alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity

sg: add setuid wrapper. (newgrp is a symlink to sg and was already setuid).

Browse source 
sudo: add ability for wheel users to change group (as well as user)
This commit is contained in:
obadz 2015-03-30 23:50:45 +01:00
parent e07ea5cf77
commit be7f104502
2 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
nixos/modules/programs/shadow.nix
View file

@ -100,7 +100,7 @@ in
chgpasswd = { rootOK = true; }; chgpasswd = { rootOK = true; };
}; };
security.setuidPrograms = [ "passwd" "chfn" "su" "newgrp" security.setuidPrograms = [ "passwd" "chfn" "su" "sg" "newgrp"
"newuidmap" "newgidmap" # new in shadow 4.2.x "newuidmap" "newgidmap" # new in shadow 4.2.x
]; ];

2
nixos/modules/security/sudo.nix
View file

@ -77,7 +77,7 @@ in
root ALL=(ALL) SETENV: ALL root ALL=(ALL) SETENV: ALL
# Users in the "wheel" group can do anything. # Users in the "wheel" group can do anything.
%wheel ALL=(ALL) ${if cfg.wheelNeedsPassword then "" else "NOPASSWD: ALL, "}SETENV: ALL %wheel ALL=(ALL:ALL) ${if cfg.wheelNeedsPassword then "" else "NOPASSWD: ALL, "}SETENV: ALL
${cfg.extraConfig} ${cfg.extraConfig}
''; '';