Annotation of src/usr.bin/sudo/def_data.in, Revision 1.7
1.1 millert 1: #
2: # Format:
3: #
4: # var_name
5: # TYPE
6: # description (or NULL)
1.3 millert 7: # array of struct def_values if TYPE == T_TUPLE
1.1 millert 8: #
9:
10: syslog
11: T_LOGFAC|T_BOOL
12: "Syslog facility if syslog is being used for logging: %s"
13: syslog_goodpri
14: T_LOGPRI
15: "Syslog priority to use when user authenticates successfully: %s"
16: syslog_badpri
17: T_LOGPRI
18: "Syslog priority to use when user authenticates unsuccessfully: %s"
19: long_otp_prompt
20: T_FLAG
21: "Put OTP prompt on its own line"
22: ignore_dot
23: T_FLAG
24: "Ignore '.' in $PATH"
25: mail_always
26: T_FLAG
27: "Always send mail when sudo is run"
28: mail_badpass
29: T_FLAG
30: "Send mail if user authentication fails"
31: mail_no_user
32: T_FLAG
33: "Send mail if the user is not in sudoers"
34: mail_no_host
35: T_FLAG
36: "Send mail if the user is not in sudoers for this host"
37: mail_no_perms
38: T_FLAG
39: "Send mail if the user is not allowed to run a command"
40: tty_tickets
41: T_FLAG
42: "Use a separate timestamp for each user/tty combo"
43: lecture
1.3 millert 44: T_TUPLE|T_BOOL
1.1 millert 45: "Lecture user the first time they run sudo"
1.3 millert 46: never once always
47: lecture_file
48: T_STR|T_PATH|T_BOOL
49: "File containing the sudo lecture: %s"
1.1 millert 50: authenticate
51: T_FLAG
52: "Require users to authenticate by default"
53: root_sudo
54: T_FLAG
55: "Root may run sudo"
56: log_host
57: T_FLAG
58: "Log the hostname in the (non-syslog) log file"
59: log_year
60: T_FLAG
61: "Log the year in the (non-syslog) log file"
62: shell_noargs
63: T_FLAG
64: "If sudo is invoked with no arguments, start a shell"
65: set_home
66: T_FLAG
67: "Set $HOME to the target user when starting a shell with -s"
68: always_set_home
69: T_FLAG
70: "Always set $HOME to the target user's home directory"
71: path_info
72: T_FLAG
73: "Allow some information gathering to give useful error messages"
74: fqdn
75: T_FLAG
76: "Require fully-qualified hostnames in the sudoers file"
77: insults
78: T_FLAG
79: "Insult the user when they enter an incorrect password"
80: requiretty
81: T_FLAG
82: "Only allow the user to run sudo if they have a tty"
83: env_editor
84: T_FLAG
85: "Visudo will honor the EDITOR environment variable"
86: rootpw
87: T_FLAG
88: "Prompt for root's password, not the users's"
89: runaspw
90: T_FLAG
91: "Prompt for the runas_default user's password, not the users's"
92: targetpw
93: T_FLAG
94: "Prompt for the target user's password, not the users's"
95: use_loginclass
96: T_FLAG
97: "Apply defaults in the target user's login class if there is one"
98: set_logname
99: T_FLAG
100: "Set the LOGNAME and USER environment variables"
101: stay_setuid
102: T_FLAG
103: "Only set the effective uid to the target user, not the real uid"
104: preserve_groups
105: T_FLAG
106: "Don't initialize the group vector to that of the target user"
107: loglinelen
108: T_UINT|T_BOOL
109: "Length at which to wrap log file lines (0 for no wrap): %d"
110: timestamp_timeout
111: T_INT|T_BOOL
112: "Authentication timestamp timeout: %d minutes"
113: passwd_timeout
114: T_UINT|T_BOOL
115: "Password prompt timeout: %d minutes"
116: passwd_tries
117: T_UINT
118: "Number of tries to enter a password: %d"
119: umask
120: T_MODE|T_BOOL
121: "Umask to use or 0777 to use user's: 0%o"
122: logfile
123: T_STR|T_BOOL|T_PATH
124: "Path to log file: %s"
125: mailerpath
126: T_STR|T_BOOL|T_PATH
127: "Path to mail program: %s"
128: mailerflags
129: T_STR|T_BOOL
130: "Flags for mail program: %s"
131: mailto
132: T_STR|T_BOOL
133: "Address to send mail to: %s"
134: mailsub
135: T_STR
136: "Subject line for mail messages: %s"
137: badpass_message
138: T_STR
139: "Incorrect password message: %s"
140: timestampdir
141: T_STR|T_PATH
142: "Path to authentication timestamp dir: %s"
1.2 millert 143: timestampowner
144: T_STR
145: "Owner of the authentication timestamp dir: %s"
1.1 millert 146: exempt_group
147: T_STR|T_BOOL
148: "Users in this group are exempt from password and PATH requirements: %s"
149: passprompt
150: T_STR
151: "Default password prompt: %s"
1.7 ! millert 152: passprompt_override
! 153: T_FLAG
! 154: "If set, passprompt will override system prompt in all cases."
1.1 millert 155: runas_default
156: T_STR
157: "Default user to run commands as: %s"
1.3 millert 158: *set_runaspw
1.1 millert 159: editor
160: T_STR|T_PATH
161: "Path to the editor for use by visudo: %s"
1.3 millert 162: listpw
163: T_TUPLE|T_BOOL
164: "When to require a password for 'list' pseudocommand: %s"
165: never any all always
166: verifypw
167: T_TUPLE|T_BOOL
168: "When to require a password for 'verify' pseudocommand: %s"
1.4 millert 169: never all any always
1.3 millert 170: noexec
171: T_FLAG
172: "Preload the dummy exec functions contained in 'noexec_file'"
173: noexec_file
174: T_STR|T_PATH
175: "File containing dummy exec functions: %s"
1.6 millert 176: ignore_local_sudoers
177: T_FLAG
178: "If LDAP directory is up, do we ignore local sudoers file"
179: setenv
180: T_FLAG
181: "Allow users to set arbitrary environment variables"
182: env_reset
183: T_FLAG
184: "Reset the environment to a default set of variables"
1.1 millert 185: env_check
186: T_LIST|T_BOOL
187: "Environment variables to check for sanity:"
188: env_delete
189: T_LIST|T_BOOL
190: "Environment variables to remove:"
191: env_keep
192: T_LIST|T_BOOL
193: "Environment variables to preserve:"