blob: 6218aee9004b21131c321ce2ccd663bcf6a3b1b3 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
|
#!/bin/sh
set -e
# remove old link
if [ -L /etc/alternatives/sudo ]; then
rm /etc/alternatives/sudo
fi
# remove legacy conffile no longer delivered
if [ -f /etc/sudoers.dist ]; then
rm /etc/sudoers.dist
fi
# complain if no sudoers file is present
if [ ! -f /etc/sudoers ];then
echo "WARNING: /etc/sudoers not present!";
fi
# modify nsswitch.conf if needed
if [ -z "`grep \"^sudoers:\" /etc/nsswitch.conf`" ]
then
echo "sudoers: files ldap" >> /etc/nsswitch.conf
fi
# make sure sudoers has the correct permissions and owner/group
if [ -f /etc/sudoers ];then
chown root:root /etc/sudoers
chmod 440 /etc/sudoers
fi
# create symlink to ease transition to new path for ldap config
# if old config file exists and new one doesn't
if [ -e /etc/ldap/ldap.conf -a ! -e /etc/sudo-ldap.conf ];then
ln -s ldap/ldap.conf /etc/sudo-ldap.conf
fi
# if we've gotten this far .. remove the saved, unchanged old sudoers file
rm -f /etc/sudoers.pre-conffile
# before 1.8.7-1 sudo-ldap used /etc/init.d/sudo instead of /etc/init.d/sudo-ldap,
# let's make sure that's taken care of
if [ "$1" = "configure" ] && dpkg --compare-versions "$2" lt-nl "1.8.21p2-2~" ; then
update-rc.d sudo remove
fi
#DEBHELPER#
# make sure we have a sudo group
[ -n "`getent group sudo`" ] && exit 0 # we're finished if there is a group sudo:
# start search with gid 27
gid="27"
while [ -n "`getent group $gid | cut -d: -f3`" ];do
gid=`expr $gid + 1`
done
if [ "$gid" -ne "27" ];then
echo "On Debian we normally use gid 27 for 'sudo'."
gname="`getent group 27 | cut -d: -f1`"
echo "However, on your system gid 27 is group '$gname'."
echo ""
echo "Would you like me to stop configuring sudo so that you can change this?";
while true;do
echo -n "(Enter 'yes' to stop, enter to continue): "
read ans
[ "$ans" = "" ] && break
if [ "$ans" = "yes" -o "$ans" = "YES" ];then
echo "'dpkg --pending --configure' will restart the configuration."
exit 1;
fi
echo "Please enter exactly 'yes' to stop, or press the enter key to continue without stopping"
done
fi
echo "Creating group 'sudo' with gid = $gid";
groupadd -g $gid sudo
echo ""
|
