isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,136 Commits 1 Branch 0 Tags
ab7a1c5ce4bece93c0ecd41342e44bfc16e62ad1
Commit Graph

5136 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
ab7a1c5ce4 Remove vestiges of old binary package bits. 2010-07-13 08:37:28 -04:00
Todd C. Miller
a33996e740 install-man -> install-doc 2010-07-13 08:36:19 -04:00
Todd C. Miller
7bcbce2078 Use http://rc.quest.com/topics/polypkg/ for packaging 2010-07-13 08:33:46 -04:00
Todd C. Miller
69400709d7 Just ignore the -c option, it is the default 
Add support for -d option
 2010-07-13 08:31:01 -04:00
Todd C. Miller
5b9e39ac87 Use _PATH_STDPATH instead of _PATH_DEFPATH 2010-07-12 18:07:52 -04:00
Todd C. Miller
151db86e3b Do not strip binaries. 2010-07-12 18:06:46 -04:00
Todd C. Miller
7910281697 Add --insults=disabled configure option to allow people to build 
in insult support but have the insults disabled unless explicitly
enabled in sudoers.
 2010-07-12 18:04:16 -04:00
Todd C. Miller
2b7410074f Add prototype for gettime() 2010-07-12 18:00:05 -04:00
Todd C. Miller
d9de7b5f8e Add support for a sudo-i pam.d file to be used for "sudo -i". 
Adapted from a RedHat patch.
 2010-07-12 17:57:53 -04:00
Todd C. Miller
684d1fd9f7 Fix mkstemps() prototype 2010-07-09 10:22:20 -04:00
Todd C. Miller
ea4298bb54 Use mkstemps() instead of mkstemp() in sudoedit. This allows sudoedit 
to preserve the file extension (if any) which may be used by the editor
(like emacs) to choose the editing mode.
 2010-07-09 10:08:05 -04:00
Todd C. Miller
432d27573d TLS_CACERT is now an alias for TLS_CACERTFILE. OpenLDAP uses TLS_CACERT, 
not TLS_CACERTFILE in its ldap.conf.  Other LDAP client code, such as
nss_ldap, uses TLS_CACERTFILE.  Also document why you should avoid
disabling TLS_CHECKPEER is possible.
 2010-07-08 09:02:03 -04:00
Todd C. Miller
5b1420b6d4 Make sudo_plugin format a bit more like a man page 2010-07-07 16:59:06 -04:00
Todd C. Miller
fd6b72f48e Add suport for negated user/host/command lists in a Defaults entry. 
E.g. Defaults:!baduser noexec
 2010-07-07 14:33:27 -04:00
Todd C. Miller
3f33f75b7a Add uninstall target 2010-07-07 11:42:36 -04:00
Todd C. Miller
98ce6c94cb Remove unused AR, SED and RANLIB variables 2010-07-07 11:12:58 -04:00
Todd C. Miller
ff78357225 Do not install sample plugins 2010-07-07 11:09:41 -04:00
Todd C. Miller
6229c0e206 Now that sudoers is a dynamically loaded module we cannot override 
the libc environment functions because the symbols may already have
been resolved via libc.  Remove getenv/putenv/setenv/unsetenv
replacements from sudoers and add replacements for setenv/unsetenv
for systems that lack them.
 2010-07-06 16:44:33 -04:00
Todd C. Miller
ff4a61b92d Link testsudoers with -ldl when needed 2010-07-06 13:34:05 -04:00
Todd C. Miller
e3f4447472 Remove unused time.h and add limits.h for PATH_MAX 2010-07-06 13:25:05 -04:00
Todd C. Miller
3906967771 Fix typo. 2010-07-06 13:24:00 -04:00
Todd C. Miller
47c28e7ece Do not depend on strlcpy/strlcat 2010-07-05 16:49:25 -04:00
Todd C. Miller
6a058e4af9 Standalone test driver for sudoers group plugin. 2010-07-05 16:13:32 -04:00
Todd C. Miller
17dbb33e57 Use RTLD_LAZY instead of RTLD_NOW; was using RTLD_NOW as a debugging aid. 2010-07-02 16:03:21 -04:00
Todd C. Miller
7e91ebff14 Fix style nit in function declarations 2010-07-02 15:56:04 -04:00
Todd C. Miller
2822c6c8ce Document group_plugin syntax. 2010-07-02 15:37:47 -04:00
Todd C. Miller
9d17312617 Document the sudoers group plugin. 2010-07-02 13:42:53 -04:00
Todd C. Miller
e6b48d415c Replace built-in non-unix group support with a sudoers group plugin. 
