| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Don't write an empty timestamp record when timestamp_timeout is | Todd C. Miller | 2014-03-17 | 1 | -1/+7 |
| | | | | | | zero. If we find an empty record in the timestamp file, overwrite it with a good one, truncating the file as needed. | ||||
| * | Fix typo/thinko that prevented "Defaults !tty_tickets" from working. | Todd C. Miller | 2014-03-13 | 1 | -2/+2 |
| | | |||||
| * | Fix "sudo -l command" output when the matching command is negated. | Todd C. Miller | 2014-03-13 | 1 | -1/+2 |
| | | | | | Bug #636 | ||||
| * | CWD no longer used. | Todd C. Miller | 2014-03-11 | 1 | -1/+0 |
| | | |||||
| * | Fix diff of toke and err output files in "make check" | Todd C. Miller | 2014-03-11 | 1 | -2/+2 |
| | | |||||
| * | Fix compiler warning in debug code. | Todd C. Miller | 2014-03-06 | 1 | -1/+1 |
| | | |||||
| * | Fix handling of '!' operator when converting sudoers. We now add | Todd C. Miller | 2014-03-04 | 1 | -18/+49 |
| | | | | | a "negated" boolean flag to objects that have the '!' operator. | ||||
| * | Czech translation for sudoers from translationproject.org | Todd C. Miller | 2014-03-01 | 2 | -0/+1725 |
| | | |||||
| * | Fix typo in setreuid() PERM_ROOT error message. | Todd C. Miller | 2014-02-27 | 1 | -1/+1 |
| | | |||||
| * | Fix conversion of timestamp_timeout from double to struct timeval. | Todd C. Miller | 2014-02-26 | 1 | -3/+3 |
| | | | | | Also quiet a printf format warning on 32-bit systems. | ||||
| * | Serbian translation for sudoers from translationproject.org. | Todd C. Miller | 2014-02-25 | 2 | -0/+1718 |
| | | |||||
| * | When exporting sudoers in JSON format, use the same type of Options | Todd C. Miller | 2014-02-24 | 1 | -11/+11 |
| | | | | | object for both Defaults and Cmnd_Specs. | ||||
| * | sync with translationproject.org | Todd C. Miller | 2014-02-17 | 4 | -410/+435 |
| | | |||||
| * | We also need to open the sudoers file as root if there is a GID | Todd C. Miller | 2014-02-17 | 1 | -4/+5 |
| | | | | | mismatch. | ||||
| * | Fix indentation of Defaults entries. The initial indent should be | Todd C. Miller | 2014-02-12 | 1 | -1/+1 |
| | | | | | outside the loop iterating over the entries. | ||||
| * | sync with translationproject.org | Todd C. Miller | 2014-02-11 | 14 | -1468/+1510 |
| | | |||||
| * | We must include gettext.h before missing.h as it includes system | Todd C. Miller | 2014-02-11 | 8 | -12/+17 |
| | | | | | | headers. Also add missing DEFAULT_TEXT_DOMAIN defines in sudoers audit code that does not include sudoers.h. | ||||
| * | Add some initprogname() calls to the test programs. | Todd C. Miller | 2014-02-08 | 1 | -1/+4 |
| | | |||||
| * | regen | Todd C. Miller | 2014-02-07 | 1 | -32/+36 |
| | | |||||
| * | Add use_netgroups sudoers option. For LDAP-based sudoers, netgroup | Todd C. Miller | 2014-02-07 | 6 | -30/+55 |
| | | | | | | | support requires an expensive substring match on the server. If netgroups are not needed, this option can be disabled to reduce the load on the LDAP server. | ||||
| * | Update copyright year. | Todd C. Miller | 2014-02-06 | 1 | -1/+1 |
| | | |||||
| * | Use a default LDAP search filter of (objectClass=sudoRole). When | Todd C. Miller | 2014-02-06 | 1 | -2/+6 |
| | | | | | | | | constructing the netgroup query, add (sudoUser=*) to the query so we don't fall below the 3 character OpenLDAP substring threshold. Otherwise the index for sudoUser will never be used for that query. Pointed out by Michael Stroeder. | ||||
| * | Don't warn about an insecure lecture dir twice. | Todd C. Miller | 2014-02-06 | 1 | -17/+25 |
| | | | | | Display warnings in the user's locale. | ||||
| * | Use inet_pton() instead of inet_aton() and include a version from | Todd C. Miller | 2014-02-05 | 2 | -5/+5 |
| | | | | | BIND for those without it. | ||||
| * | Add back boottime.lo | Todd C. Miller | 2014-02-03 | 1 | -1/+4 |
| | | |||||
| * | Bring back boot time checking code and zero out time stamp files | Todd C. Miller | 2014-02-03 | 3 | -3/+174 |
