Package: sudo Version: 1.8.2-1 Severity: normal Apparently, there's a new directive in the default sudoers now: | Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
Without it, "sudo visudo" will fail. When asking Y to let dpkg overwrite the existing conffile on the system, people might lose root access to the entire machine. (No, I said N and manually run "sudo /usr/sbin/visudo" then merging it.) Like when env_reset became default (one of the first things I remove), this changes the default behaviour in an unsafe way, and as such should not (IMHO) be forced on the user on upgrade, i.e. upgrading existing systems should keep the older behaviour (while warning about it, probably). Also, visudo now asks | press return to edit /etc/sudoers.d/README: which, while cosmetic, will lead to much frustration and some confusion under the sysadmins. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.18-6-686 (SMP w/1 CPU core) Locale: LANG=C, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/mksh Versions of packages sudo depends on: pn libc6 <none> (no description available) ii libpam-modules 1.1.3-1 Pluggable Authentication Modules f ii libpam0g 1.1.3-1 Pluggable Authentication Modules l sudo recommends no packages. sudo suggests no packages. -- Configuration Files: /etc/sudoers [Errno 13] Permission denied: u'/etc/sudoers' /etc/sudoers.d/README [Errno 13] Permission denied: u'/etc/sudoers.d/README' -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
