I have a task that is currently not allowed due to the current sudo rules. I need to be able to run the edit-node tool to generate ovirt-node isos containing vdsm. This tool requires root or sudo acces=

=20 The problem is that I'm extracting the tool from it's rpm since it's generated in a different jenkins job. The execution is done with a command like this: =20 sudo ${WORKSPACE}/edit-node <options> =20 AFAIK, this can't be handled in the sudoers file in any easy way. =20 Any suggestions? Or maybe simply enable universal passwordless sudo?

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iD8DBQFR7ugd2ZIOBq0ODEERAndJAJsFaQusPL85N1N34mmrcM+0vVE/6QCgvwSw Iw88qdJ3P8/pWOaCocmgu6U= =RIVO -----END PGP SIGNATURE-----

On Tue, Jul 23, 2013 at 04:27:08PM -0400, Mike Burns wrote: > I have a task that is currently not allowed due to the current sudo > rules. I need to be able to run the edit-node tool to generate > ovirt-node isos containing vdsm. This tool requires root or sudo > access. > > The problem is that I'm extracting the tool from it's rpm since it's > generated in a different jenkins job. The execution is done with a > command like this: > > sudo ${WORKSPACE}/edit-node <options> > > AFAIK, this can't be handled in the sudoers file in any easy way. > > Any suggestions? Or maybe simply enable universal passwordless sudo? I was wondering the same thing in http://gerrit.ovirt.org/17261. Since we already give permission to yum and cp to /etc/yum.repos.d, it's not hard to get some package to install extra sudo rules for yourself and have full sudo. _______________________________________________ Infra mailing list Infra(a)ovirt.org http://lists.ovirt.org/mailman/listinfo/infra