isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,482 Commits 1 Branch 0 Tags
3b112a17c12fde611dcbb38c285ddf0fee53a56c
Commit Graph

5482 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
3b112a17c1 Mention phpQLAdmin 2011-01-28 17:56:25 -05:00
Todd C. Miller
ed8e30cf6e Add --disable-env-reset configure option. 2011-01-28 16:52:25 -05:00
Todd C. Miller
180b31764e Document that sudoers_locale also affects logging and email. 2011-01-28 16:15:57 -05:00
Todd C. Miller
807a9ca94b Do logging and email sending in the locale specified by the 
"sudoers_locale" setting ("C" by default).  Email send by sudo
includes MIME headers when the sudoers locale is not "C".
 2011-01-28 16:11:47 -05:00
Todd C. Miller
39b9b97dbc Fix indentation 2011-01-27 10:03:59 -05:00
Todd C. Miller
fc38481663 Perform command escaping for "sudo -s" and "sudo -i" after validating 
sudoers so the sudoers entries don't need to have all the backslashes.
 2011-01-25 09:53:57 -05:00
Todd C. Miller
51515c6c01 Prepend "list " to the command logged when "sudo -l command" is 
used to make it clear that the command was listed, not run.
 2011-01-24 15:39:09 -05:00
Todd C. Miller
1f5c1dda14 cosmetic change 2011-01-24 15:35:44 -05:00
Todd C. Miller
ae2f7638f5 standardize on "return foo;" rather than "return(foo);" or "return (foo);" 2011-01-24 15:15:18 -05:00
Todd C. Miller
3316ac8ebc Do not reject sudoers file just because it is root-writable. 2011-01-24 14:25:51 -05:00
Todd C. Miller
48990e211e sync 2011-01-21 10:37:53 -05:00
Todd C. Miller
fbbd0603da For "sudo -U user -l" if user is not authorized on the host, say so. 2011-01-21 10:10:26 -05:00
Todd C. Miller
be034d5e7e In sudo_ldap_lookup(), always do the initial sudoers check as the 
invoking user.  If we are listing another user's privs we will
do a separate lookup using list_pw later.
 2011-01-21 08:10:26 -05:00
Todd C. Miller
dbb830c794 add parser fill tests 2011-01-20 17:00:07 -05:00
Todd C. Miller
4cc54e4b81 Don't test features not supported by the bundled glob() 2011-01-20 16:58:35 -05:00
Todd C. Miller
f7f8b6867e Update copyright year to 2011 2011-01-20 16:46:56 -05:00
Todd C. Miller
96767abfe4 When listing, use separate lbufs for the defaults and the privileges and 
only print something if the number of privileges is non-zero.  Fixes
extraneous Defaults output for "sudo -U unauthorized_user -l".
 2011-01-20 16:19:42 -05:00
Todd C. Miller
215500bb55 Stash pointer to user group vector in LDAP handle and only reuse 
the query if it has not changed.  We always allocate a new buffer
when we reset the group vector so a simple pointer check is sufficient.
 2011-01-20 16:16:08 -05:00
Todd C. Miller
165dcfa37f Check initgroups() return value. 2011-01-20 16:15:34 -05:00
Todd C. Miller
7cbd1ff728 Add tests for the fill functions in toke_util.c 2011-01-20 10:09:19 -05:00
Todd C. Miller
79dff677d4 fix copyright year 2011-01-19 17:38:38 -05:00
Todd C. Miller
6565899bab sync 2011-01-19 08:40:05 -05:00
Todd C. Miller
4f953d8391 Clear, don't set, OPOST in c_oflag as was intended in 506ad5ae9b4e. 2011-01-18 11:26:48 -05:00
Todd C. Miller
5b5a173ff3 Add Requires line for audit-libs >= 1.4 for RHEL5+ 2011-01-14 15:03:57 -05:00
Todd C. Miller
add7f327ea sync with git version 2011-01-14 14:33:32 -05:00
Todd C. Miller
0726c8fe24 fix typo 2011-01-13 13:10:15 -05:00
Todd C. Miller
3792df2bd4 Update for sudo 1.7.4p5 2011-01-12 13:43:50 -05:00
Todd C. Miller
12895f77aa Add sudoNotBefore and sudoNotAfter attributes as optional attributes 
to the sudoRole object class.  From Andreas Mueller
 2011-01-12 09:25:24 -05:00
Todd C. Miller
5b0a50d519 Mention "sudo -g group" password check fix. 2011-01-11 10:44:36 -05:00
Todd C. Miller
e7a4529cf8 Fix "sudo -g" support in the sudoers module. 2011-01-11 10:42:01 -05:00
Todd C. Miller
2d74e9567f If the user is running sudo as himself but as a different group we 
need to prompt for a password.
 2011-01-11 10:35:20 -05:00
Todd C. Miller
49409b7c5d Add support for TIMEOUT in ldap.conf, mapping to the OpenLDAP 
LDAP_OPT_TIMEOUT.  There is no corresponding option for mozilla-derived
LDAP SDKs but we can pass the timeout parameter to ldap_search_ext_s()
or ldap_search_st() when possible.
 2011-01-10 10:33:22 -05:00
Todd C. Miller
a628fee981 regen 2011-01-10 09:28:53 -05:00
Todd C. Miller
823e812723 Add NETWORK_TIMEOUT as an alias for BIND_TIMELIMIT for compatibility 
with OpenLDAP ldap.conf files.
 2011-01-10 09:27:58 -05:00
Todd C. Miller
8a043ca562 If user has no supplementary groups, fall back on checking the group 
file expliticly.
 2011-01-10 09:23:54 -05:00
Todd C. Miller
e63849afb0 constify 2011-01-08 19:54:30 -05:00
Todd C. Miller
4cc6322b48 Move fill macro to toke.h 2011-01-08 19:34:31 -05:00
Todd C. Miller
400b6ffe20 Split tokenizer utility functions out into toke_util.c 2011-01-08 15:42:39 -05:00
Todd C. Miller
866ffd0bdb ANSIfy 2011-01-08 15:15:30 -05:00
Todd C. Miller
385eeeb138 sync 2011-01-07 15:13:42 -05:00
Todd C. Miller
e8cc22c0c8 Add visudo tests to check target 2011-01-07 15:10:28 -05:00
Todd C. Miller
ac857d6e9d Add my regress tests for fnmatch() and glob() from OpenBSD. 2011-01-07 14:48:19 -05:00
Todd C. Miller
460f760ca2 Add regress test for command tags using visudo -c 2011-01-07 14:01:57 -05:00
Todd C. Miller
b679e03195 Add support for regress tests using testsudoers 2011-01-07 13:19:32 -05:00
Todd C. Miller
217d296111 Need to set user_name explicitly due to internal changes made when 
converting sudoers to a plugin.
 2011-01-07 11:56:15 -05:00
Todd C. Miller
1defd7b456 Add regression tests for iolog_path() 2011-01-06 11:05:28 -05:00
Todd C. Miller
f8de3f6327 Add support for "make Makefile" to regenerate Makefile from Makefile.in 2011-01-06 10:44:28 -05:00
Todd C. Miller
d2596e3f7b Quiest a bogus compiler warning. 2011-01-06 10:23:20 -05:00
Todd C. Miller
f09bbcb6bb Protect call to setlocale() with HAVE_SETLOCALE 2011-01-05 16:27:44 -05:00
Todd C. Miller
42f7a6c251 mkstemps.c was renamed mktemp.c 2011-01-04 14:27:51 -05:00