visudo: error if a user is called "list"

Question

visudo: error if a user is called "list"

frukto opened this issue 2 years ago · 3 comments

In 1.9.13p1 visudo reports an error if "as_whom"(Runas_Member) is literally list:

alice ALL=(list) NOPASSWD: /usr/bin/cmd
           ^~~~
What now?

Apparently this is handled as a syntax error now. This behavior was not present in 1.9.12p2-1 and may be related to the new list pseudo command introduced in 1.9.13?

Edit: As a workaround the Runas_Member can be quoted, this works in 1.9.13p1 and previous versions:

alice ALL=("list") NOPASSWD: /usr/bin/cmd

1.9.13p1 just landed in Debian 12 (bookworm)

Answer 1 · 2023-02-28T16:15:22.000Z

Thanks for reporting this, that was an unintended side-effect when the "list" command was added. I just committed a fix associated tests for the issue.

Answer 2 · 2023-03-01T06:07:22.000Z

🥳 That was quick, awesome! Thank you for fixing this, @millert. From my side, you may close the issue.

Answer 3 · 2023-03-06T14:27:13.000Z

Fixed in 1.9.13p3