| | | | | | | that predate the boot time. This should help systems w/o /var/run where the admin has setup rc.d to clear the timestamp directory. | ||||
| * | regen | Todd C. Miller | 2014-02-02 | 1 | -175/+167 |
| | | |||||
| * | Restore warning when sudoers is unable to update the time stamp file. | Todd C. Miller | 2014-02-01 | 1 | -0/+3 |
| | | |||||
| * | Replace --with-timedir and --with-lecture_dir with --with-rundir | Todd C. Miller | 2014-02-01 | 1 | -3/+6 |
| | | | | | | | and --with-vardir which are the parent directories of the time stamp and lecture dirs. These directories need to be searchable by non-root so that the timestampowner setting can function. | ||||
| * | Fix use of timestampowner in the new time stamp world order. Parent | Todd C. Miller | 2014-02-01 | 1 | -30/+24 |
| | | | | | | directories for timestampdir and lecture_dir are now created with the execute bit set so that we can traverse them as non-root. | ||||
| * | Regen Makefiles. | Todd C. Miller | 2014-01-31 | 2 | -8/+9 |
| | | |||||
| * | Move ctim_get and mtim_get to sudo_util.h | Todd C. Miller | 2014-01-31 | 1 | -0/+1 |
| | | |||||
| * | sprinkle some debug printfs and add function header comments | Todd C. Miller | 2014-01-31 | 1 | -4/+50 |
| | | |||||
| * | Properly handle the case where /var/run/sudo/ts doesn't exist. | Todd C. Miller | 2014-01-31 | 1 | -5/+18 |
| | | |||||
| * | Warn on ftruncate failure(). | Todd C. Miller | 2014-01-30 | 1 | -2/+6 |
| | | |||||
| * | Fix checking of lecture status. | Todd C. Miller | 2014-01-30 | 1 | -8/+9 |
| | | |||||
| * | Use sudo_timeval macros and remove compat macros from missing.h | Todd C. Miller | 2014-01-30 | 3 | -8/+5 |
| | | |||||
| * | Switch to new time stamp file format. Each user now has a single | Todd C. Miller | 2014-01-30 | 9 | -564/+559 |
| | | | | | | | | | file which may contain multiple records when per-tty time stamps are in use (the default). The time stamps use a monotonic timer where available and are once again stored in /var/run/sudo. The lecture status is now stored separately from the time stamps in a different directory. | ||||
| * | When listing a user's privileges, always prompt the user for their | Todd C. Miller | 2014-01-29 | 1 | -16/+22 |
| | | | | | | own password, regardless of the value of target_pw, root_pw or runas_pw. | ||||
| * | Use inet_aton() instead of inet_addr() as it allows us to distinguish | Todd C. Miller | 2014-01-26 | 2 | -16/+16 |
| | | | | | | between the address (or mask 255.255.255.255) and an error. In the future we may consider switching to inet_pton() for IPv4 too. | ||||
| * | Fix typo in the AIX case. | Todd C. Miller | 2014-01-24 | 1 | -1/+1 |
| | | |||||
| * | Size pointer for sudo_parseln() should be size_t not ssize_t. | Todd C. Miller | 2014-01-24 | 1 | -1/+1 |
| | | | | | This was already correct for the nsswitch.conf case. | ||||
| * | If inet_addr() returns INADDR_NONE, return false instead of iterating | Todd C. Miller | 2014-01-22 | 1 | -2/+6 |
| | | | | | through the interfaces looking for a match that will never happen. | ||||
| * | Do not assume localtime(), gmtime() and ctime() always return non-NULL. | Todd C. Miller | 2014-01-21 | 7 | -39/+67 |
| | | |||||
| * | Update copyright years | Todd C. Miller | 2014-01-15 | 4 | -4/+4 |
| | | |||||
| * | Eliminate dead store found by clang checker. | Todd C. Miller | 2014-01-15 | 1 | -6/+6 |
| | | |||||
| * | Remove dead store; found by cppcheck | Todd C. Miller | 2014-01-13 | 1 | -1/+0 |
| | | |||||
| * | Quiet a few innocuous cppcheck warnings. | Todd C. Miller | 2014-01-08 | 1 | -2/+3 |
| | | |||||
| * | Handle in_res being NULL for sudo_debug_printf() in sudo_sss_filter_result(). | Todd C. Miller | 2014-01-08 | 1 | -1/+1 |
| | | |||||
| * | When writing length to timing file, use %u not %d as it is unsigned. | Todd C. Miller | 2014-01-08 | 1 | -2/+2 |
| | | |||||
 |
index : delta/sudo.git | |
| www.sudo.ws: repos/sudo |
| summaryrefslogtreecommitdiff |