update to what will soon be sudo 1.6.7

1 files changed, 32 insertions, 18 deletions

diff --git a/usr.bin/sudo/TODO b/usr.bin/sudo/TODO
index 8bfda23ce7e..c72e3abea3d 100644
--- a/usr.bin/sudo/TODO
+++ b/usr.bin/sudo/TODO
@@ -60,55 +60,69 @@ TODO list (most will be addressed in sudo 2.0)
 
 22) Use strtol() and strtoul(), not atoi()
 
-23) In parse.yacc get rid of unneeded '{ ; }'
-
 24) Look into %e, %p, %k in parse.lex
 
-25) Make syslog stuff work on vanilla ultrix
+24) Make syslog stuff work on vanilla ultrix
 
-26) Implement date_format and log_format options.
+25) Implement date_format and log_format options.
 
-27) Add support for: Default:user@host
+26) Add support for: Default:user@host
 
-28) Do login-style -sh hack for sudo -s? (new option or do it always?)
+27) Do login-style -sh hack for sudo -s? (new option or do it always?)
 
-29) Make visudo rcs-aware
+28) Make visudo rcs-aware
 
-30) Add support for parsing multiple sudoers files.  Basically make
+29) Add support for parsing multiple sudoers files.  Basically make
     _PATH_SUDOERS be a colon-separated list of pathname like EDITOR.
     Requires _PATH_SUDOERS_TMP chages (perhaps "%s.tmp").
 
-31) Add -i (simulate initial login) option as per 946 +sudo
+30) Add -i (simulate initial login) option as per 946 +sudo
     (requires two-pass parser).  Also add "default_path" Defaults option
     to go with it.  (See MINUS_I.patch)
 
-32) Some people want to be able to specify a special password in sudoers
+31) Some people want to be able to specify a special password in sudoers
     in addition or instead of the normal one.  The best argument for
     this so far is to be able to use separate passwords for the
     target users that are not the passwd file ones.
 
-33) Add support for trusted users.  E.g. allow user to run a certain
+32) Add support for trusted users.  E.g. allow user to run a certain
     command regardless of what dir it is in if it is owned by the
     trusted user.
 
-34) Add mechanism to choose logfile based on RunasUser
+33) Add mechanism to choose logfile based on RunasUser
 
-35) Split the parser into two stages.  The first parse checks for
+34) Split the parser into two stages.  The first parse checks for
     syntax and sets the Defaults options and sets up the
     data structures to check a user.  The second stage does
     the actual user check.
 
-36) Add a flag similar to '-l' but that spits out sudo commands in
+35) Add a flag similar to '-l' but that spits out sudo commands in
     a format suitable for cut & paste (requires parser overhaul first).
 
-37) Someone wants a recursive version of the dir specifier.  Ie:
+36) Someone wants a recursive version of the dir specifier.  Ie:
     SOME_MODIFIER:/usr/local/ to allow anything under /usr/local to be run.
 
-38) An option to set the shell to the target user would make sense.
+37) An option to set the shell to the target user would make sense.
     See other target user-related issues above.
 
-39) Add an option (-D) to dump the defaults after the sudoers file
+38) Add an option (-D) to dump the defaults after the sudoers file
     has been parsed.  Should only be available to root and should
     allow a -u user modifier.
 
-40) For sudo 1.7 wipe out the environment by default.
+39) For sudo 1.7 wipe out the environment by default.
+
+40) Allow /etc/sudoers to be a symlink but require the parent dir to
+    be root-owned and not writable by anything else.  Should really
+    traverse the tree to the root doing this.
+
+41) Improve interfaces.c STREAMS code (see ntpd's ntp_io.c for hints)
+
+42) Wildcard support for user and group names? (netgroup too?)
+
+43) If root_sudo is off, still allow sudo -u to non-root users?
+
+44) Add configure option to id user based on euid not ruid?
+
+45) Split $EDITOR/$VISUAL in visudo into an argument vector based on whitespace
+
+46) Make Kerberos paths and libs situation as sane as possible