© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
After some discussion on IRC, this problem occurs when log_input and log_output are provided as modifications to the standard sudoers configuration.
Its possible to exclude this default from certain users using:
Defaults:nova !log_input,
so I think this is a better solution for installations wishing to provide full audit of user accounts use of sudo, but exclude sudo calls from system accounts such as neutron and nova.
This can be applied either in sudoers.d (in a new file, not the package provided one) or in /etc/sudoers itself.
I'm going to mark this bug as a Won't Fix - we should assume minimal configuration defaults as part of the packaging, and let end-users tailor their sudo configuration as required.