| Age | Commit message (Expand) | Author |
|---|
| 2022-12-22 | Denote multiple arguments with 'arg ...' not 'args' | Klemens Nanni |
| 2022-03-23 | Now that libc setusercontext() handling of setrtable is repaired, su(8) | Theo de Raadt |
| 2022-03-19 | backout r1.86 "login class routing table should be honored when doing | Stuart Henderson |
| 2022-03-15 | login class routing table should be honored when | Solene Rapenne |
| 2022-02-10 | unveil _PATH_LOGIN_CONF_D | Robert Nagy |
| 2021-07-12 | Change the error reporting pattern throughout the tree when unveil | Bob Beck |
| 2020-10-30 | auth_approval() does not necessarily set errno on failure. | Todd C. Miller |
| 2020-08-17 | honor /etc/nologin by unveiled it | Sebastien Marie |
| 2020-07-08 | Clarify that csh's -f flag is not just about .cshrc. | Todd C. Miller |
| 2020-07-08 | Simplify csh vs other shells setup code | Jeremie Courreges-Anglas |
| 2020-07-08 | Teach su -l -f how to start a regular shell for non-csh shells | Jeremie Courreges-Anglas |
| 2019-12-07 | In -L (loop) mode, reset the login class each time through the loop. | Todd C. Miller |
| 2019-12-04 | libc's authentication privsep layer performed insufficient username | Theo de Raadt |
| 2019-09-14 | correct some unveil(2) violations due to "login.conf.db" access (the .db version | Sebastien Marie |
| 2019-07-12 | Delete a sentence about the prompt that has nothing to do with su(1). | Ingo Schwarze |
| 2019-06-28 | When system calls indicate an error they return -1, not some arbitrary | Theo de Raadt |
| 2019-06-27 | Partial rewrite of the explanation of environment handling to avoid: | Ingo Schwarze |
| 2019-06-20 | auth_approval() returns 0 on failure, so don't test for <= 0 | Theo de Raadt |
| 2019-06-19 | Fix regression introduced in rev. 1.59 where the wrong shell is | Todd C. Miller |
| 2019-06-13 | su(I) goes back all the way to v1: | Ingo Schwarze |
| 2019-06-12 | when "login" is not specified, "root" is used; | Ingo Schwarze |
| 2019-01-28 | ttyname() is used, therefore must unveil _PATH_DEVDB. | Theo de Raadt |
| 2018-10-21 | need to unveil() /etc/shells also for -m option; ok florian | Theo de Raadt |
| 2018-08-23 | A sequence of increasingly restrictive pledges was already present | Theo de Raadt |
| 2015-10-30 | Redo 1.69, but correctly, so that this really works for yp setups. | Miod Vallat |
| 2015-10-24 | Move removal of "getpw" pledge after all setusercontext() calls, for yp sake. | Miod Vallat |
| 2015-10-23 | pledge "stdio rpath getpw proc exec id" at start, much like doas. | Theo de Raadt |
| 2015-07-30 | switch references from sudo to doas; | Jason McIntyre |
| 2015-04-15 | remove historical (void)foo (which were only here to hide lint's | Theo de Raadt |
| 2015-04-15 | It feels like this Makefile should contain -Wall at least | Theo de Raadt |
| 2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
| 2014-04-24 | remove kerberos reference, and knock some fairly useless Xr out; | Jason McIntyre |
| 2014-04-22 | no more kerb, ok kettenis | Henning Brauer |
| 2011-01-11 | Allow su -l to login to a user that has a non-existent home directory, | Robert Nagy |
| 2010-12-13 | Call setusercontext() with the LOGIN_SETENV flag for "su -l" to pick up | Todd C. Miller |
| 2010-12-10 | - don't use memory from the session we've already cleaned in the | Martynas Venckus |
| 2010-12-10 | It is user/root not user.root for kerberos 5. | Todd C. Miller |
| 2010-12-10 | Try to make this a little less kerberos-centric and remove a BUGS | Todd C. Miller |
| 2010-12-09 | .Bk/.Ek is required now to keep the output generated from each macro | Igor Sobrado |
| 2010-12-09 | spacing, no functional change. | Igor Sobrado |
| 2010-12-09 | usage should fit on a 80-column display | Igor Sobrado |
| 2010-12-09 | add -s to usage | Igor Sobrado |
| 2010-12-09 | Add support for "-s shell" to su(1). This can be used by the superuser | Todd C. Miller |
| 2009-10-28 | rcsid[] and sccsid[] and copyright[] are essentially unmaintained (and | Theo de Raadt |
| 2007-10-19 | do setegid() before seteuid(); see pr 5605 for more info; ok millert | Theo de Raadt |
| 2007-05-31 | convert to new .Dd format; | Jason McIntyre |
| 2005-04-18 | use a standard EXAMPLES format; | Jason McIntyre |
| 2005-04-18 | add an example using both -c login_class and -c shell_arg; | Jason McIntyre |
| 2005-01-22 | put -K in the right place; | Jason McIntyre |
| 2003-11-09 | Typos in comments from Jared Yanovich <jjy2+ at pitt dot edu> | Otto Moerbeek |
