| Age | Commit message (Expand) | Author |
|---|
| 2020-02-10 | briefly mention /etc/examples/ in the FILES section of all the | Ingo Schwarze |
| 2019-10-18 | add some checks to avoid UID_MAX (-1) here. this is not problematic with | Ted Unangst |
| 2019-09-14 | correct some unveil(2) violations due to "login.conf.db" access (the .db version | Sebastien Marie |
| 2019-07-07 | fix one last edge case regarding PATH, allows simpler config. | Ted Unangst |
| 2019-07-04 | note that authentication is required, unless otherwise configured. | Ted Unangst |
| 2019-07-03 | snprintf/vsnprintf return < 0 on error, rather than -1. | Theo de Raadt |
| 2019-06-29 | fix some more fallout from setting path in setusercontext. restore | Ted Unangst |
| 2019-06-24 | add an example hint that shows how original path can be retained | Ted Unangst |
| 2019-06-21 | tweak wording a bit. always talk about creating a new environment. | Ted Unangst |
| 2019-06-19 | more precisely describe what happens to the environment without keepenv; | Ingo Schwarze |
| 2019-06-19 | mention that doas(1) resets the umask(2); | Ingo Schwarze |
| 2019-06-17 | setusercontext resets PATH (which we want). but then it becomes | Ted Unangst |
| 2019-06-17 | mention environment resetting here as well. ok millert | Ted Unangst |
| 2019-06-17 | always reset the "su" variables, which is more consistent and predictable. | Ted Unangst |
| 2019-06-16 | redo the environment inheritance to not inherit. it was intended to make | Ted Unangst |
| 2019-06-12 | a few cleanups and simplifications possible now that static pw is gone. | Ted Unangst |
| 2019-06-10 | use getpwuid_r to avoid problems with hidden static storage. | Ted Unangst |
| 2019-01-17 | clear the password even after a mismatch | Ted Unangst |
| 2018-08-08 | After authentication is complete, unveil login.conf "r" (to discover | Theo de Raadt |
| 2018-07-11 | Do for most running out of memory err() what was done for most running | Kenneth R Westerback |
| 2018-02-07 | lowercase doas ee cummings style | Ted Unangst |
| 2018-02-07 | not necessarily the same name, but the indicated name | Ted Unangst |
| 2017-07-13 | man pages with pseudo synopses which list filenames end up creating | Jason McIntyre |
| 2017-07-03 | no need to generate y.tab.h if nothing uses it, set YFLAGS to nothing | Marc Espie |
| 2017-05-27 | for password failure, print Authorization failed instead of EPERM. | Ted Unangst |
| 2017-04-06 | a little const here and there to prevent rules from changing | Ted Unangst |
| 2017-04-06 | prepenv can take a const rule | Ted Unangst |
| 2017-03-20 | simplify example. list of ports variables was non-exahustive, which means | Ted Unangst |
| 2017-03-09 | exit test for -L was reversed. spotted by Michael Forney | Ted Unangst |
| 2017-01-14 | add a geteuid check to make sure we're root before plowing into setauth. | Ted Unangst |
| 2017-01-02 | envlist and arglist are both string lists; simplify | Ted Unangst |
| 2016-12-29 | it has been six months and two days... remove keepenv { obsolete } syntax | Ted Unangst |
| 2016-12-05 | Be more explicit about the "args" syntax. | Ingo Schwarze |
| 2016-11-10 | missing semicolon at end of rule. yacc doesn't seem to mind, though. | Ted Unangst |
| 2016-10-05 | Add back the call to yyparse() that was accidentally dropped in the | Theo Buehler |
| 2016-10-05 | move yyparse decl next to yyfp | Ted Unangst |
| 2016-10-05 | as a result of the env rework, arraylen() is only used in parse.y. | Ted Unangst |
| 2016-09-15 | use static in the right places to seperate modules better | Theo de Raadt |
| 2016-09-04 | -L means no command | Ted Unangst |
| 2016-09-04 | don't allow combining nopass and persist in a single rule | Ted Unangst |
| 2016-09-03 | the sudo timeout was 5 minutes i believe, so we'll match that. | Ted Unangst |
| 2016-09-02 | clarify that -L will exit without running a command. | Ted Unangst |
| 2016-09-02 | add support for the verified auth ioctls using 'persist' rules. | Ted Unangst |
| 2016-09-01 | unconst these parameters; i won't be changing bsd auth today. | Ted Unangst |
| 2016-09-01 | move the authentication code to a function | Ted Unangst |
| 2016-07-18 | The string with path to shell could be taken directly from struct passwd. | Vadim Zhukov |
| 2016-07-12 | add "recvfd" to doas(1) for use with skey. | Sebastien Marie |
| 2016-07-10 | rename variable for consistency | Ted Unangst |
| 2016-06-27 | minor tweaks; ok tedu | Jason McIntyre |
| 2016-06-27 | somehow nopass snuck onto the :wheel example. i think it's better without. | Ted Unangst |
