summaryrefslogtreecommitdiff
path: root/usr.bin/su
AgeCommit message (Expand)Author
2019-09-14correct some unveil(2) violations due to "login.conf.db" access (the .db versionSebastien Marie
2019-07-12Delete a sentence about the prompt that has nothing to do with su(1).Ingo Schwarze
2019-06-28When system calls indicate an error they return -1, not some arbitraryTheo de Raadt
2019-06-27Partial rewrite of the explanation of environment handling to avoid:Ingo Schwarze
2019-06-20auth_approval() returns 0 on failure, so don't test for <= 0Theo de Raadt
2019-06-19Fix regression introduced in rev. 1.59 where the wrong shell isTodd C. Miller
2019-06-13su(I) goes back all the way to v1:Ingo Schwarze
2019-06-12when "login" is not specified, "root" is used;Ingo Schwarze
2019-01-28ttyname() is used, therefore must unveil _PATH_DEVDB.Theo de Raadt
2018-10-21need to unveil() /etc/shells also for -m option; ok florianTheo de Raadt
2018-08-23A sequence of increasingly restrictive pledges was already presentTheo de Raadt
2015-10-30Redo 1.69, but correctly, so that this really works for yp setups.Miod Vallat
2015-10-24Move removal of "getpw" pledge after all setusercontext() calls, for yp sake.Miod Vallat
2015-10-23pledge "stdio rpath getpw proc exec id" at start, much like doas.Theo de Raadt
2015-07-30switch references from sudo to doas;Jason McIntyre
2015-04-15remove historical (void)foo (which were only here to hide lint'sTheo de Raadt
2015-04-15It feels like this Makefile should contain -Wall at leastTheo de Raadt
2015-01-16Replace <sys/param.h> with <limits.h> and other less dirty headers whereTheo de Raadt
2014-04-24remove kerberos reference, and knock some fairly useless Xr out;Jason McIntyre
2014-04-22no more kerb, ok kettenisHenning Brauer
2011-01-11Allow su -l to login to a user that has a non-existent home directory,Robert Nagy
2010-12-13Call setusercontext() with the LOGIN_SETENV flag for "su -l" to pick upTodd C. Miller
2010-12-10- don't use memory from the session we've already cleaned in theMartynas Venckus
2010-12-10It is user/root not user.root for kerberos 5.Todd C. Miller
2010-12-10Try to make this a little less kerberos-centric and remove a BUGSTodd C. Miller
2010-12-09.Bk/.Ek is required now to keep the output generated from each macroIgor Sobrado
2010-12-09spacing, no functional change.Igor Sobrado
2010-12-09usage should fit on a 80-column displayIgor Sobrado
2010-12-09add -s to usageIgor Sobrado
2010-12-09Add support for "-s shell" to su(1). This can be used by the superuserTodd C. Miller
2009-10-28rcsid[] and sccsid[] and copyright[] are essentially unmaintained (andTheo de Raadt
2007-10-19do setegid() before seteuid(); see pr 5605 for more info; ok millertTheo de Raadt
2007-05-31convert to new .Dd format;Jason McIntyre
2005-04-18use a standard EXAMPLES format;Jason McIntyre
2005-04-18add an example using both -c login_class and -c shell_arg;Jason McIntyre
2005-01-22put -K in the right place;Jason McIntyre
2003-11-09Typos in comments from Jared Yanovich <jjy2+ at pitt dot edu>Otto Moerbeek
2003-09-26Typos: defintion -> definition, proccess -> processMiod Vallat
2003-07-25remove obsolete kerberos references;Jason McIntyre
2003-06-21correct sign of flags; millert okTheo de Raadt
2003-06-20Call setusershell() before using getusershell() to guarantee weTodd C. Miller
2003-06-10- section reorderJason McIntyre
2003-06-03Remove the advertising clause in the UCB license which BerkeleyTodd C. Miller
2002-12-17Only call setlogin() if this proccess is a session leader.Todd C. Miller
2002-12-08GNU semantics say that if optstring begins with '-' thenTodd C. Miller
2002-12-07Repair -a flag parsing which I broke in revision 1.47.Todd C. Miller
2002-11-14use $ or # before commands in examplesTheo de Raadt
2002-11-08In login emulation mode use the same setusercontext() flags asTodd C. Miller
2002-10-16Add a new flag, -L, to cause su(1) to loop asking for a login/passwordTodd C. Miller
2002-07-22auth_close() was not actually getting called in auth_errx?() (notTodd C. Miller