As root: sudo -l -U nobody includes the command in the output, but sudo -l -U nobody /usr/bin/ping fails.
This got broken in 9f695f0fcc749b3cdebc453ba4fdeae84114f3ae (#134).
I think the idea was to check whether the user running this is allowed to run the pseudo command list as the target user, but runas_pw should only be set this way when testing for list, not when searching for the actual command.
millert
commented
1 year ago
Given this entry:
As root:
sudo -l -U nobodyincludes the command in the output, butsudo -l -U nobody /usr/bin/pingfails.This got broken in 9f695f0fcc749b3cdebc453ba4fdeae84114f3ae (#134).
I think the idea was to check whether the user running this is allowed to run the pseudo command
listas the target user, butrunas_pwshould only be set this way when testing forlist, not when searching for the actual command.