command/sudoers: Fix whitelisting to take GH-277 into account

This commit is contained in:
Fabio Rehm 2014-05-12 23:05:42 -03:00
parent 638e134265
commit 1cf8ce50e4

View file

@ -142,7 +142,7 @@ Whitelist.add '/bin/chown', /\\A\\d+:\\d+\\z/, %r{\\A/tmp/.*/rootfs\.tar\.gz\\z}
Whitelist.add '/usr/bin/lxc-version' Whitelist.add '/usr/bin/lxc-version'
Whitelist.add '/usr/bin/lxc-ls' Whitelist.add '/usr/bin/lxc-ls'
Whitelist.add '/usr/bin/lxc-info', '--name', /.*/ Whitelist.add '/usr/bin/lxc-info', '--name', /.*/
Whitelist.add '/usr/bin/lxc-create', '--template', /.*/, '--name', /.*/, '**' Whitelist.add '/usr/bin/lxc-create', '-B', /.*/, '--template', /.*/, '--name', /.*/, '**'
Whitelist.add '/usr/bin/lxc-destroy', '--name', /.*/ Whitelist.add '/usr/bin/lxc-destroy', '--name', /.*/
Whitelist.add '/usr/bin/lxc-start', '-d', '--name', /.*/, '**' Whitelist.add '/usr/bin/lxc-start', '-d', '--name', /.*/, '**'
Whitelist.add '/usr/bin/lxc-stop', '--name', /.*/ Whitelist.add '/usr/bin/lxc-stop', '--name', /.*/