Annotation of src/usr.bin/sudo/def_data.in, Revision 1.4
1.1 millert 1: #
2: # Format:
3: #
4: # var_name
5: # TYPE
6: # description (or NULL)
1.3 millert 7: # array of struct def_values if TYPE == T_TUPLE
1.1 millert 8: #
9:
10: syslog
11: T_LOGFAC|T_BOOL
12: "Syslog facility if syslog is being used for logging: %s"
13: syslog_goodpri
14: T_LOGPRI
15: "Syslog priority to use when user authenticates successfully: %s"
16: syslog_badpri
17: T_LOGPRI
18: "Syslog priority to use when user authenticates unsuccessfully: %s"
19: long_otp_prompt
20: T_FLAG
21: "Put OTP prompt on its own line"
22: ignore_dot
23: T_FLAG
24: "Ignore '.' in $PATH"
25: mail_always
26: T_FLAG
27: "Always send mail when sudo is run"
28: mail_badpass
29: T_FLAG
30: "Send mail if user authentication fails"
31: mail_no_user
32: T_FLAG
33: "Send mail if the user is not in sudoers"
34: mail_no_host
35: T_FLAG
36: "Send mail if the user is not in sudoers for this host"
37: mail_no_perms
38: T_FLAG
39: "Send mail if the user is not allowed to run a command"
40: tty_tickets
41: T_FLAG
42: "Use a separate timestamp for each user/tty combo"
43: lecture
1.3 millert 44: T_TUPLE|T_BOOL
1.1 millert 45: "Lecture user the first time they run sudo"
1.3 millert 46: never once always
47: lecture_file
48: T_STR|T_PATH|T_BOOL
49: "File containing the sudo lecture: %s"
1.1 millert 50: authenticate
51: T_FLAG
52: "Require users to authenticate by default"
53: root_sudo
54: T_FLAG
55: "Root may run sudo"
56: log_host
57: T_FLAG
58: "Log the hostname in the (non-syslog) log file"
59: log_year
60: T_FLAG
61: "Log the year in the (non-syslog) log file"
62: shell_noargs
63: T_FLAG
64: "If sudo is invoked with no arguments, start a shell"
65: set_home
66: T_FLAG
67: "Set $HOME to the target user when starting a shell with -s"
68: always_set_home
69: T_FLAG
70: "Always set $HOME to the target user's home directory"
71: path_info
72: T_FLAG
73: "Allow some information gathering to give useful error messages"
74: fqdn
75: T_FLAG
76: "Require fully-qualified hostnames in the sudoers file"
77: insults
78: T_FLAG
79: "Insult the user when they enter an incorrect password"
80: requiretty
81: T_FLAG
82: "Only allow the user to run sudo if they have a tty"
83: env_editor
84: T_FLAG
85: "Visudo will honor the EDITOR environment variable"
86: rootpw
87: T_FLAG
88: "Prompt for root's password, not the users's"
89: runaspw
90: T_FLAG
91: "Prompt for the runas_default user's password, not the users's"
92: targetpw
93: T_FLAG
94: "Prompt for the target user's password, not the users's"
95: use_loginclass
96: T_FLAG
97: "Apply defaults in the target user's login class if there is one"
98: set_logname
99: T_FLAG
100: "Set the LOGNAME and USER environment variables"
101: stay_setuid
102: T_FLAG
103: "Only set the effective uid to the target user, not the real uid"
104: env_reset
105: T_FLAG
106: "Reset the environment to a default set of variables"
107: preserve_groups
108: T_FLAG
109: "Don't initialize the group vector to that of the target user"
110: loglinelen
111: T_UINT|T_BOOL
112: "Length at which to wrap log file lines (0 for no wrap): %d"
113: timestamp_timeout
114: T_INT|T_BOOL
115: "Authentication timestamp timeout: %d minutes"
116: passwd_timeout
117: T_UINT|T_BOOL
118: "Password prompt timeout: %d minutes"
119: passwd_tries
120: T_UINT
121: "Number of tries to enter a password: %d"
122: umask
123: T_MODE|T_BOOL
124: "Umask to use or 0777 to use user's: 0%o"
125: logfile
126: T_STR|T_BOOL|T_PATH
127: "Path to log file: %s"
128: mailerpath
129: T_STR|T_BOOL|T_PATH
130: "Path to mail program: %s"
131: mailerflags
132: T_STR|T_BOOL
133: "Flags for mail program: %s"
134: mailto
135: T_STR|T_BOOL
136: "Address to send mail to: %s"
137: mailsub
138: T_STR
139: "Subject line for mail messages: %s"
140: badpass_message
141: T_STR
142: "Incorrect password message: %s"
143: timestampdir
144: T_STR|T_PATH
145: "Path to authentication timestamp dir: %s"
1.2 millert 146: timestampowner
147: T_STR
148: "Owner of the authentication timestamp dir: %s"
1.1 millert 149: exempt_group
150: T_STR|T_BOOL
151: "Users in this group are exempt from password and PATH requirements: %s"
152: passprompt
153: T_STR
154: "Default password prompt: %s"
155: runas_default
156: T_STR
157: "Default user to run commands as: %s"
1.3 millert 158: *set_runaspw
1.1 millert 159: editor
160: T_STR|T_PATH
161: "Path to the editor for use by visudo: %s"
1.3 millert 162: listpw
163: T_TUPLE|T_BOOL
164: "When to require a password for 'list' pseudocommand: %s"
165: never any all always
166: verifypw
167: T_TUPLE|T_BOOL
168: "When to require a password for 'verify' pseudocommand: %s"
1.4 ! millert 169: never all any always
1.3 millert 170: noexec
171: T_FLAG
172: "Preload the dummy exec functions contained in 'noexec_file'"
173: noexec_file
174: T_STR|T_PATH
175: "File containing dummy exec functions: %s"
1.1 millert 176: env_check
177: T_LIST|T_BOOL
178: "Environment variables to check for sanity:"
179: env_delete
180: T_LIST|T_BOOL
181: "Environment variables to remove:"
182: env_keep
183: T_LIST|T_BOOL
184: "Environment variables to preserve:"
1.3 millert 185: ignore_local_sudoers
186: T_FLAG
187: "If LDAP directory is up, do we ignore local sudoers file"