From: Michael Prokop <mika@grml.org>
Date: Mon, 28 May 2012 10:49:43 +0000 (+0200)
Subject: make_chroot_jail: suppport sudo configuration via /etc/sudoers.d
X-Git-Tag: v2.0.7~1
X-Git-Url: http://git.grml.org/?p=grml-scripts.git;a=commitdiff_plain;h=62aa56f051bfd33679842f751d368c9e5d337a45

make_chroot_jail: suppport sudo configuration via /etc/sudoers.d
---

diff --git a/usr_sbin/make_chroot_jail b/usr_sbin/make_chroot_jail
index d14d112..083c2d2 100755
--- a/usr_sbin/make_chroot_jail
+++ b/usr_sbin/make_chroot_jail
@@ -278,10 +278,17 @@ echo
 # skip the creation of the new account
 if [ "$1" != "update" ]; then
 
-# Modifiy /etc/sudoers to enable chroot-ing for users
+# Modify sudo config to enable chroot-ing for users,
 # must be removed by hand if account is deleted
-echo "Modifying /etc/sudoers"
-echo "$CHROOT_USERNAME       ALL=NOPASSWD: `which chroot`, /bin/su - $CHROOT_USERNAME" >> /etc/sudoers
+SUDOERS="$CHROOT_USERNAME       ALL=NOPASSWD: $(which chroot), /bin/su - $CHROOT_USERNAME"
+if [ -d /etc/sudoers.d ]; then
+  echo "Installing sudoers configuration file /etc/sudoers.d/jail-$CHROOT_USERNAME"
+  echo "$SUDOERS" > "/etc/sudoers.d/jail-$CHROOT_USERNAME"
+  chmod 0440 "/etc/sudoers.d/jail-$CHROOT_USERNAME"
+else
+  echo "Modifying /etc/sudoers"
+  echo "$SUDOERS" >> /etc/sudoers
+fi
 
 # Define HomeDir for simple referencing
 HOMEDIR="$JAILPATH/home/$CHROOT_USERNAME"