isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
6,307 Commits 1 Branch 0 Tags
b406b51da0684490de642b8fc189f696cf347b23
Commit Graph

226 Commits

Author SHA1 Message Date
Todd C. Miller
23b7a1fa5c Call the policy's init_session() function before we fork the child. 
That way, the session is created and destroyed in the same process,
which is needed by some modules, such as  pam_mount.
 2012-04-23 16:38:16 -04:00
Todd C. Miller
1480bb88b7 Add entry for SSL LDAP errors on Mozilla SDKs when the cert dir is 
not specified.
 2012-04-23 16:29:48 -04:00
Todd C. Miller
4c36371ee1 Add German translation for sudo 
Add Croatian translation for sudoers
 2012-04-19 11:54:15 -04:00
Todd C. Miller
b3f750b754 Clarify what "sudoreplay -l" displays and mention that it is sorted. 2012-04-16 11:45:29 -04:00
Todd C. Miller
5f969cc12a Pass pid, ppid, sid, pgid and tcpgid to plugin in user_info list. 2012-04-13 15:18:40 -04:00
Todd C. Miller
8f8ede3d25 New Croatian and Galician translations from translationproject.org 2012-04-13 14:15:22 -04:00
Todd C. Miller
9d874182f4 sync 2012-03-30 15:44:23 -04:00
Todd C. Miller
af0f5cb62e Update zlib to version 1.2.6 2012-03-29 10:28:17 -04:00
Todd C. Miller
bab4f2ce71 regen 2012-03-28 14:10:18 -04:00
Todd C. Miller
caf01d98c4 When initializing the environment for env_reset, start out with 
the contents of /etc/environment on AIX and login.conf on BSD.
 2012-03-27 18:57:11 -04:00
Todd C. Miller
2f30694b87 If we are not running with an effective uid of 0, try to give the 
user enough information to debug the problem.
 2012-03-27 13:57:03 -04:00
Todd C. Miller
ec7767978f Document what changed in each plugin API revision 2012-03-16 14:39:12 -04:00
Todd C. Miller
ced34a6e26 Expand AIX /etc/security/privcmds entry. 2012-03-15 15:25:13 -04:00
Todd C. Miller
96f046c1ce Rename plugin "args" to "options" 2012-03-15 12:32:31 -04:00
Todd C. Miller
741f57e68c Add Lithuanian and Vietnamese translators 2012-03-15 12:21:36 -04:00
Todd C. Miller
d73ed51c58 regen 2012-03-15 09:18:50 -04:00
Todd C. Miller
6d10909949 Pass a pointer to user_env in to the init_session policy plugin 
function so session setup can modify the user environment as needed.
For PAM authentication, merge the PAM environment with the user
environment at init_session time.  We no longer need to swap in the
user_env for environ during session init, nor do we need to disable
the env hooks at init_session time.
 2012-03-15 09:18:36 -04:00
Todd C. Miller
b61c0ab473 regen 2012-03-14 14:20:16 -04:00
Todd C. Miller
e852b3ab06 Document hooks API 2012-03-14 14:11:18 -04:00
Todd C. Miller
779b6c8e0d If cross compiling, --host must include the OS in the tuple. 
E.g. --host powerpc-unknown-linux
 2012-03-13 11:01:23 -04:00
Todd C. Miller
bfb6f79105 List sudo_noexec.so not noexec.so in the sample sudo.conf 2012-03-02 11:15:40 -05:00
Todd C. Miller
a16dee915b Add support for plugin args at the end of a Plugin line in sudo.conf. 
Bump the minor number accordingly and update the documentation.  A
plugin must check the sudo front end's version before using the
plugin_args parameter since it is only supported for API version
1.2 and higher.
 2012-03-02 11:04:09 -05:00
Todd C. Miller
35280a8437 Check the owner and mode in -c (check) mode unless the -f option 
is specified.  Previously, the owner and mode were checked on the
main sudoers file when the -s (strict) option was given, but this
was not documented.
