --------------
--- ldap.c.orig Fri Jun 9 09:14:24 2006
+++ ldap.c Fri Jun 9 09:17:55 2006
@@ -833,7 +833,7 @@
/* Parse Default Options */
- rc=ldap_search_s(ld,ldap_conf.base,LDAP_SCOPE_ONELEVEL,
+ rc=ldap_search_s(ld,ldap_conf.base,LDAP_SCOPE_SUBTREE,
"cn=defaults",NULL,0,&result);
if (!rc && (entry=ldap_first_entry(ld,result))){
if (ldap_conf.debug) printf("found:%s\n",ldap_get_dn(ld,entry));
@@ -871,7 +871,7 @@
filt=strdup("sudoUser=+*");
}
if (ldap_conf.debug) printf("ldap search '%s'\n",filt);
- rc=ldap_search_s(ld,ldap_conf.base,LDAP_SCOPE_ONELEVEL,
+ rc=ldap_search_s(ld,ldap_conf.base,LDAP_SCOPE_SUBTREE,
filt,NULL,0,&result);
if (rc) {
if (ldap_conf.debug) printf("nothing found for '%s'\n",filt);
More information about the freebsd-ports
mailing list