Back to bug 789937
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Christopher J Suleski | 2012-03-07 15:09:02 UTC | Priority | medium | high |
| CC | csuleski | |||
| Severity | medium | high | ||
| Christopher J Suleski | 2012-03-26 19:42:43 UTC | Blocks | 806907 | |
| Jamie Duncan | 2012-03-29 18:55:08 UTC | CC | jduncan | |
| Siddharth Nagar | 2012-04-09 18:57:31 UTC | Status | NEW | ASSIGNED |
| Assignee | platform-rfe | jkodak | ||
| Daniel Kopeček | 2012-06-06 14:48:04 UTC | Group | redhat | |
| Target Release | --- | 6.4 | ||
| Version | unspecified | 6.4 | ||
| Component | Security, System Administration | sudo | ||
| CC | dkopecek | |||
| Assignee | jkodak | dkopecek | ||
| QA Contact | ohudlick | qe-baseos-security | ||
| Target Milestone | --- | rc | ||
| Product | RHEL RFE | Red Hat Enterprise Linux 6 | ||
| Dave Sullivan | 2012-06-11 17:15:11 UTC | CC | dsulliva | |
| Dmitri Pal | 2012-06-14 15:48:10 UTC | CC | dpal | |
| Jake Kodak | 2012-07-05 18:43:33 UTC | Blocks | 772279 | |
| Siddharth Nagar | 2012-07-17 01:21:36 UTC | Blocks | 840699 | |
| Siddharth Nagar | 2012-07-17 03:44:30 UTC | Blocks | 782183 | |
| Peter Vrabec | 2012-07-30 11:14:42 UTC | CC | pvrabec | |
| Karel Srot | 2012-07-30 15:31:28 UTC | CC | ksrot | |
| Karel Srot | 2012-08-02 09:12:29 UTC | Flags | needinfo?(rdassen) | |
| J.H.M. Dassen (Ray) | 2012-08-02 11:35:05 UTC | Flags | needinfo?(rdassen) | needinfo?(csuleski) needinfo?(dsulliva) |
| Dave Sullivan | 2012-08-07 01:28:03 UTC | Flags | needinfo?(dsulliva) | |
| Christopher J Suleski | 2012-08-13 14:41:00 UTC | Flags | needinfo?(csuleski) | |
| David Spurek | 2012-09-17 15:28:10 UTC | CC | dspurek | |
| Daniel Kopeček | 2012-09-25 15:55:14 UTC | Status | ASSIGNED | MODIFIED |
| errata-xmlrpc | 2012-09-25 16:00:01 UTC | Status | MODIFIED | ON_QA |
| Daniel Kopeček | 2012-09-25 17:53:35 UTC | Fixed In Version | sudo-1.8.6p3-1.el6 | |
| Martin Prpič | 2012-11-16 12:50:50 UTC | Doc Text | Treating Matches Authoritatively in Look Ups of sudoers Entries The sudo utility is able to consult the /etc/nsswitch.conf file for sudoers entries and look them up in files or in LDAP. Previously when a match was found in the first database of sudoers entries, the look up operation still continued in other databases (including files). In Red Hat Enterprise Linux 5.9 an option was added to the /etc/nsswitch.conf file that allows users to specify a database after which a match of a sudoers entry is sufficient. This eliminates the need to query any other databases; thus improving the performance of sudoers entry look ups in large environments. This behavior is not enabled by default and must be configured by adding the [SUCCESS=return] string after a selected database. When a match is found in a database that directly precedes this string, no other databases are queried. | |
| Doc Type | Enhancement | Release Note | ||
| Aleš Mareček | 2012-11-26 12:13:34 UTC | Status | ON_QA | VERIFIED |
| CC | amarecek | |||
| QA Contact | qe-baseos-security | amarecek | ||
| Martin Prpič | 2013-01-03 12:10:39 UTC | Doc Text | Treating Matches Authoritatively in Look Ups of sudoers Entries The sudo utility is able to consult the /etc/nsswitch.conf file for sudoers entries and look them up in files or in LDAP. Previously when a match was found in the first database of sudoers entries, the look up operation still continued in other databases (including files). In Red Hat Enterprise Linux 5.9 an option was added to the /etc/nsswitch.conf file that allows users to specify a database after which a match of a sudoers entry is sufficient. This eliminates the need to query any other databases; thus improving the performance of sudoers entry look ups in large environments. This behavior is not enabled by default and must be configured by adding the [SUCCESS=return] string after a selected database. When a match is found in a database that directly precedes this string, no other databases are queried. | Treating Matches Authoritatively in Look Ups of sudoers Entries The sudo utility is able to consult the /etc/nsswitch.conf file for sudoers entries and look them up in files or in LDAP. Previously when a match was found in the first database of sudoers entries, the look up operation still continued in other databases (including files). In Red Hat Enterprise Linux 6.4 an option was added to the /etc/nsswitch.conf file that allows users to specify a database after which a match of a sudoers entry is sufficient. This eliminates the need to query any other databases; thus improving the performance of sudoers entry look ups in large environments. This behavior is not enabled by default and must be configured by adding the [SUCCESS=return] string after a selected database. When a match is found in a database that directly precedes this string, no other databases are queried. |
| errata-xmlrpc | 2013-02-07 00:48:13 UTC | Status | VERIFIED | RELEASE_PENDING |
| errata-xmlrpc | 2013-02-21 09:44:08 UTC | Status | RELEASE_PENDING | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2013-02-21 04:44:08 UTC | |||
| Jake Kodak | 2013-03-13 17:10:41 UTC | Blocks | 921203 | |
| Jake Kodak | 2013-03-13 17:13:45 UTC | Blocks | 921203 | |
| Simon Green | 2013-07-03 04:23:40 UTC | CC | rbinkhor |
Back to bug 789937