First Last Prev Next    This bug is not in your last search results.
Bug 882 - Log Enhancement (Syslog and sudo.log)
Log Enhancement (Syslog and sudo.log)
Status: NEW
Product: Sudo
Classification: Unclassified
Component: Sudo
1.8.27
All All
: normal enhancement
Assigned To: Todd C. Miller
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2019-05-15 17:04 MDT by Rohit
Modified: 2019-09-16 17:58 MDT (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Rohit 2019-05-15 17:04:23 MDT 
I would like to request an enhancement to the auth logs/syslog which is logged by sudo 

Its required for audit purpose to find out which group gave your the permissions to run the command. Even though cvtsudoers allow that capability to to offline checks, but lot of theings could have changed on the host from teh time command was run to the cvtsudoers check is performed (new groups being added in sudoers, user membership to the groups changed etc.)


I would like to propose adding the GROUP information in the log to reflect the group which was evaluated as part of sudoers policy

e.g.
May 10 15:42:42 notebook sudo: user : TTY=pts/1 ; PWD=/home/user ; USER=root ; GROUP=wheel COMMAND=/bin/su -
Comment 1 Rohit 2019-09-16 17:58:08 MDT 
Hi Todd,

Is there anyway to prioritize this request? Additionally, if there are some pointers you could give on how to get that achieved by modifying sudo, we could also try our that approach and send out a pull request.

Regards,
Rohit
First Last Prev Next    This bug is not in your last search results.