summaryrefslogtreecommitdiffstats
path: root/hosts/profitbricks-build4-amd64
diff options
context:
space:
mode:
authorHelmut Grohne <helmut@subdivi.de>2015-09-01 17:07:03 +0200
committerHelmut Grohne <helmut@subdivi.de>2015-09-01 17:07:03 +0200
commite8be7bb0f0b8e3355c7ae4ad70f37317cce0a0fb (patch)
treea9df62aee6bf6e912d3f8ba2eaaa2b9c96f07b35 /hosts/profitbricks-build4-amd64
parentfd9baf412d194622ce8ac607640f8850c3c8927c (diff)
downloadjenkins.debian.net-e8be7bb0f0b8e3355c7ae4ad70f37317cce0a0fb.tar.xz
trim sudoers for rebootstrap node
Diffstat (limited to 'hosts/profitbricks-build4-amd64')
-rw-r--r--hosts/profitbricks-build4-amd64/etc/sudoers.d/jenkins20
1 files changed, 1 insertions, 19 deletions
diff --git a/hosts/profitbricks-build4-amd64/etc/sudoers.d/jenkins b/hosts/profitbricks-build4-amd64/etc/sudoers.d/jenkins
index 5cb74414..cccfc2d5 100644
--- a/hosts/profitbricks-build4-amd64/etc/sudoers.d/jenkins
+++ b/hosts/profitbricks-build4-amd64/etc/sudoers.d/jenkins
@@ -1,26 +1,8 @@
jenkins ALL= \
NOPASSWD: /usr/sbin/debootstrap *, \
- /usr/bin/tee /chroots/*, \
- /usr/bin/tee -a /chroots/*, \
- /usr/bin/tee /etc/schroot/chroot.d/jenkins*, \
- /bin/chmod +x /chroots/*, \
/usr/sbin/chroot /chroots/*, \
- /usr/sbin/chroot /media/*, \
- /bin/ls -la /media/*, \
/bin/rm -rf --one-file-system /chroots/*, \
- /bin/rm -rf --one-file-system /schroots/*, \
- /bin/mv /chroots/* /schroots/*, \
- /bin/mv /schroots/* /schroots/*, \
- /bin/umount -l /chroots/*, \
- /bin/mount -o loop*, \
- /bin/mount --bind *, \
- /usr/bin/du *, \
- /bin/kill *, \
- /usr/bin/file *, \
- /bin/dd if=/dev/zero of=/dev/jenkins*, \
- /usr/bin/dcmd rm *.changes, \
- /usr/bin/dcmd rm *.dsc, \
- /usr/bin/apt-get update
+ /bin/umount -l /chroots/*
# keep these environment variables
Defaults env_keep += "http_proxy", env_reset