Age | Commit message (Expand) | Author |
2019-09-14 | correct some unveil(2) violations due to "login.conf.db" access (the .db version | Sebastien Marie |
2019-07-12 | Delete a sentence about the prompt that has nothing to do with su(1). | Ingo Schwarze |
2019-06-28 | When system calls indicate an error they return -1, not some arbitrary | Theo de Raadt |
2019-06-27 | Partial rewrite of the explanation of environment handling to avoid: | Ingo Schwarze |
2019-06-20 | auth_approval() returns 0 on failure, so don't test for <= 0 | Theo de Raadt |
2019-06-19 | Fix regression introduced in rev. 1.59 where the wrong shell is | Todd C. Miller |
2019-06-13 | su(I) goes back all the way to v1: | Ingo Schwarze |
2019-06-12 | when "login" is not specified, "root" is used; | Ingo Schwarze |
2019-01-28 | ttyname() is used, therefore must unveil _PATH_DEVDB. | Theo de Raadt |
2018-10-21 | need to unveil() /etc/shells also for -m option; ok florian | Theo de Raadt |
2018-08-23 | A sequence of increasingly restrictive pledges was already present | Theo de Raadt |
2015-10-30 | Redo 1.69, but correctly, so that this really works for yp setups. | Miod Vallat |
2015-10-24 | Move removal of "getpw" pledge after all setusercontext() calls, for yp sake. | Miod Vallat |
2015-10-23 | pledge "stdio rpath getpw proc exec id" at start, much like doas. | Theo de Raadt |
2015-07-30 | switch references from sudo to doas; | Jason McIntyre |
2015-04-15 | remove historical (void)foo (which were only here to hide lint's | Theo de Raadt |
2015-04-15 | It feels like this Makefile should contain -Wall at least | Theo de Raadt |
2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
2014-04-24 | remove kerberos reference, and knock some fairly useless Xr out; | Jason McIntyre |
2014-04-22 | no more kerb, ok kettenis | Henning Brauer |
2011-01-11 | Allow su -l to login to a user that has a non-existent home directory, | Robert Nagy |
2010-12-13 | Call setusercontext() with the LOGIN_SETENV flag for "su -l" to pick up | Todd C. Miller |
2010-12-10 | - don't use memory from the session we've already cleaned in the | Martynas Venckus |
2010-12-10 | It is user/root not user.root for kerberos 5. | Todd C. Miller |
2010-12-10 | Try to make this a little less kerberos-centric and remove a BUGS | Todd C. Miller |
2010-12-09 | .Bk/.Ek is required now to keep the output generated from each macro | Igor Sobrado |
2010-12-09 | spacing, no functional change. | Igor Sobrado |
2010-12-09 | usage should fit on a 80-column display | Igor Sobrado |
2010-12-09 | add -s to usage | Igor Sobrado |
2010-12-09 | Add support for "-s shell" to su(1). This can be used by the superuser | Todd C. Miller |
2009-10-28 | rcsid[] and sccsid[] and copyright[] are essentially unmaintained (and | Theo de Raadt |
2007-10-19 | do setegid() before seteuid(); see pr 5605 for more info; ok millert | Theo de Raadt |
2007-05-31 | convert to new .Dd format; | Jason McIntyre |
2005-04-18 | use a standard EXAMPLES format; | Jason McIntyre |
2005-04-18 | add an example using both -c login_class and -c shell_arg; | Jason McIntyre |
2005-01-22 | put -K in the right place; | Jason McIntyre |
2003-11-09 | Typos in comments from Jared Yanovich <jjy2+ at pitt dot edu> | Otto Moerbeek |
2003-09-26 | Typos: defintion -> definition, proccess -> process | Miod Vallat |
2003-07-25 | remove obsolete kerberos references; | Jason McIntyre |
2003-06-21 | correct sign of flags; millert ok | Theo de Raadt |
2003-06-20 | Call setusershell() before using getusershell() to guarantee we | Todd C. Miller |
2003-06-10 | - section reorder | Jason McIntyre |
2003-06-03 | Remove the advertising clause in the UCB license which Berkeley | Todd C. Miller |
2002-12-17 | Only call setlogin() if this proccess is a session leader. | Todd C. Miller |
2002-12-08 | GNU semantics say that if optstring begins with '-' then | Todd C. Miller |
2002-12-07 | Repair -a flag parsing which I broke in revision 1.47. | Todd C. Miller |
2002-11-14 | use $ or # before commands in examples | Theo de Raadt |
2002-11-08 | In login emulation mode use the same setusercontext() flags as | Todd C. Miller |
2002-10-16 | Add a new flag, -L, to cause su(1) to loop asking for a login/password | Todd C. Miller |
2002-07-22 | auth_close() was not actually getting called in auth_errx?() (not | Todd C. Miller |