sudo/sme9/sudo-1.8.6p3-ALL-with-negation-manupdate.patch

diff -up sudo-1.8.6p3/doc/sudoers.cat.orig sudo-1.8.6p3/doc/sudoers.cat
--- sudo-1.8.6p3/doc/sudoers.cat.orig   2012-09-18 15:57:43.000000000 +0200
+++ sudo-1.8.6p3/doc/sudoers.cat        2013-07-10 14:57:53.791093835 +0200
@@ -668,11 +668,24 @@ SSUUDDOOEERRSS FFIILLEE FFO
      since in a command context, it allows the user to run aannyy command on the
      system.
 
-     An exclamation point (`!') can be used as a logical _n_o_t operator both in
-     an _a_l_i_a_s and in front of a Cmnd.  This allows one to exclude certain
-     values.  Note, however, that using a `!' in conjunction with the built-in
-     AALLLL alias to allow a user to run ``all but a few'' commands rarely works
-     as intended (see _S_E_C_U_R_I_T_Y _N_O_T_E_S below).
+     An exclamation point (`!') can be used as a logical _n_o_t operator in a
+     list or _a_l_i_a_s as well as in front of a Cmnd.  This allows one to exclude
+     certain values.  For the `!' operator to be effective, there must be
+     something for it to exclude.  For example, to match all users except for
+     root one would use:
+
+         ALL,!root
+
+     If the AALLLL, is omitted, as in:
+
+         !root
+
+     it would explicitly deny root but not match any other users.  This is
+     different from a true ``negation'' operator.
+
+     Note, however, that using a `!' in conjunction with the built-in AALLLL
+     alias to allow a user to run ``all but a few'' commands rarely works as
+     intended (see _S_E_C_U_R_I_T_Y _N_O_T_E_S below).
 
