{"description": "<tt>Sudo</tt>, which stands for \"su 'do'\", provides the ability to delegate authority\nto certain users, groups of users, or system administrators. When configured for system\nusers and/or groups, <tt>Sudo</tt> can allow a user or group to execute privileged commands\nthat normally only <tt>root</tt> is allowed to execute.\n<br /><br />\nFor more information on <tt>Sudo</tt> and addition <tt>Sudo</tt> configuration options, see\n<b>\n    <a xmlns='http://www.w3.org/1999/xhtml' href='https://www.sudo.ws'>https://www.sudo.ws</a></b>.", "warnings": [], "requires": [], "conflicts": [], "values": ["var_sudo_dedicated_group", "var_sudo_logfile", "var_sudo_passwd_timeout", "var_sudo_timestamp_timeout", "var_sudo_umask"], "groups": {}, "rules": ["directory_groupowner_etc_sudoersd", "directory_owner_etc_sudoersd", "directory_permissions_etc_sudoersd", "file_groupowner_etc_sudoers", "file_owner_etc_sudoers", "file_permissions_etc_sudoers", "file_permissions_sudo", "package_sudo_installed", "sudo_add_env_reset", "sudo_add_ignore_dot", "sudo_add_noexec", "sudo_add_passwd_timeout", "sudo_add_requiretty", "sudo_add_umask", "sudo_add_use_pty", "sudo_custom_logfile", "sudo_dedicated_group", "sudo_remove_no_authenticate", "sudo_remove_nopasswd", "sudo_require_authentication", "sudo_require_reauthentication", "sudo_restrict_others_executable_permission", "sudo_restrict_privilege_elevation_to_authorized", "sudo_vdsm_nopasswd", "sudoers_default_includedir", "sudoers_explicit_command_args", "sudoers_no_command_negation", "sudoers_no_root_target", "sudoers_validate_passwd"], "platform": "system_with_kernel", "platforms": ["system_with_kernel"], "inherited_platforms": [], "cpe_platform_names": ["system_with_kernel"], "title": "Sudo", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/system/software/sudo/group.yml"}