Include a sample plugin that can read Unix-format group files.
 2010-07-02 11:11:25 -04:00
Todd C. Miller
66eafd0994 Add a trailing slash to _PATH_SUDO_PLUGIN_DIR to simplify usage. 2010-07-02 10:53:47 -04:00
Todd C. Miller
454534eff2 Move sudoers-specific bits out of sudo(8) and into sudoers(5) 2010-07-01 13:51:06 -04:00
Todd C. Miller
9e60378c46 Substitute @io_logdir@ for the sudoers I/O log directory. 2010-07-01 13:49:10 -04:00
Todd C. Miller
30fe4a067c Set usrinfo for AIX 
Set adminstrative domain for the process when looking up user's
    password or group info and when preparing for execve().
Include strings.h even if string.h exists since they may define
    different things.  Fixes warnings on AIX and others.
 2010-06-29 13:08:05 -04:00
Todd C. Miller
fd40be6267 Add a separate all target for AIX make which was using the entire 
LHS (not just the first entry) of the first target as the implicit
target.
 2010-06-29 13:05:27 -04:00
Todd C. Miller
862d1675cc Do not rely on env.env_len when unsetting a variable, just use the 
NULL terminator.
 2010-06-29 09:26:55 -04:00
Todd C. Miller
0c0a02dfd1 In unsetenv() check for NULL or empty name as per POSIX 1003.1-2008 2010-06-29 09:10:43 -04:00
Todd C. Miller
895e30184e Use warningx() instead of log_error() since the latter is not available 
to visudo or testsudoers.  This does mean that they don't end up in syslog.
 2010-06-25 10:06:08 -04:00
Todd C. Miller
189b43fed3 Defer call to sudo_nonunix_groupcheck_cleanup() until after we have 
closed the sudoers sources.  From Quest sudo.
 2010-06-25 10:05:51 -04:00
Todd C. Miller
8f58fd36bb Ignore case when matching user/group names in the cache. From Quest sudo. 2010-06-25 10:05:37 -04:00
Todd C. Miller
867ba48dbf Add check for setkeycreatecon() when --with-selinux is specified. 2010-06-24 15:31:05 -04:00
Todd C. Miller
d63f49bcac Error out if libaudit.h is missing or ununable when --with-linux-audit 
was specified
 2010-06-24 15:29:38 -04:00
Todd C. Miller
175760a44b Add =head3 entries, mostly for the html version 2010-06-24 09:59:06 -04:00
Todd C. Miller
e873644374 Mention when LDAP was incorporate. 2010-06-22 13:38:43 -04:00
Todd C. Miller
39bccab398 Define _LINUX_SOURCE_COMPAT on AIX for strsignal() prototype, it 
is not covered by _ALL_SOURCE.
 2010-06-21 17:37:21 -04:00
Todd C. Miller
d69e4fd42b Add a cast to quiet a compiler warning. 2010-06-18 18:45:43 -04:00
Todd C. Miller
41b15ae81e Quiet a compiler warning. 2010-06-18 18:39:40 -04:00
Todd C. Miller
d1bf11db33 Call set_fqdn() after sudoers has parsed instead of inline as a callback. 2010-06-18 17:47:55 -04:00
Todd C. Miller
d79b0ece15 Do not call set_fqdn() until sudoers parses (where is gets run as a callback). 2010-06-18 17:25:59 -04:00
Todd C. Miller
677a0be850 mention the change in tty ticket behavior when there is no tty 2010-06-18 15:43:35 -04:00
Todd C. Miller
f5c5a9bf6a Do not update tty ticket if there is no tty. 2010-06-18 08:00:16 -06:00
Todd C. Miller
c4da73db17 Update copyright year 2010-06-18 09:57:01 -04:00