isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,239 Commits 1 Branch 0 Tags
1cc431c42fbeb6c46e3f3ba7c58c6aa15915c7cc
Commit Graph

4239 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
b54eff661f Use 78n line length when formatting cat pages. 2008-01-21 15:00:54 +00:00
Todd C. Miller
57a6ebde5d Remove redundant info that is now in sudoers.ldap.pod 2008-01-21 14:50:54 +00:00
Todd C. Miller
a48e85e1ab Reorganize the first section a bit. Substitute the proper path for 
/etc/sudoers.
 2008-01-20 21:18:56 +00:00
Todd C. Miller
e1db0d126f Substitute values for ldap.conf, ldap.secret and nsswitch.conf 
Move schema into EXAMPLES
 2008-01-20 15:17:35 +00:00
Todd C. Miller
c268627f90 Substitute values for ldap.conf, ldap.secret and nsswitch.conf into 
sudoers.ldap.man.
 2008-01-20 15:15:47 +00:00
Todd C. Miller
49f2264ad6 substitute for sudoers.ldap.man 2008-01-20 01:35:54 +00:00
Todd C. Miller
32d57a928d Fix cut & pasto introduced when adding sudoers.ldap man page. 2008-01-20 01:34:44 +00:00
Todd C. Miller
961a79b743 Fill in some of the missing pieces. Still needs some reorganization and 
editing.
 2008-01-20 01:25:39 +00:00
Todd C. Miller
907be979cb Beginnings of a sudoers.ldap man page. Currently, much of the information 
is adapted from README.LDAP.
 2008-01-19 20:06:09 +00:00
Todd C. Miller
2a5a01c22d When copying gr_mem we must guarantee that the storage space for 
gr_mem is properly aligned.  The simplest way to do this is to
simply store gr_mem directly after struct group.  This is not a
problem for gr_passwd or gr_name as they are simple strings.
 2008-01-18 22:32:52 +00:00
Todd C. Miller
09c1189d1b Fix a typo/thinko in one of the calls to sudo_ldap_check_user_netgroup(). 
From Marco van Wieringen.
 2008-01-18 21:47:05 +00:00
Todd C. Miller
0f6101bb26 include <mps/ldap_ssl.h> in ldap.c if available 2008-01-17 20:44:28 +00:00
Todd C. Miller
5fc4d8fa10 Make sure we define SIZE_MAX for yacc's skeleton.c 2008-01-16 23:20:35 +00:00
Todd C. Miller
ebcf3cf399 Use TCSAFLUSH when restoring terminal settings (and echo) to guarantee that any pending output is discarded 2008-01-16 18:03:08 +00:00
Todd C. Miller
fb4b049788 no longer need to specify SETENV when user has sudo ALL 2008-01-15 22:18:11 +00:00
Todd C. Miller
18d42bf8b4 sync user_args size calculation with sudo.c 
Add -g group option, renaming old -g to -G
Add set_runasgr() and set_runaspw() and use them
 2008-01-15 14:40:48 +00:00
Todd C. Miller
7f05a4ff6f Make set_runaspw static void 2008-01-15 14:23:58 +00:00
Todd C. Miller
6c1ef6839c g/c set_runaspw stub 2008-01-15 14:17:31 +00:00
Todd C. Miller
63f224f045 Don't add -llber twice. 2008-01-15 12:28:33 +00:00
Todd C. Miller
6131e9f36e fix typo 2008-01-14 11:40:08 +00:00
Todd C. Miller
2ff13a2403 regen 2008-01-13 20:39:54 +00:00
Todd C. Miller
dde5143f08 Fix check that determines whether -llber is required. 2008-01-13 19:57:34 +00:00
Todd C. Miller
9a07c1a7f1 For netscape-based LDAP, use ldapssl_set_strength() to implement 
the checkpeer ldap.conf option.
 2008-01-13 19:22:11 +00:00
Todd C. Miller
0851d77f10 Delay krb5_cc_initialize() until we actually need to use the cred cache, 
which is what krb5_verify_user() does.
Better cleanup on failure.
