isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,212 Commits 1 Branch 0 Tags
e11e4efb8f911d0a2581961b1cc9ce511cea9adf
Commit Graph

258 Commits

Author SHA1 Message Date
Todd C. Miller
a3e4db1244 Use errorx() not error() for thingsthat don't set errno. 2010-07-27 07:50:43 -04:00
Todd C. Miller
c59ad3596c Create timedir as part of install-dirs target. 2010-07-26 14:26:54 -04:00
Todd C. Miller
4168fcf2dd sudo_pwdup() was not expanding an empty pw_shell to _PATH_BSHELL 2010-07-26 12:34:42 -04:00
Todd C. Miller
a346ba8df5 Add commented out Defaults entry for log_output 2010-07-25 13:12:49 -04:00
Todd C. Miller
aeac8822b4 Add PACKAGE_TARNAME for docdir 2010-07-22 07:58:02 -04:00
Todd C. Miller
092a6935e1 Install binary files with -b~ to make a backup. 
Fixes "text file busy" error on HP-UX during install.
 2010-07-23 11:23:53 -04:00
Todd C. Miller
c016ecf006 Install sudoers2ldif in the doc dir 2010-07-23 09:12:03 -04:00
Todd C. Miller
5183d6e594 Include time.h for struct timeval 2010-07-21 16:01:16 -04:00
Todd C. Miller
f45f57dca5 Add commented out line to add HOME to env_keep and add a warning 
to the note about the HOME change in UPGRADE.
 2010-07-21 09:51:43 -04:00
Todd C. Miller
d8acd34031 Add LINE_MAX define for those without it. 2010-07-20 15:34:30 -04:00
Todd C. Miller
2675524c32 The tty_tickets option is now on by default. 2010-07-20 13:20:53 -04:00
Todd C. Miller
ee7221f1fe Reset HOME when env_reset is enabled unless it is in env_keep 2010-07-19 15:35:47 -04:00
Todd C. Miller
4382c30c04 Add missing include of time.h 2010-07-19 12:55:27 -04:00
Todd C. Miller
10e6e572ea Fix check for dup2() return value. 2010-07-19 12:54:30 -04:00
Todd C. Miller
2eb1879fd7 Add PYTHONUSERBASE to initial_badenv_table 2010-07-19 12:54:01 -04:00
Todd C. Miller
32e896f339 Treat an unknown defaults entry as a parse error. 2010-07-19 12:53:45 -04:00
Todd C. Miller
f7f65cfb95 Check return value of setdefs() but don't stop setting defaults if 
we hit an unknown one.
 2010-07-19 12:53:25 -04:00
Todd C. Miller
69ecb34581 If env_reset is enabled, set the MAIL environment variable based 
on the target user unless MAIL is explicitly preserved in sudoers.
 2010-07-19 12:50:59 -04:00
Todd C. Miller
af0bac430a Add commented out env_keep entries, sample Aliases and a %sudo line 
for debian.
 2010-07-15 15:09:54 -04:00
Todd C. Miller
482f9cfc83 Handle getcwd() failure. 2010-07-14 14:17:56 -04:00
Todd C. Miller
efbc7f1d57 Only set PAM_RHOST for Solaris, where it is needed to avoid a bug. 
On Linux it causes a DNS lookup via libaudit.
 2010-07-13 08:56:31 -04:00
Todd C. Miller
ab7a1c5ce4 Remove vestiges of old binary package bits. 2010-07-13 08:37:28 -04:00
Todd C. Miller
a33996e740 install-man -> install-doc 2010-07-13 08:36:19 -04:00
Todd C. Miller
7bcbce2078 Use http://rc.quest.com/topics/polypkg/ for packaging 2010-07-13 08:33:46 -04:00
Todd C. Miller
5b9e39ac87 Use _PATH_STDPATH instead of _PATH_DEFPATH 2010-07-12 18:07:52 -04:00
Todd C. Miller
151db86e3b Do not strip binaries. 2010-07-12 18:06:46 -04:00
Todd C. Miller
d9de7b5f8e Add support for a sudo-i pam.d file to be used for "sudo -i". 
Adapted from a RedHat patch.
