diff options
author | Michael Raskin <7c6f434c@mail.ru> | 2014-06-09 00:54:13 +0400 |
---|---|---|
committer | Michael Raskin <7c6f434c@mail.ru> | 2014-06-09 00:54:21 +0400 |
commit | e68a5b265a96134243a1572f43dfc4ff75dd082b (patch) | |
tree | 59f76e371310fd7764ffa451d11f320c4c3fd56a /nixos | |
parent | 4b144de36774b4e740948ec2cbc61677b2fb7456 (diff) | |
download | nixpkgs-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar nixpkgs-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.gz nixpkgs-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.bz2 nixpkgs-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.lz nixpkgs-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.xz nixpkgs-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.zst nixpkgs-e68a5b265a96134243a1572f43dfc4ff75dd082b.zip |
Enable checking sudoers syntax. Fixes #2850, probably.
Diffstat (limited to 'nixos')
-rw-r--r-- | nixos/modules/security/sudo.nix | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/nixos/modules/security/sudo.nix b/nixos/modules/security/sudo.nix index 6cfeac0d7dc..cce1e785563 100644 --- a/nixos/modules/security/sudo.nix +++ b/nixos/modules/security/sudo.nix @@ -81,10 +81,13 @@ in security.pam.services.sudo = { sshAgentAuth = true; }; environment.etc = singleton - { source = pkgs.writeText "sudoers-in" cfg.configFile; + { source = + pkgs.runCommand "sudoers" + {src = pkgs.writeText "sudoers-in" cfg.configFile; } # Make sure that the sudoers file is syntactically valid. # (currently disabled - NIXOS-66) - #"${pkgs.sudo}/sbin/visudo -f $src -c && cp $src $out"; + "${pkgs.sudo.override {keepVisudo = true;}}/sbin/visudo -f $src -c && + cp $src $out"; target = "sudoers"; mode = "0440"; }; |