Re: Too much log for sudo.

To: debian-user@lists.debian.org
Subject: Re: Too much log for sudo.
From: Andy Smith <andy@strugglers.net>
Date: Thu, 12 Oct 2023 23:13:31 +0000
Message-id: <[🔎] ZSh9m9Jo6QB8Cc6L@mail.bitfolk.com>
In-reply-to: <ZShv/gz+UTOWP8h2@mail.bitfolk.com>
References: <[🔎] 3fbed0c1-f120-4838-813b-660e67ad9db7@rail.eu.org> <ZShv/gz+UTOWP8h2@mail.bitfolk.com>

Hello,

On Thu, Oct 12, 2023 at 10:15:26PM +0000, Andy Smith wrote:
> On Thu, Oct 12, 2023 at 05:20:58PM +0200, Erwan David wrote:
> > I see that in the logs the VALUE of the env variable is loggued.
> > How to change this ?
> 
> I don't think there is a way to stop that happening. If sudo will
> log, it logs the names and values of any environment you specify on
> its command line.
> 
> Your options as far as I am aware:

Another (gross) one:

- Abuse variables that start with LC_, as sudo on Debian is by
  default configured to preserve these. So you'd call sudo without
  any --preserve-env at all after setting two LC_* variables for
  your repo and passphrase (or just the passphrase and use a
  --preserve-env for the repo if you don't care about that one being
  logged).

Thanks,
Andy

-- 
https://bitfolk.com/ -- No-nonsense VPS hosting

Reply to:

References:
- Too much log for sudo.
  - From: Erwan David <erwan@rail.eu.org>
- Re: Too much log for sudo.
  - From: Andy Smith <andy@strugglers.net>

Prev by Date: Re: Too much log for sudo.
Next by Date: HP RP2430 RISC sysytem
Previous by thread: Re: Too much log for sudo.
Next by thread: Re: Too much log for sudo.
Index(es):
- Date
- Thread