 2012-02-28 14:16:39 -05:00
Todd C. Miller
5fe6e4993d Add Eric Lakin for patch in bug #538 2012-02-27 16:39:27 -05:00
Todd C. Miller
28db1fbbed We need sysconfdir in compat/Makfile to get the proper sudo.conf 
path.  Add standard prefix and foodir expansion in all Makefiles
to avoid this problem in the future.
 2012-02-27 13:28:15 -05:00
Todd C. Miller
5a941fb41c Add entry for AIX enhanced RBAC config. 2012-02-24 14:32:57 -05:00
Todd C. Miller
f38afb532d Update contributors. Now includes translators and authors of compat 
code.
 2012-02-17 11:30:42 -05:00
Todd C. Miller
cb66fc6f10 Use -m not -M for install-sh for everything except setuid. 
Install locale .mo files mode 0444, not 0644.
If timedir parent doesn't exist, use default dir mode, not 0700.
 2012-02-09 11:11:58 -05:00
Todd C. Miller
b28dfa5011 update copyright 2012-02-05 13:35:20 -05:00
Todd C. Miller
c32bd3db54 Enumerate the debug subsystems used by sudo and sudoers. 2012-02-05 10:17:09 -05:00
Todd C. Miller
c970d464cb Normally, sudo disables core dumps while it is running. This 
behavior can now be modified at run time with a line in sudo.conf
like "Set disable_coredumps false"
 2012-02-03 14:57:03 -05:00
Todd C. Miller
0771c981de Update copyright year. 2012-01-06 14:23:55 -05:00
Todd C. Miller
37fe423cd4 Mention the CONTRIBUTORS file, not HISTORY in AUTHOR section. Add 
HISTORY section in sudo that points to HISTORY file.
 2012-01-06 10:05:47 -05:00
Todd C. Miller
45e1623b5d Document Debug setting in sudo.conf and debug_flags in plugin. 2012-01-06 09:44:41 -05:00
Todd C. Miller
72a4e0943e Remove -D debug_level option. 2012-01-05 11:48:24 -05:00
Todd C. Miller
9c27e91b51 Update copyright year. 2012-01-05 11:47:22 -05:00
Todd C. Miller
fb3c9f2ca5 Remove support for noexec_file in sudoers and the plugin API 2011-12-20 08:40:55 -05:00
Todd C. Miller
31c08fca3e Clean up the DEVEL noise 2011-12-08 12:53:10 -05:00
Todd C. Miller
1cec1f4777 No need for install target to depend explicitly on install-dirs, 
the install-foo targets all depend on it.
 2011-12-07 14:33:25 -05:00
Todd C. Miller
62011b6772 Restore PACKAGE_TARNAME, it is used in docdir 2011-12-02 16:11:50 -05:00
Todd C. Miller
01147eda3a Replace @DEV@ prefix with DEVEL variable so we can do "make DEVEL=1" 2011-12-02 13:43:02 -05:00
Todd C. Miller
3b2998d554 Document that a sudoUser may now be a group ID. 2011-11-29 16:37:01 -05:00
Todd C. Miller
e9e4a84528 Replace UCB fnmatch.c with a non-recursive version written by 
William A. Rowe Jr.
 2011-11-29 14:57:08 -05:00
Todd C. Miller
e43b726e96 Make the env_reset descriptions consistent. 2011-11-23 10:42:32 -05:00
Todd C. Miller
481877e3b8 Add support for relative paths in #include and #includedir 2011-11-17 20:48:42 -05:00
Todd C. Miller
c86561e502 Remove the old Kerberos IV support 2011-11-13 09:12:43 -05:00
Todd C. Miller
d0eb3ae6a0 Add missing word in HOME security note. 2011-11-07 15:52:29 -05:00
Todd C. Miller
a898356b1e Update to current reality and add bit about ssh auth 2011-09-21 12:30:09 -04:00
Todd C. Miller
3bcc9048c3 Add support for DEREF in ldap.conf. 2011-09-16 16:50:04 -04:00
Todd C. Miller
e5e1bb24fa Only iolog_file (not iolog_dir) supports mktemp-style suffixes. 2011-09-16 14:05:44 -04:00