Created attachment 407750 [details] Patch for sudoers Description of problem: The 1.7.0 release of sudo introduced a new option, visiblepw, which is now needed to be enabled in order to allow remote command execution using sudo, e.g.: ssh foo@bar sudo baz Although this can be found in upstream documentation or worked around using ssh's -t option, the sudoers that is shipped with sudo in RHEL 5 mentions only the requiretty option. The visiblepw option should be added to sudoers either commented out (default is off) or not commented out but set to off using negation, i.e.: Defaults !visiblepw I'm proposing the later option as that will ensure that this flag is off even when the default value changes. Version-Release number of selected component (if applicable): 1.7.2p1-6 Patch for sudoers attached.
Created attachment 413721 [details] Patch for sudoers
Technical note added. If any revisions are required, please edit the "Technical Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: A comment regarding the "visiblepw" option of the "Defaults" directive has been added to the default /etc/sudoers file to clarify its usage.
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2011-0079.html