Your message dated Fri, 28 Dec 2007 19:47:18 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#451241: fixed in sudo 1.6.9p10-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: sudo
Version: 1.6.9p6-1
Severity: minor
Tags: patch
User: [EMAIL PROTECTED]
Usertags: origin-ubuntu hardy ubuntu-patch
Hello,
It is a common situation to use sudo for acquiring administrative
rights and disable the root password entirely. In this situation it is
grave to deinstall sudo, so there should be an extra check.
The attached prerm will warn you about that issue, refuse to uninstall
sudo if root does not have a password, and only allow you to really
uninstall it if you set SUDO_FORCE_REMOVE=yes.
Thank you for considering,
Martin
--
Martin Pitt http://www.piware.de
Ubuntu Developer http://www.ubuntu.com
Debian Developer http://www.debian.org
#!/bin/sh
set -e
check_password() {
if [ ! "$SUDO_FORCE_REMOVE" = "yes" ]; then
# let's check whether the root account is locked.
# if it is, we're not going another step. No Sirreee!
passwd=$(getent shadow root|cut -f2 -d:)
passwd1=$(echo "$passwd" |cut -c1)
# Note: we do need the 'xfoo' syntax here, since POSIX special-cases
# the $passwd value '!' as negation.
if [ "x$passwd" = "x*" ] || [ "x$passwd1" = "x!" ]; then
# yup, password is locked
echo "You have asked that the sudo package be removed,"
echo "but no root password has been set."
echo "Without sudo, you may not be able to gain administrative
privileges."
echo
echo "If you would prefer to access the root account with su(1)"
echo "or by logging in directly,"
echo "you must set a root password with \"sudo passwd\"."
echo
echo "If you have arranged other means to access the root account,"
echo "and you are sure this is what you want,"
echo "you may bypass this check by setting an environment variable "
echo "(export SUDO_FORCE_REMOVE=yes)."
echo
echo "Refusing to remove sudo."
exit 1
fi
fi
}
case $1 in
remove)
check_password;
;;
*)
;;
esac
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---
Source: sudo
Source-Version: 1.6.9p10-1
We believe that the bug you reported is fixed in the latest version of
sudo, which is due to be installed in the Debian FTP archive:
sudo-ldap_1.6.9p10-1_i386.deb
to pool/main/s/sudo/sudo-ldap_1.6.9p10-1_i386.deb
sudo_1.6.9p10-1.diff.gz
to pool/main/s/sudo/sudo_1.6.9p10-1.diff.gz
sudo_1.6.9p10-1.dsc
to pool/main/s/sudo/sudo_1.6.9p10-1.dsc
sudo_1.6.9p10-1_i386.deb
to pool/main/s/sudo/sudo_1.6.9p10-1_i386.deb
sudo_1.6.9p10.orig.tar.gz
to pool/main/s/sudo/sudo_1.6.9p10.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Bdale Garbee <[EMAIL PROTECTED]> (supplier of updated sudo package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 28 Dec 2007 11:44:30 -0700
Source: sudo
Binary: sudo-ldap sudo
Architecture: source i386
Version: 1.6.9p10-1
Distribution: unstable
Urgency: low
Maintainer: Bdale Garbee <[EMAIL PROTECTED]>
Changed-By: Bdale Garbee <[EMAIL PROTECTED]>
Description:
sudo - Provide limited super user privileges to specific users
sudo-ldap - Provide limited super user privileges to specific users
Closes: 451241 454409
Changes:
sudo (1.6.9p10-1) unstable; urgency=low
.
* new upstream version
* tweak default password prompt as %u doesn't make sense. Accept patch from
Patrick Schoenfeld (recommend upstream accept it too) that adds a %p and
uses it by default, closes: #454409
* accept patch from Martin Pitt that adds a prerm making it difficult to
"accidentally" remove sudo when there is no root password set on the
system, closes: #451241
Files:
38ff384a394f5dd085e3f2720d1ff29e 617 admin optional sudo_1.6.9p10-1.dsc
16db2a1213159a1fac8239eab58108f5 579302 admin optional
sudo_1.6.9p10.orig.tar.gz
d0c2d26a318cc356fed56554b9ef2994 23080 admin optional sudo_1.6.9p10-1.diff.gz
580ca64b1f3aa6e1f44168bc45758653 171724 admin optional sudo_1.6.9p10-1_i386.deb
1e42105f659fb318d3eb3ccde2bfbdf3 182766 admin optional
sudo-ldap_1.6.9p10-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHdU6iZKfAp/LPAagRAhusAJ0f+2axdPZTkQuuFaayi7InDhBPawCfR0Md
Zkx7KKSigLwy4ZKaDkrsyu4=
=TFlM
-----END PGP SIGNATURE-----
--- End Message ---