summaryrefslogtreecommitdiff
path: root/usr.bin/sudo
AgeCommit message (Collapse)Author
2015-02-10Sanity check TZ environment variable; backport from sudo 1.8.12Todd C. Miller
2015-01-20Revert some $OpenBSD$ additions about which there are doubts.Kenneth R Westerback
Suggested by deraadt@
2015-01-20Missing $OpenBSD$'s.Kenneth R Westerback
ok deraadt@
2015-01-16add missing .An macrosIngo Schwarze
2014-04-24Fix logic inversion when checking environment variables on theTodd C. Miller
command line against the blacklist. This is only a problem when env_reset is disabled. CVE 2014-0106
2014-04-22Use calloc() instead of malloc(n * s) followed by memset(). NotTodd C. Miller
actually used on OpenBSD but changed to avoid false positives in audits. From Jean-Philippe Ouellet.
2014-04-08add an error detection mechanism. People not used to doing ports often messMarc Espie
up their sudo configuration, and end up telling us that "flavors are broken". Add an explicit env variable that's there just to catch that early, to be bumped each time sudoers need to be adjusted. okay sthen@, matthieu@
2014-02-16* simplify the documentation of -l as suggested by millert@Ingo Schwarze
* the `-' arg to -c is a fixed string for the cmd line, so use .Cm ok millert@
2014-02-15simplify macro usage, in part suggested by jmc@,Ingo Schwarze
and fix a few markup bugs; ok millert@
2014-02-15Don't need keeps in SYNOPSIS for .mdoc.Todd C. Miller
Fix escaping of colon in example.
2014-02-15minor macro cleanup; from Jan Stary <hans at stare dot cz>;Ingo Schwarze
ok millert@
2013-12-12handle ttysize/TIOCGSIZE as a fallback for winsize/TIOCGWINSZ, not theChristian Weisgerber
other way around; ok millert@
2013-12-08Make -c option description more accurate (merged from sudo 1.8).Todd C. Miller
2013-12-07When checking whether a user may change the login class, just checkTodd C. Miller
pw_uid of the runas user, which was passed in to set_loginclass().
2013-11-06Back port remainder of use_loginclass fix from sudo 1.7.9.Todd C. Miller
2013-09-23Keep Defaults env_keep to a minimum: basically just what is required forAntoine Jacoutot
pkg_add(1) to work properly. Keep previous Defaults env_keep that were mostly used for building src and ports only for users in the 'wsrc' group. Add commented ftp_proxy http_proxy. People wanting VISUAL/PAGER/EDITOR... can easily set it up... or it will be another commit. discussed^bikeshedded with many ok nick@ dcoppa@ espie@ sthen@ millert@
2013-09-23Revert. It seems people don't agree about which device should be used.Antoine Jacoutot
req. by krw@ millert@
2013-09-23cd0a -> cd0c for consistency with the FAQ.Antoine Jacoutot
discussed with and ok miod@
2013-09-12Add SM_PATH to the default env_keep.Antoine Jacoutot
ok espie@ dcoppa@ sthen@ millert@
2013-09-11A couple of %d / (long)tv_sec -> %lld / (long long)tv_sec. The codeKenneth R Westerback
is not compiled on OpenBSD but don't leave bad examples lying around if avoidable. ok millert@
2013-04-29use FD_CLOEXEC instead of 1; from David HillOkan Demirmen
ok otto
2013-03-19Fix use_loginclass, backport from upstream.Todd C. Miller
2013-03-10Remove obsolete code that used to change the mode of sudoers fromTodd C. Miller
the old (pre-1.6) default.
2013-02-04In rbrepair(), make sure we never try to change the color of theTodd C. Miller
sentinel node, which is the first entry, not the root.
2012-08-17Native mdoc versions of the sudo manuals, back-ported from sudo trunk.Todd C. Miller
2012-05-16Add missing break between AF_INET and AF_INET6 in addr_matches_if_netmask()Todd C. Miller
Addresses CVE 2012-2337
2011-05-01Split ALL, ROLE and TYPE into their own actions. Since you canTodd C. Miller
only have #ifdefs inside of braces, ROLE and TYPE use a naughty goto in the non-SELinux case. This is safe because the actions are in one big switch() statement. Prodded by and with help from espie@
2011-04-29sorry, lousy fingers... typoed in the file while checking the diffMarc Espie
2011-04-29slightly better netmask regexpMarc Espie
okay millert@ henning@
2011-02-06Fix NULL dereference with "sudo -g group" when the sudoers rule hasTodd C. Miller
no runas user or group listed.
2011-01-12Backport fix from sudo 1.7.4p5; if -g specified w/o -u the targetTodd C. Miller
user is considered to be different from the invoking user unless the user's gid is the same as the target gid.
2010-07-08Update sudo to version 1.7.2p8Todd C. Miller
2010-06-02Update to sudo 1.7.2p7Todd C. Miller
2010-04-13Update to sudo 1.7.2p6Todd C. Miller
2010-03-11Fix intended use of closefrom() so that we do indeed close fd 3 and up byAlexander Hall
default and make -C work as expected. fine by kettenis@, beck@, millert@
2010-03-09Don't attempt to dereference gl_pathv if the gl_pathc returned by glob(3) isMark Kettenis
zero. ok deraadt@, millert@
2010-03-04Remove old $Sudo$ tags; the main sudo tree no longer lives in cvs.Todd C. Miller
2010-03-01update to sudo 1.7.2p5Todd C. Miller
2010-02-23bump patchlevelTodd C. Miller
2010-02-22Check for pseudo-command by looking at the first character of theTodd C. Miller
command in sudoers instead of checking the user-supplied command for a slash.
2010-02-13Update to sudo 1.7.2p3Todd C. Miller
2009-12-07update to sudo 1.7.2p2Todd C. Miller
2009-10-26Add MAKECONF for building ports in non-standard locations; from Tobias UlmerTodd C. Miller
2009-10-25Add DISTDIR to list of variables preserved via default env_keep,Kenneth R Westerback
making one more piece of ports building via sudo less surprising. ok millert@
2009-07-19Missed these in sudo sudo 1.7.2 update.Todd C. Miller
2009-07-19Fix expansion of %h in #include names.Todd C. Miller
2009-06-30Add missing single quotes around a colon in Runas_Spec definition.Todd C. Miller
2009-06-29sync with sudo 1.7.2Todd C. Miller
2009-06-26Sync with sudo repoTodd C. Miller
2009-06-24Make environment file parsing grok linux-style env files.Todd C. Miller
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-12 17:45:07 +0000