Bug 882

Summary: Log Enhancement (Syslog and sudo.log)
Product: Sudo Reporter: Rohit <banro21>
Component: SudoAssignee: Todd C. Miller <Todd.Miller>
Status: NEW ---    
Severity: enhancement    
Priority: normal    
Version: 1.8.27   
Hardware: All   
OS: All   

Description Rohit 2019-05-15 17:04:23 MDT 
I would like to request an enhancement to the auth logs/syslog which is logged by sudo 

Its required for audit purpose to find out which group gave your the permissions to run the command. Even though cvtsudoers allow that capability to to offline checks, but lot of theings could have changed on the host from teh time command was run to the cvtsudoers check is performed (new groups being added in sudoers, user membership to the groups changed etc.)


I would like to propose adding the GROUP information in the log to reflect the group which was evaluated as part of sudoers policy

e.g.
May 10 15:42:42 notebook sudo: user : TTY=pts/1 ; PWD=/home/user ; USER=root ; GROUP=wheel COMMAND=/bin/su -
Comment 1 Rohit 2019-09-16 17:58:08 MDT 
Hi Todd,

Is there anyway to prioritize this request? Additionally, if there are some pointers you could give on how to get that achieved by modifying sudo, we could also try our that approach and send out a pull request.

Regards,
Rohit