立即与支持人员聊天
与支持团队交流

Safeguard for Sudo 7.1.1 - Administration Guide

Introducing Safeguard for Sudo Planning Deployment Installation and Configuration Upgrade Safeguard for Sudo System Administration Managing Security Policy Administering Log and Keystroke Files Troubleshooting Safeguard Variables Safeguard programs Installation Packages Unsupported Sudo Options Safeguard for Sudo Policy Evaluation

pmshell_allow

Description

Type list READ/WRITE

pmshell_allow contains a list of regular expressions identifying Privilege Manager for Unix shell subcommands that are pre-authorized. The list may contain regular expressions.

This variable is applicable to pmsh, pmcsh, pmksh, and pmbash.

On startup, the Privilege Manager for Unix shell programs load this list. Any shell subcommand entered by the user that matches one of these expressions is pre-authorized, that is, it will be allowed to run locally without any further authorization by pmmasterd, and will not be logged as an event. By default, the list is empty.

Example
pmshell_allow = {"ls","grep"};
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级