[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[lmi-commits] [lmi] master b44f25c 2/2: Work around a corporate server's
|
From: |
Greg Chicares |
|
Subject: |
[lmi-commits] [lmi] master b44f25c 2/2: Work around a corporate server's restrictions |
|
Date: |
Mon, 15 Jun 2020 16:38:37 -0400 (EDT) |
branch: master
commit b44f25c68e6ac16e2df7d4bd59d8044024324375
Author: Gregory W. Chicares <gchicares@sbcglobal.net>
Commit: Gregory W. Chicares <gchicares@sbcglobal.net>
Work around a corporate server's restrictions
A certain corporate redhat server's /etc/sudoers file has:
some_alias = (root) NOPASSWD: ALL
so member of the "lmi" group there can impersonate root but not any
other user. Allowed affected commands to fail innocuously.
---
lmi_setup_01r.sh | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/lmi_setup_01r.sh b/lmi_setup_01r.sh
index 44cd5b7..77cd495 100755
--- a/lmi_setup_01r.sh
+++ b/lmi_setup_01r.sh
@@ -49,7 +49,7 @@ schroot --chroot=${CHRTNAME} --user=root
--directory=/tmp ./lmi_setu
schroot --chroot=${CHRTNAME} --user=root --directory=/tmp
./lmi_setup_25.sh
for user in $(echo "${CHROOT_USERS}" | tr ',' '\n'); do
{
-schroot --chroot=${CHRTNAME} --user="${user}" --directory=/tmp
./lmi_setup_25.sh
+schroot --chroot=${CHRTNAME} --user="${user}" --directory=/tmp
./lmi_setup_25.sh || echo "Oops."
} done
schroot --chroot=${CHRTNAME} --user=root --directory=/tmp
./lmi_setup_29.sh
# On a particular corporate server, root is not a sudoer.
@@ -60,7 +60,7 @@ else
fi
for user in $(echo "${CHROOT_USERS}" | tr ',' '\n'); do
{
-schroot --chroot=${CHRTNAME} --user="${user}" --directory=/tmp
./lmi_setup_40.sh
+schroot --chroot=${CHRTNAME} --user="${user}" --directory=/tmp
./lmi_setup_40.sh || echo "Oops."
} done
schroot --chroot=${CHRTNAME} --user="${NORMAL_USER}" --directory=/tmp
./lmi_setup_42.sh
schroot --chroot=${CHRTNAME} --user="${NORMAL_USER}" --directory=/tmp
./lmi_setup_43.sh