diff options
| author | Todd C. Miller <Todd.Miller@courtesan.com> | 1996-11-16 19:42:46 +0000 |
|---|---|---|
| committer | Todd C. Miller <Todd.Miller@courtesan.com> | 1996-11-16 19:42:46 +0000 |
| commit | 8c8aa50a031a8627384a1519d15296bf755880fc (patch) | |
| tree | bc5f62b813c13a085f2125145d6effd6f49869e6 /TODO | |
| parent | 7f15e185e00748d91a4352ea140c3047bb3597bb (diff) | |
| download | sudo-8c8aa50a031a8627384a1519d15296bf755880fc.tar.gz | |
sudo 1.5.3.
Diffstat (limited to 'TODO')
| -rw-r--r-- | TODO | 41 |
1 files changed, 22 insertions, 19 deletions
@@ -9,43 +9,46 @@ TODO list (most will be addressed in the next rewrite) 04) Make the sudoers file accessible via NIS, Hesiod, and maybe NetInfo. -05) Add a %h field to MAILSUBJECT for the hostname. +05) Add a -h (?) flag to sudo for a history mechanism. -06) Add a -h (?) flag to sudo for a history mechanism. +06) Make parse.lex in the same coding style as everything else... -07) Make parse.lex in the same coding style as everything else... +07) Add an option to hard-code LD_LIBRARY_PATH? -08) Add an option to hard-code LD_LIBRARY_PATH? +08) Add Prog_Alias facility (Prog_Alias VI = /usr/secure/bin/vi +args). -09) Add Prog_Alias facility (Prog_Alias VI = /usr/secure/bin/vi +args). +09) Make '!' work in Cmnd_Alias, Host_Alias, User_Alias and runas list. -10) Make '!' work in Cmnd_Alias, Host_Alias, User_Alias and runas list. +10) check for <net/errno.h> in configure and include it in sudo.c if it exists. -11) check for <net/errno.h> in configure and include it in sudo.c if it exists. +11) Add generic STREAMS support for getting interfaces and netmasks. -12) Add generic STREAMS support for getting interfaces and netmasks. - -13) Do shadow password detection at runtime like sunos' issecure(3)??? +12) Do shadow password detection at runtime like sunos' issecure(3)??? If so then start using GLOBAL_NO_SPW_ENT again (but rename it). -14) Do all the envariable additions in one fell swoop for efficiency and speed. +13) Do all the envariable additions in one fell swoop for efficiency and speed. -15) Catch/ignore signals in sudo? +14) Catch/ignore signals in sudo? -16) Make -p work with -v and -l in any order. +15) Make -p work with -v and -l in any order. -17) Add support for "safe scripts" by checking for shell script +16) Add support for "safe scripts" by checking for shell script cookie (first two bytes are "#!") and execing the shell outselves after doing the stat to guard against spoofing. This should avoid the race condition caused by going through namei() twice... -18) Sudo should not allow someone with a nil password to run commands. +17) Sudo should not allow someone with a nil password to run commands. -19) Overhaul testsudoers to use parse.o so we don't reimplement things. +18) Overhaul testsudoers to use parse.o so we don't reimplement things. -20) Make runas_user a struct "runas" with user and group components. +19) Make runas_user a struct "runas" with user and group components. (make uid and gid too???) -21) Add -g group/gid option. +20) Add -g group/gid option. + +21) Make `sudo -l' output prettier. -22) Make `sudo -l' output prettier. +22) Should be able to mix Cmnd_Alias's and command args. Ie: + pete ALL=PASSWD [A-z]*,!PASSWD root + where PASSWD was defined to be /usr/bin/passwd. + This requires the arg parsing to happen in the yacc grammer. |