add /var/log/sudo-io

git-svn-id: http://trac.vinelinux.org/repos/projects/specs@7522 ec354946-7b23-47d6-9f5a-488ba84defc7

s/sudo/sudo-sudoers-vine

@@ -24,28 +24,28 @@
 ## These are groups of related commands...
 
 ## Networking
-Cmnd_Alias NETWORKING = /sbin/route, /sbin/ifconfig, /bin/ping, /sbin/dhclient, /usr/bin/net, /sbin/iptables, /usr/bin/rfcomm, /usr/bin/wvdial, /sbin/iwconfig, /sbin/mii-tool
+#Cmnd_Alias NETWORKING = /sbin/route, /sbin/ifconfig, /bin/ping, /sbin/dhclient, /usr/bin/net, /sbin/iptables, /usr/bin/rfcomm, /usr/bin/wvdial, /sbin/iwconfig, /sbin/mii-tool
 
 ## Installation and management of software
-Cmnd_Alias SOFTWARE = /bin/rpm, /usr/bin/apt-get, /usr/bin/smart, /sbin/update-alternatives
+#Cmnd_Alias SOFTWARE = /bin/rpm, /usr/bin/apt-get, /usr/bin/smart, /sbin/update-alternatives
 
 ## Services
-Cmnd_Alias SERVICES = /sbin/service, /sbin/chkconfig
+#Cmnd_Alias SERVICES = /sbin/service, /sbin/chkconfig
 
 ## Updating the locate database
-Cmnd_Alias LOCATE = /usr/bin/updatedb
+#Cmnd_Alias LOCATE = /usr/bin/updatedb
 
 ## Storage
-Cmnd_Alias STORAGE = /sbin/fdisk, /sbin/sfdisk, /sbin/parted, /sbin/partprobe, /bin/mount, /bin/umount
+#Cmnd_Alias STORAGE = /sbin/fdisk, /sbin/sfdisk, /sbin/parted, /sbin/partprobe, /bin/mount, /bin/umount
 
 ## Delegating permissions
-Cmnd_Alias DELEGATING = /usr/sbin/visudo, /bin/chown, /bin/chmod, /bin/chgrp 
+#Cmnd_Alias DELEGATING = /usr/sbin/visudo, /bin/chown, /bin/chmod, /bin/chgrp 
 
 ## Processes
-Cmnd_Alias PROCESSES = /bin/nice, /bin/kill, /usr/bin/kill, /usr/bin/killall
+#Cmnd_Alias PROCESSES = /bin/nice, /bin/kill, /usr/bin/kill, /usr/bin/killall
 
 ## Drivers
-Cmnd_Alias DRIVERS = /sbin/modprobe
+#Cmnd_Alias DRIVERS = /sbin/modprobe
 
 # Defaults specification
 
@@ -64,6 +64,15 @@ Defaults    env_keep += "LC_TIME LC_ALL LANGUAGE LINGUAS _XKB_CHARSET XAUTHORITY
 
 Defaults    secure_path = /sbin:/bin:/usr/sbin:/usr/bin
 
+Defaults    env_editor
+
+## Other default settings (see sudoers(5))
+
+#Defaults       log_host
+#Defaults       log_input
+#Defaults       log_output
+#Defaults       log_year
+
 ## Next comes the main part: which users can run what software on 
 ## which machines (the sudoers file can be shared between multiple
 ## systems).

s/sudo/sudo-vl.spec

@@ -2,7 +2,7 @@ Summary: Allows command execution as root for specified users
 Summary(ja): スーパーユーザ権限でのコマンドの実行
 Name: sudo
 Version: 1.8.6p7
-Release: 1%{?_dist_release}
+Release: 2%{?_dist_release}
 License: ISC-style
 Group: Applications/System
 URL: http://www.sudo.ws/sudo/
@@ -49,6 +49,7 @@ autoreconf -I m4 -fv --install
   --libdir=%{_libdir} \
   --sysconfdir=%{_sysconfdir} \
   --docdir=%{_datadir}/doc/%{name}-%{version} \
+  --with-iologdir=/var/log/sudo-io \
   --with-pam \
   --with-pam-login \
   --with-logging=syslog \
@@ -70,6 +71,7 @@ mkdir $RPM_BUILD_ROOT
 make install DESTDIR="$RPM_BUILD_ROOT" install_uid=`id -u` install_gid=`id -g` sudoers_uid=`id -u` sudoers_gid=`id -g`
 chmod 755 $RPM_BUILD_ROOT%{_bindir}/* $RPM_BUILD_ROOT%{_sbindir}/* 
 install -p -d -m 700 $RPM_BUILD_ROOT/var/run/sudo
+install -p -d -m 700 $RPM_BUILD_ROOT/var/log/sudo-io
 install -p -d -m 750 $RPM_BUILD_ROOT/etc/sudoers.d
 install -p -c -m 0440 %{SOURCE1} $RPM_BUILD_ROOT/etc/sudoers
 
@@ -115,6 +117,7 @@ rm -rf $RPM_BUILD_ROOT
 %config(noreplace) /etc/pam.d/sudo
 %config(noreplace) /etc/pam.d/sudo-i
 %dir /var/run/sudo
+%attr(0750,root,root) %dir /var/log/sudo-io
 %attr(4111,root,root) %{_bindir}/sudo
 %attr(4111,root,root) %{_bindir}/sudoedit
 %attr(4111,root,root) %{_bindir}/sudoreplay
@@ -137,6 +140,10 @@ rm -rf $RPM_BUILD_ROOT
 /bin/chmod 0440 /etc/sudoers || :
 
 %changelog
+* Mon Mar 04 2013 Daisuke SUZUKI <daisuke@linux.or.jp> 1.8.6p7-2
+- add /var/log/sudo-io
+- add some comments to default sudoers
+
 * Mon Mar 04 2013 Daisuke SUZUKI <daisuke@linux.or.jp> 1.8.6p7-1
 - update to 1.8.6p7
 - drop unneeded patches.