On Fri, 7 May 2010 10:10:16 -0700 (PDT) John Philips <johnphilip...@yahoo.com> wrote:
> > But this way, /etc/sudoers can't be managed by Puppet, because It > will be overwritten by puppet. You could have your script set the > immutable attribute on the sudoers file. Then puppet won't be able > to change it. > > chattr +i /etc/sudoers > > When you want puppet to start managing the file again, remove the > attribute. > > chattr -i /etc/sudoers > But this will yield puppet errors and feels a bit hackish. What about using loading pam_time.so in /etc/pam.d/sudo ? Checkout time.conf(5) and pam_time(8). You can even manage pam configuration with puppet using the augeas type. Marc -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
