diff options
author | Francisco Redondo Marchena <francisco.marchena@codethink.co.uk> | 2014-11-18 15:32:53 +0000 |
---|---|---|
committer | Francisco Redondo Marchena <francisco.marchena@codethink.co.uk> | 2015-01-22 12:46:24 +0000 |
commit | e2cd6ba32962f78ebb0af97c5ab0aa79177b6b94 (patch) | |
tree | 53eb5dbc2483f804e3f49d3b450b5104ea9ac50d /openstack-nova.configure | |
parent | 7bce710da21b1aac38104f261a97a49151ec4613 (diff) | |
download | definitions-e2cd6ba32962f78ebb0af97c5ab0aa79177b6b94.tar.gz |
FIXUPME: do not write into sudoers directly but create a file in its folder
Diffstat (limited to 'openstack-nova.configure')
-rw-r--r-- | openstack-nova.configure | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/openstack-nova.configure b/openstack-nova.configure index ee937007..0a4d7505 100644 --- a/openstack-nova.configure +++ b/openstack-nova.configure @@ -66,4 +66,6 @@ sed -i "s/192\.168\.122\./192\.168\.1\./g" \ # Add nova to sudoers controlling which commands is running as a root # using the openstack rootwrap. ########################################################################## -echo 'nova ALL=(ALL) NOPASSWD: /usr/bin/nova-rootwrap /etc/nova/rootwrap.conf *' >> "$ROOT/etc/sudoers" +install -D -m 0440 /proc/self/fd/0 <<'EOF' "$ROOT"/etc/sudoers.d/nova-rootwrap +nova ALL=(root) NOPASSWD: /usr/bin/nova-rootwrap /etc/nova/rootwrap.conf * +EOF |