you forgot https_proxy and no_proxy... however, im against this change since it allows a user to redirect a program they need privileges to use to an arbitrary proxy they specify, something there is no good mitigation against.
dlg On 16/01/2012, at 12:15 AM, Peter Hessler wrote: > When you are in a place that requires proxy configs to reach the > internet, it would be very nice if you could then use pkg_add. > > So, add ftp_proxy and http_proxy to the default env_keep variable. > > OK? > > Index: usr.bin/sudo/sudoers > =================================================================== > RCS file: /cvs/openbsd/src/usr.bin/sudo/sudoers,v > retrieving revision 1.25 > diff -u -p -r1.25 sudoers > --- usr.bin/sudo/sudoers 26 Oct 2009 19:28:26 -0000 1.25 > +++ usr.bin/sudo/sudoers 15 Jan 2012 14:13:48 -0000 > @@ -20,7 +20,7 @@ Defaults env_keep +="DESTDIR DISTDIR EDI > Defaults env_keep +="MAKECONF MULTI_PACKAGES NOMAN OKAY_FILES OWNER PKG_CACHE" > Defaults env_keep +="PKG_DBDIR PKG_DESTDIR PKG_PATH PKG_TMPDIR PORTSDIR" > Defaults env_keep +="RELEASEDIR SHARED_ONLY SSH_AUTH_SOCK SUBPACKAGE VISUAL" > -Defaults env_keep +="WRKOBJDIR" > +Defaults env_keep +="WRKOBJDIR ftp_proxy http_proxy" > > # Uncomment to disable the lecture the first time you run sudo > #Defaults !lecture > > > > -- > Conscious is when you are aware of something and conscience is when you > wish you weren't.
