I am unable to get the #includedir function to work with sudo. This works just fine on all my CentOS 5.6 servers, but on 6 it is being ignored. I have this line in the file /etc/sudoers.d/zabbix-puppet zabbix ALL=NOPASSWD: /var/lib/zabbix/bin/start_puppet However sudo still requires a password. If I put that same line into /etc/sudoers file , there is no password prompt. At the end of my sudoers file I have this line #includedir "/etc/sudoers.d" It seems that line is being ignored. The permissions on the file in that directory are 0440. Any ideas would be greatly appreciated. Thanks - Trey -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20110725/77e0048c/attachment-0001.html>
Correction, seems to be broken in 5.6 as well...I also had this interesting argument with sudo... # visudo -c -f /etc/sudoers.d/zabbix-puppet>>> /etc/sudoers.d/zabbix-puppet: syntax error near line 0 <<<parse error in /etc/sudoers.d/zabbix-puppet near line 0 (((NOTE: I made absolutely no changes , just did ":q"))) # visudo -f /etc/sudoers.d/zabbix-puppet>>> /etc/sudoers.d/zabbix-puppet: syntax error near line 0 <<<# visudo -c -f /etc/sudoers.d/zabbix-puppet /etc/sudoers.d/zabbix-puppet: parsed OK :-/ - Trey On Mon, Jul 25, 2011 at 6:41 PM, Trey Dockendorf <treydock at gmail.com> wrote:> I am unable to get the #includedir function to work with sudo. This works > just fine on all my CentOS 5.6 servers, but on 6 it is being ignored. I > have this line in the file /etc/sudoers.d/zabbix-puppet > > zabbix ALL=NOPASSWD: /var/lib/zabbix/bin/start_puppet > > However sudo still requires a password. If I put that same line into > /etc/sudoers file , there is no password prompt. At the end of my sudoers > file I have this line > > #includedir "/etc/sudoers.d" > > It seems that line is being ignored. > > The permissions on the file in that directory are 0440. > > Any ideas would be greatly appreciated. > > Thanks > - Trey >-------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20110725/0ea70692/attachment-0001.html>
On Mon, Jul 25, 2011 at 7:41 PM, Trey Dockendorf <treydock at gmail.com> wrote:> > I am unable to get the #includedir function to work with sudo. ?This works > just fine on all my CentOS 5.6 servers, but on 6 it is being ignored. ?I > have this line in the file /etc/sudoers.d/zabbix-puppet > zabbix ALL=NOPASSWD: /var/lib/zabbix/bin/start_puppet > However sudo still requires a password. ?If I put that same line into > /etc/sudoers file , there is no password prompt. ?At the end of my sudoers > file I have this line > #includedir "/etc/sudoers.d" > It seems that line is being ignored. > The permissions on the file in that directory are 0440.Have you tried "zabbix ALL = NOPASSWD: /var/lib/zabbix/bin/start_puppet" (spaces before and after "=")?
On 07/25/11 4:41 PM, Trey Dockendorf wrote:> I am unable to get the #includedir function to work with sudo. This > works just fine on all my CentOS 5.6 servers, but on 6 it is being > ignored. I have this line in the file /etc/sudoers.d/zabbix-puppet > > zabbix ALL=NOPASSWD: /var/lib/zabbix/bin/start_puppet > > However sudo still requires a password. If I put that same line into > /etc/sudoers file , there is no password prompt. At the end of my > sudoers file I have this line > > #includedir "/etc/sudoers.d" >did you edit these files with visudo -f /path/to/file ? I'd try that. -- john r pierce N 37, W 122 santa cruz ca mid-left coast