 2010-07-12 17:57:53 -04:00
Todd C. Miller
432d27573d TLS_CACERT is now an alias for TLS_CACERTFILE. OpenLDAP uses TLS_CACERT, 
not TLS_CACERTFILE in its ldap.conf.  Other LDAP client code, such as
nss_ldap, uses TLS_CACERTFILE.  Also document why you should avoid
disabling TLS_CHECKPEER is possible.
 2010-07-08 09:02:03 -04:00
Todd C. Miller
fd6b72f48e Add suport for negated user/host/command lists in a Defaults entry. 
E.g. Defaults:!baduser noexec
 2010-07-07 14:33:27 -04:00
Todd C. Miller
3f33f75b7a Add uninstall target 2010-07-07 11:42:36 -04:00
Todd C. Miller
6229c0e206 Now that sudoers is a dynamically loaded module we cannot override 
the libc environment functions because the symbols may already have
been resolved via libc.  Remove getenv/putenv/setenv/unsetenv
replacements from sudoers and add replacements for setenv/unsetenv
for systems that lack them.
 2010-07-06 16:44:33 -04:00
Todd C. Miller
ff4a61b92d Link testsudoers with -ldl when needed 2010-07-06 13:34:05 -04:00
Todd C. Miller
e3f4447472 Remove unused time.h and add limits.h for PATH_MAX 2010-07-06 13:25:05 -04:00
Todd C. Miller
47c28e7ece Do not depend on strlcpy/strlcat 2010-07-05 16:49:25 -04:00
Todd C. Miller
6a058e4af9 Standalone test driver for sudoers group plugin. 2010-07-05 16:13:32 -04:00
Todd C. Miller
17dbb33e57 Use RTLD_LAZY instead of RTLD_NOW; was using RTLD_NOW as a debugging aid. 2010-07-02 16:03:21 -04:00
Todd C. Miller
7e91ebff14 Fix style nit in function declarations 2010-07-02 15:56:04 -04:00
Todd C. Miller
e6b48d415c Replace built-in non-unix group support with a sudoers group plugin. 
Include a sample plugin that can read Unix-format group files.
 2010-07-02 11:11:25 -04:00
Todd C. Miller
30fe4a067c Set usrinfo for AIX 
Set adminstrative domain for the process when looking up user's
    password or group info and when preparing for execve().
Include strings.h even if string.h exists since they may define
    different things.  Fixes warnings on AIX and others.
 2010-06-29 13:08:05 -04:00
Todd C. Miller
862d1675cc Do not rely on env.env_len when unsetting a variable, just use the 
NULL terminator.
 2010-06-29 09:26:55 -04:00
Todd C. Miller
0c0a02dfd1 In unsetenv() check for NULL or empty name as per POSIX 1003.1-2008 2010-06-29 09:10:43 -04:00
Todd C. Miller
895e30184e Use warningx() instead of log_error() since the latter is not available 
to visudo or testsudoers.  This does mean that they don't end up in syslog.
 2010-06-25 10:06:08 -04:00
Todd C. Miller
189b43fed3 Defer call to sudo_nonunix_groupcheck_cleanup() until after we have 
closed the sudoers sources.  From Quest sudo.
 2010-06-25 10:05:51 -04:00
Todd C. Miller
8f58fd36bb Ignore case when matching user/group names in the cache. From Quest sudo. 2010-06-25 10:05:37 -04:00
Todd C. Miller
d69e4fd42b Add a cast to quiet a compiler warning. 2010-06-18 18:45:43 -04:00
Todd C. Miller
41b15ae81e Quiet a compiler warning. 2010-06-18 18:39:40 -04:00
Todd C. Miller
d1bf11db33 Call set_fqdn() after sudoers has parsed instead of inline as a callback. 2010-06-18 17:47:55 -04:00
Todd C. Miller
d79b0ece15 Do not call set_fqdn() until sudoers parses (where is gets run as a callback). 2010-06-18 17:25:59 -04:00
Todd C. Miller
f5c5a9bf6a Do not update tty ticket if there is no tty. 2010-06-18 08:00:16 -06:00
Todd C. Miller
9a16dc514d Add stub declarations for struct stat and struct timeval 2010-06-16 17:10:04 -04:00