      Long lines can be continued with a backslash (`\') as the last character
      on the line.
diff -up sudo-1.8.6p3/doc/sudoers.man.in.orig sudo-1.8.6p3/doc/sudoers.man.in
--- sudo-1.8.6p3/doc/sudoers.man.in.orig        2013-07-10 13:00:20.987336061 +0200
+++ sudo-1.8.6p3/doc/sudoers.man.in     2013-07-10 14:57:53.792093837 +0200
@@ -1490,11 +1490,37 @@ An exclamation point
 (`\&!')
 can be used as a logical
 \fInot\fR
-operator both in an
+operator in a list or
 \fIalias\fR
-and in front of a
+as well as in front of a
 \fRCmnd\fR.
 This allows one to exclude certain values.
+For the
+`\&!'
+operator to be effective, there must be something for it to exclude.
+For example, to match all users except for root one would use:
+.nf
+.sp
+.RS 4n
+ALL,!root
+.RE
+.fi
+.PP
+If the
+\fBALL\fR,
+is omitted, as in:
+.nf
+.sp
+.RS 4n
+!root
+.RE
+.fi
+.PP
+it would explicitly deny root but not match any other users.
+This is different from a true
+``negation''
+operator.
+.PP
 Note, however, that using a
 `\&!'
 in conjunction with the built-in
diff -up sudo-1.8.6p3/doc/sudoers.mdoc.in.orig sudo-1.8.6p3/doc/sudoers.mdoc.in
--- sudo-1.8.6p3/doc/sudoers.mdoc.in.orig       2012-09-18 15:57:43.000000000 +0200
+++ sudo-1.8.6p3/doc/sudoers.mdoc.in    2013-07-10 14:57:53.793093839 +0200
@@ -1393,11 +1393,31 @@ An exclamation point
 .Pq Ql \&!
 can be used as a logical
 .Em not
-operator both in an
+operator in a list or
 .Em alias
-and in front of a
+as well as in front of a
 .Li Cmnd .
 This allows one to exclude certain values.
+For the
+.Ql \&!
+operator to be effective, there must be something for it to exclude.
+For example, to match all users except for root one would use:
+.Bd -literal -offset 4n
+ALL,!root
+.Ed
+.Pp
+If the
+.Sy ALL ,
+is omitted, as in:
+.Bd -literal -offset 4n
+!root
+.Ed
+.Pp
+it would explicitly deny root but not match any other users.
+This is different from a true
+.Dq negation
+operator.
+.Pp
 Note, however, that using a
 .Ql \&!
 in conjunction with the built-in
1	jpp	1.1	diff -up sudo-1.8.6p3/doc/sudoers.cat.orig sudo-1.8.6p3/doc/sudoers.cat
2			--- sudo-1.8.6p3/doc/sudoers.cat.orig 2012-09-18 15:57:43.000000000 +0200
3			+++ sudo-1.8.6p3/doc/sudoers.cat 2013-07-10 14:57:53.791093835 +0200
4			@@ -668,11 +668,24 @@ SSUUDDOOEERRSS FFIILLEE FFO
5			since in a command context, it allows the user to run aannyy command on the
6			system.
7
8			- An exclamation point (`!') can be used as a logical _n_o_t operator both in
9			- an _a_l_i_a_s and in front of a Cmnd. This allows one to exclude certain
10			- values. Note, however, that using a `!' in conjunction with the built-in
11			- AALLLL alias to allow a user to run ``all but a few'' commands rarely works
12			- as intended (see _S_E_C_U_R_I_T_Y _N_O_T_E_S below).
13			+ An exclamation point (`!') can be used as a logical _n_o_t operator in a
14			+ list or _a_l_i_a_s as well as in front of a Cmnd. This allows one to exclude
15			+ certain values. For the `!' operator to be effective, there must be
16			+ something for it to exclude. For example, to match all users except for
17			+ root one would use:
18			+
19			+ ALL,!root
20			+
21			+ If the AALLLL, is omitted, as in:
22			+
23			+ !root
24			+
25			+ it would explicitly deny root but not match any other users. This is
26			+ different from a true ``negation'' operator.
27			+
28			+ Note, however, that using a `!' in conjunction with the built-in AALLLL
29			+ alias to allow a user to run ``all but a few'' commands rarely works as
30			+ intended (see _S_E_C_U_R_I_T_Y _N_O_T_E_S below).
31
32			Long lines can be continued with a backslash (`\') as the last character
33			on the line.
34			diff -up sudo-1.8.6p3/doc/sudoers.man.in.orig sudo-1.8.6p3/doc/sudoers.man.in
35			--- sudo-1.8.6p3/doc/sudoers.man.in.orig 2013-07-10 13:00:20.987336061 +0200
36			+++ sudo-1.8.6p3/doc/sudoers.man.in 2013-07-10 14:57:53.792093837 +0200
37			@@ -1490,11 +1490,37 @@ An exclamation point
38			(`\&!')
39			can be used as a logical
40			\fInot\fR
41			-operator both in an
42			+operator in a list or
43			\fIalias\fR
44			-and in front of a
45			+as well as in front of a
46			\fRCmnd\fR.
47			This allows one to exclude certain values.
48			+For the
49			+`\&!'
50			+operator to be effective, there must be something for it to exclude.
51			+For example, to match all users except for root one would use:
52			+.nf
53			+.sp
54			+.RS 4n
55			+ALL,!root
56			+.RE
57			+.fi
58			+.PP
59			+If the
60			+\fBALL\fR,
61			+is omitted, as in:
62			+.nf
63			+.sp
64			+.RS 4n
65			+!root
66			+.RE
67			+.fi
68			+.PP
69			+it would explicitly deny root but not match any other users.
70			+This is different from a true
71			+``negation''
72			+operator.
73			+.PP
74			Note, however, that using a
75			`\&!'
76			in conjunction with the built-in
77			diff -up sudo-1.8.6p3/doc/sudoers.mdoc.in.orig sudo-1.8.6p3/doc/sudoers.mdoc.in
78			--- sudo-1.8.6p3/doc/sudoers.mdoc.in.orig 2012-09-18 15:57:43.000000000 +0200
79			+++ sudo-1.8.6p3/doc/sudoers.mdoc.in 2013-07-10 14:57:53.793093839 +0200
80			@@ -1393,11 +1393,31 @@ An exclamation point
81			.Pq Ql \&!
82			can be used as a logical
83			.Em not
84			-operator both in an
85			+operator in a list or
86			.Em alias
87			-and in front of a
88			+as well as in front of a
89			.Li Cmnd .
90			This allows one to exclude certain values.
91			+For the
92			+.Ql \&!
93			+operator to be effective, there must be something for it to exclude.
94			+For example, to match all users except for root one would use:
95			+.Bd -literal -offset 4n
96			+ALL,!root
97			+.Ed
98			+.Pp
99			+If the
100			+.Sy ALL ,
101			+is omitted, as in:
102			+.Bd -literal -offset 4n
103			+!root
104			+.Ed
105			+.Pp
106			+it would explicitly deny root but not match any other users.
107			+This is different from a true
108			+.Dq negation
109			+operator.
110			+.Pp
111			Note, however, that using a
112			.Ql \&!
113			in conjunction with the built-in