isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,160 Commits 1 Branch 0 Tags
c352187cf8c61c79b51c55f4b0c63c77a787ed56
Commit Graph

143 Commits

Author SHA1 Message Date
Todd C. Miller
0f9e7f96f4 Add mailfrom Defaults option that sets the value of the From: 
field in the warning/error mail.  If unset the login name of
the invoking user is used.
 2008-03-05 21:52:19 +00:00
Todd C. Miller
143691e6d7 document -A and askpass 2008-03-02 22:31:08 +00:00
Todd C. Miller
b072179192 Substitute in comment characters for lines partaining to login.conf, 
BSD auth and SELinux and only enable them if pertinent.
 2008-02-18 15:53:33 +00:00
Todd C. Miller
7a1e2dfb59 Remove the =cut on the first line (above the copyright notice) to quiet 
pod2man.  Also remove the hackery in the FILES section and just deal
with the fact that there will a newline between each pathname.
 2008-02-18 15:42:43 +00:00
Todd C. Miller
229b231461 document role and type defaults for SELinux 2008-02-17 13:04:45 +00:00
Todd C. Miller
0fc0e3c86d Add and document the %p escape in the password prompt. 
Based on a patch from Patrick Schoenfeld.
 2008-01-05 23:59:28 +00:00
Todd C. Miller
74c5dc4fad Add passprompt_override flag to sudoers that will cause the prompt 
to be overridden in all cases.  This flag is also set when the
user specifies the -p flag.
 2007-12-02 17:13:48 +00:00
Todd C. Miller
f9f4aca556 Add support for runas groups. This allows the user to run a command 
with a different effective group.  If the -g option is specified
without -u the command will be run as the current user (only the
group will change).  the -g and -u options may be used together.
TODO: implement runas group for ldap
      improve runas group documentation
      add testsudoers support
 2007-11-21 20:12:00 +00:00
Todd C. Miller
c9f393e4de document that ALL implies SETENV 2007-11-21 19:26:06 +00:00
Todd C. Miller
aaacf16ee0 Defaults lines may be associated with lists of users, hosts, commands 
and runas users, not just single entries.
 2007-08-27 19:51:58 +00:00
Todd C. Miller
94922dbae5 Users may now consist of a uid. 2007-08-22 22:55:46 +00:00
Todd C. Miller
317e600f41 Remove monitor support until there is a versino of systrace that 
uses a lookaside buffer (or we have a better mechanism to use).
 2007-08-15 15:20:01 +00:00
Todd C. Miller
d65602ca6f Add IPv6 support; adapted from patches by YOSHIFUJI Hideaki 2007-08-13 16:29:25 +00:00
Todd C. Miller
0a96fe4076 Add some missing markup 
Update copyright
 2007-08-13 16:23:14 +00:00
Todd C. Miller
6c2448ed2a Adjust list indentation 2007-08-07 00:33:04 +00:00
Todd C. Miller
a08b9a1072 add missing over/back 2007-07-29 23:21:37 +00:00
Todd C. Miller
c3a1e75b06 Change FILES section to use =item 2007-07-29 23:09:23 +00:00
Todd C. Miller
2e147dc73b Use file markup for paths in the FILES section 2007-07-26 20:35:53 +00:00
Todd C. Miller
e5cc89e01b Don't capitalize sudo/visudo 2007-07-26 14:04:44 +00:00
Todd C. Miller
b925712f94 Sort sudoers options; based on a diff from Igor Sobrado. 2007-07-26 11:28:45 +00:00
Todd C. Miller
d947abaa35 Use 8 and 5 instead of @mansectsu@ and @mansectform@ since the latter 
confuses pod2man.  The Makefile rules for the .man.in file will add
@mansectsu@ and @mansectform@ back in after pod2man is done anyway.
 2007-07-25 20:19:37 +00:00
Todd C. Miller
5c6880f1ef Substitute value of path_info into sudoers man page. 2007-07-22 22:43:28 +00:00
Todd C. Miller
87a95bb3a6 Allow user to set environment variables on the command line as long 
as they are allowed by env_keep and env_check.  Ie: apply the same
restrictions as normal environment variables.
