Sudoers snapd.conf will be ignored

And on top of that, secure_path cannot be overwritten or appended to. We stopped shipping the file on Fedora and Arch. It should be dropped from the deb too.

I've proposed a PR removing the file from snapd https://github.com/snapcore/snapd/pull/8885

Yet I can still find the file in Ubuntu 20.04, although the current version of snapd is 2.49:

$ dpkg -S /etc/sudoers.d/99-snapd.conf
snapd: /etc/sudoers.d/99-snapd.conf
$
$ dpkg -l snapd
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name Version Architecture Description
+++-==============-============-============-============================================
ii snapd 2.49.2+20.04 amd64 Daemon and tooling that enable snap packages
$

@Dimitri, is that a fresh installation of 20.04 or has it been around for a while? I don't think we remove the file on systems that got it before, but it shouldn't be installed on fresh, new images like 20.04.2 for example

Ah, it might be a left-over from a previous release. Yet, I seem to recall this machine runs a clean Ubuntu 20.04 installation.

$ sudo rm /etc/sudoers.d/99-snapd.conf
$
$ sudo apt reinstall snapd
Reading package lists... Done
Building dependency tree
Reading state information... Done
0 upgraded, 0 newly installed, 1 reinstalled, 0 to remove and 10 not upgraded.
[...]
$
$ ls /etc/sudoers.d/99-snapd.conf
ls: cannot access '/etc/sudoers.d/99-snapd.conf': No such file or directory
$

I don't have much experience with DEB packaging, but perhaps /etc/sudoers.d/99-snapd.conf is not properly removed when updating the snapd package.

AFAIU existing conf files get special treatment even if the new version of the package does not ship them. The filas are still considered as owned by the package and do not get automatically removed.