Page MenuHomePhabricator

John Lewis sudo as 'list' on mailman staging VM
Closed, ResolvedPublic

Event Timeline

Andrew assigned this task to Dzahn.
Andrew raised the priority of this task from to High.
Andrew updated the task description. (Show Details)
Andrew added a project: Ops-Access-Reviews.
Andrew added subscribers: gerritbot, Matanya, RobH and 6 others.

Change 230133 had a related patch set uploaded (by Dzahn):
admin: add mailman-admins group

https://gerrit.wikimedia.org/r/230133

Change 230133 merged by Dzahn:
admin: add mailman-admins group

https://gerrit.wikimedia.org/r/230133

Change 230946 had a related patch set uploaded (by Dzahn):
admin: mailman-admins on fermium, not just users

https://gerrit.wikimedia.org/r/230946

Change 230946 merged by Dzahn:
admin: mailman-admins on fermium, not just users

https://gerrit.wikimedia.org/r/230946

[fermium:/etc/sudoers.d] $ id johnflewis
uid=2744(johnflewis) gid=500(wikidev) groups=500(wikidev),756(mailman-users),757(mailman-admins)

[fermium:/etc/sudoers.d] $ sudo cat mailman-admins 
# This file is managed by Puppet!

%mailman-admins ALL = (list) NOPASSWD: ALL
%mailman-admins ALL = NOPASSWD: /usr/sbin/service mailman *
%mailman-admins ALL = NOPASSWD: /bin/journalctl *
Dzahn removed a project: Patch-For-Review.
Dzahn set Security to None.
Dzahn added a project: SRE-Access-Requests.

And confirmed (late).

johnflewis@fermium:~$ sudo service mailman status
● mailman.service - LSB: Mailman Master Queue Runner

Thanks!