isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
4,160 Commits 1 Branch 0 Tags
c352187cf8c61c79b51c55f4b0c63c77a787ed56
Commit Graph

4160 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Todd C. Miller
6462c1edd2 Defer setting user-specified env vars until after authentication. 2007-07-09 19:13:38 +00:00
Todd C. Miller
25b624ce5e honor def_default_path for PATH set on the command line 2007-07-09 17:25:45 +00:00
Todd C. Miller
87a95bb3a6 Allow user to set environment variables on the command line as long 
as they are allowed by env_keep and env_check.  Ie: apply the same
restrictions as normal environment variables.
TODO: deal with secure_path
 2007-07-09 17:22:55 +00:00
Todd C. Miller
5919eb1fa6 Call rebuild_env() in call cases. 
Pass original envp to sudo_edit().
Don't allow -E or env var setting in sudoedit mode.
More accurate usage() when called as sudoedit.
 2007-07-08 18:44:28 +00:00
Todd C. Miller
16166fc5e6 warn -> warning 2007-07-08 18:41:17 +00:00
Todd C. Miller
c94ee11b63 add -c option to sudoedit synopsis 2007-07-08 18:11:33 +00:00
Todd C. Miller
b7927b2b34 udpate to reality 2007-07-08 14:27:40 +00:00
Todd C. Miller
888540a7be Use ALLOW/DENY instead of TRUE/FALSE when dealing with the return 
value from {user,host,runas,cmnd}_matches().
Rename *matches variables -> *match.
Purely cosmetic.
 2007-07-08 13:43:07 +00:00
Todd C. Miller
1e9030d951 Move setting of FLAG_NO_CHECK into the if(pwflag) block. 
No change in behavior.
 2007-07-08 13:30:07 +00:00
Todd C. Miller
b70cf25a35 add SETENV tag 2007-07-08 13:17:59 +00:00
Todd C. Miller
a26c783bea Make pwcheck local to the pwflag block. 
Use pwcheck even if user didn't match since Defaults options may still apply.
 2007-07-06 19:51:03 +00:00
Todd C. Miller
6f1a9c0bc9 Do not update timestamp if user not validated by sudoers. 2007-07-06 18:51:43 +00:00
Todd C. Miller
988f44a603 for PERM_RUNAS, set the egid to the runas user's gid and restore to the user's original in PERM_ROOT 2007-07-06 14:14:12 +00:00
Todd C. Miller
f3ef738254 PERM_FULL_ROOT is now no different than PERM_ROOT so remove PERM_FULL_ROOT 2007-07-06 14:04:40 +00:00
Todd C. Miller
af53e335a1 don't check timestamp mtime if we are just going to remove it 2007-07-06 13:49:41 +00:00
Todd C. Miller
95df3fa678 Move sudoers defaults parameters into their own section. 2007-07-06 13:33:47 +00:00
Todd C. Miller
45b311cfa8 Reduce a level of indent by a few placed continue statements. 2007-07-06 00:21:16 +00:00
Todd C. Miller
7f0bb4b1a8 Make matching but negated commands/hosts/runas entries override a 
previous match as expected.  Also reduce some levels of indent by
a few placed continue statements.
 2007-07-06 00:20:51 +00:00
Todd C. Miller
bdd5b43f75 Print default runas in "sudo -l" if sudoers don't specify one. 2007-07-05 20:34:00 +00:00
Todd C. Miller
6a8fb71154 Less hacky way of testing whether the domain was set. 2007-07-05 19:46:23 +00:00
Todd C. Miller
c21164d373 Mention pam-devel and openldap-devel for Linux 2007-07-04 19:50:56 +00:00
Todd C. Miller
e5bb0bb970 or vs. are 2007-07-03 23:38:15 +00:00
Todd C. Miller
3d321157a3 fix typo in Solaris project support 2007-07-01 20:55:14 +00:00
Todd C. Miller
3c6c4677b2 update 2007-07-01 13:40:15 +00:00
Todd C. Miller
49b66be51e Make -- on the command line match the manual page. 
The implied shell case has been simplified as a result.
 2007-07-01 13:07:06 +00:00
Todd C. Miller
ad86ccfb19 add simplistic support for sudoRunas; note that if a sudoers entry contains multiple Runas users, all will apply to the sudoRole 2007-06-28 14:44:05 +00:00
Todd C. Miller
888a6d2e49 honor SETENV and NOSETENV tags 2007-06-28 14:42:43 +00:00
Todd C. Miller
9f49d28eaf Redo setting of user_args. We now build up a private copy of argv 
first and then replace the NULs with spaces.
 2007-06-24 13:25:01 +00:00
Todd C. Miller
a83e28b250 getcwd() returns NULL on failure, not 0 on success 2007-06-24 13:19:29 +00:00
Todd C. Miller
2d76de6cdc allow chunksiz to reach 1 before erroring out 2007-06-24 11:39:16 +00:00
Todd C. Miller
b3b905ba5e regen 2007-06-24 00:00:41 +00:00
Todd C. Miller
879c46e4dd Add support for setting environment variables on the command line. 
This is only allowed if the setenv sudoers options is enabled or if
the command is prefixed with the SETENV tag.
 2007-06-23 23:58:54 +00:00
Todd C. Miller
459c4bcd3a replace Aaron's email address with the sudo-workers list 2007-06-23 23:57:29 +00:00
Todd C. Miller
0d4fe735aa regen 2007-06-23 23:55:55 +00:00
Todd C. Miller
ddeafc2bcd Break schema out into separate files. 2007-06-22 00:35:19 +00:00
Todd C. Miller
d8d7657c50 Break schema out into separate files. 2007-06-22 00:35:19 +00:00
Todd C. Miller
fd7a9af876 free message if set by authenticate() 2007-06-21 22:28:40 +00:00
Todd C. Miller
ae2f7c77ee deal with NULL gr_mem 2007-06-21 17:04:26 +00:00
Todd C. Miller
f9a6950fbf regen 2007-06-20 19:05:04 +00:00
Todd C. Miller
5c22c694c0 add template for HAVE_PROJECT_H 2007-06-20 19:04:30 +00:00
Todd C. Miller
2a8cda261e include fcntl.h 2007-06-20 11:06:48 +00:00
Todd C. Miller
ce963ef43e mention --with-project 2007-06-19 23:37:35 +00:00
Todd C. Miller
60b7ac61bf Add Solaris 10 "project" support. From Michael Brantley. 2007-06-19 22:24:51 +00:00
Todd C. Miller
459b9cb1dd fix typo 2007-06-19 21:27:14 +00:00
Todd C. Miller
e0ae6e100b regen 2007-06-19 21:22:16 +00:00
Todd C. Miller
d1702ca4cb Fix preservation of LDFLAGS in the LDAP case. 2007-06-19 21:21:38 +00:00
Todd C. Miller
5c59e90468 Remove dependecy on NULL 2007-06-19 21:00:30 +00:00
Todd C. Miller
7f21fc74cc regen 2007-06-19 19:37:45 +00:00
Todd C. Miller
c154f0119b Can't use the regular autoconf fnmatch() check since we need 
FNM_CASEFOLD so go back to our custom one.
 2007-06-19 19:37:09 +00:00
Todd C. Miller
363a2f2593 Fix preserving of variables in env_keep. 2007-06-19 16:53:09 +00:00