TODO: deal with secure_path
 2007-07-09 17:22:55 +00:00
Todd C. Miller
95df3fa678 Move sudoers defaults parameters into their own section. 2007-07-06 13:33:47 +00:00
Todd C. Miller
879c46e4dd Add support for setting environment variables on the command line. 
This is only allowed if the setenv sudoers options is enabled or if
the command is prefixed with the SETENV tag.
 2007-06-23 23:58:54 +00:00
Todd C. Miller
459b9cb1dd fix typo 2007-06-19 21:27:14 +00:00
Todd C. Miller
a922ff68ac Update descriptions of env_keep and env_check to match current reality. 2007-06-19 00:33:55 +00:00
Todd C. Miller
3f2230617e No commercial support for now. 2007-06-12 13:21:40 +00:00
Todd C. Miller
0ea35c0d32 Attempt to clarify the bit talking about network numbers w/o netmasks. 2007-04-24 18:44:19 +00:00
Todd C. Miller
7a96eb86e6 Fix typos; from Jason McIntyre. 2007-02-06 18:25:35 +00:00
Todd C. Miller
2c3be532a0 Fix typo; Toby Peterson 2005-08-15 00:32:08 +00:00
Todd C. Miller
8f90cfbd89 Preserve DISPLAY environment variable by default. 2005-06-25 21:46:16 +00:00
Todd C. Miller
244eae916f use a non-breaking space to avoid a double space after e.g. 2005-03-13 00:27:05 +00:00
Todd C. Miller
9805bdd7f6 env_keep overrides set_logname 2005-02-20 18:00:24 +00:00
Todd C. Miller
778d587063 Update copyright years. 2005-02-12 22:56:07 +00:00
Todd C. Miller
ab2e7bc267 Instead of zeroing out the environment, just prune out entries 
based on the env_delete and env_check lists.  Base building up
the new environment on the current environment and the variables
we removed initially.
 2005-02-10 04:00:04 +00:00
Todd C. Miller
840d51a160 s/-O/-C/ 2005-01-18 00:41:31 +00:00
Todd C. Miller
051a2110a4 Add closefrom sudoers option to start closing at a point other than 3. 
Add closefrom_override sudoers option and -C sudo flag to allow the
user to specify a different closefrom starting point.
 2004-12-16 18:33:49 +00:00
Todd C. Miller
9c88441420 Mention values when lecture, listpw and verifypw are used in boolean context. 2004-11-28 21:08:09 +00:00
Todd C. Miller
9c954d803f Document per-command Defaults. 2004-11-19 22:09:10 +00:00
Todd C. Miller
a768dbc34f Bring back the "secure_path" Defaults option now that Defaults take 
effect before the path is searched.
 2004-11-12 16:19:19 +00:00
Todd C. Miller
b7479ce1e2 The new parser doesn't have the old ordering constraints. 2004-10-26 20:08:47 +00:00
Todd C. Miller
e455f848a9 stay_setuid now requires set_reuid() or setresuid() 2004-10-13 16:52:51 +00:00
Todd C. Miller
d56b543a13 Remove warning about wildcards. Now that we use glob() the bug is fixed. 2004-10-07 18:57:41 +00:00
Todd C. Miller
3c8145a923 No longer call it tracing, it is now "monitoring" which should be more 
a obvious name to non-hackers.
 2004-10-04 16:07:19 +00:00
Todd C. Miller
fbb62c6805 document #include 2004-09-28 01:04:57 +00:00
Todd C. Miller
d1f1af2bce document tracing 2004-09-27 18:06:26 +00:00
Todd C. Miller
eb49afe6c8 Add SUPPORT section and re-order some of the sections to match the order 
we use in OpenBSD.
 2004-09-06 20:45:27 +00:00
Todd C. Miller
0ad6600cc0 =back does not take an indentlevel (makes no difference to formatted files). 2004-08-06 23:56:15 +00:00
Todd C. Miller
bc1b9cb80d Document the restriction on uids specified via -u when targetpw is set. 2004-08-06 23:31:20 +00:00