 2008-01-13 14:49:43 +00:00
Todd C. Miller
584ab252d7 Rewrite verify_krb_v5_tgt() based on what heimdal's krb5_verify_user() does. 2008-01-12 17:40:43 +00:00
Todd C. Miller
7a110f08ce The U suffix on constants is an ANSI feature 2008-01-09 19:58:39 +00:00
Todd C. Miller
1df9ca2dc1 Add check for ber_set_option() in -llber 2008-01-09 17:08:30 +00:00
Todd C. Miller
8db7b8e590 default if no nsswitch.conf is files only 2008-01-07 00:02:58 +00:00
Todd C. Miller
1b6275a694 don't tell people to mail aaron about LDAP stuff 2008-01-06 22:28:03 +00:00
Todd C. Miller
0b11b7e717 timelimit and bind_timelimit 2008-01-06 17:32:59 +00:00
Todd C. Miller
a9615943f6 sync 2008-01-06 13:54:03 +00:00
Todd C. Miller
00030b9ad2 Move ldap.secret reading into a separate function. 2008-01-06 12:56:46 +00:00
Todd C. Miller
43f7408607 user_runas -> runas_pw 2008-01-06 00:09:18 +00:00
Todd C. Miller
9909106656 sync 2008-01-05 23:59:50 +00:00
Todd C. Miller
0fc0e3c86d Add and document the %p escape in the password prompt. 
Based on a patch from Patrick Schoenfeld.
 2008-01-05 23:59:28 +00:00
Todd C. Miller
9998419d7a Check strlcpy() return values. 2008-01-05 23:25:58 +00:00
Todd C. Miller
4bb2167453 refactor ldap binding code into sudo_ldap_bind_s() 2008-01-05 23:12:19 +00:00
Todd C. Miller
77d841e0e6 Make it clear that host and uri can take multiple parameters. 
URI is now supported for more than just openldap
nsswitch.conf does't accept "compat"
 2008-01-05 21:35:25 +00:00
Todd C. Miller
055bda6261 comment cleanup and update (c) year 2008-01-05 21:27:02 +00:00
Todd C. Miller
fb01648878 Move display_privs() and display_cmnd() from parse.c to sudo_nss.c. 
This should make it possible to build an LDAP-only sudo binary.
 2008-01-05 21:25:28 +00:00
Todd C. Miller
28ed51b441 Improve chaining of multiple sudoers sources by passing in the previous return value to the next in the chain 2008-01-05 18:27:18 +00:00
Todd C. Miller
56d193b29b Free up parser data structures in sudo_file_close(). 2008-01-05 18:26:42 +00:00
Todd C. Miller
53aec6601e Free up parser data structures in sudo_file_close(). 2008-01-05 13:13:06 +00:00
Todd C. Miller
e4370acaa4 Parse uri ourself if no ldap_initialize() is present 
Use ldap_create() instead of deprecated ldap_init()
Use ldap_sasl_bind_s() instead of deprecated ldap_simple_bind_s()
 2008-01-05 12:59:05 +00:00
Todd C. Miller
f1377429a1 Add check for ldap_sasl_bind_s() 
Remove -DLDAP_DEPRECATED from CFLAGS
 2008-01-05 12:56:39 +00:00
Todd C. Miller
b564d51861 add check for ldap_create 2008-01-04 14:56:10 +00:00
Todd C. Miller
86bd55fc6d Add sudo_ldap_get_first_rdn() to return the first rdn of an entry's dn 
using the mechanism appropriate for the LDAP SDK in use.
Use ldap_unbind_ext_s() instead of deprecated ldap_unbind_s().
Emulate ldap_unbind_ext_s() and ldap_search_ext_s() for SDK's without them.
 2008-01-03 21:11:33 +00:00
Todd C. Miller
179ec68f86 include unistd.h 2008-01-03 21:02:51 +00:00
Todd C. Miller
27efa3d257 fix typo in mtim_getnsec 2008-01-03 16:05:04 +00:00
Todd C. Miller
32e4a98a69 add check for st__tim in struct stat as used by SCO 2008-01-02 20:29:48 +00:00