rpms/sudo
3
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
174 Commits 34 Branches 140 Tags 518 KiB
3e6b39b185
Commit Graph

160 Commits

Author SHA1 Message Date
Daniel Kopecek
86c7e6867b update to 1.8.5 
- fixed CVE-2012-2337
- temporarily disabled SSSD support
 2012-05-17 12:51:44 +02:00
Daniel Kopecek
74fe5b93c4 Fixed a typo in the spec file 2012-02-29 10:21:41 +01:00
Daniel Kopecek
6b548c85a8 fixed problems with undefined symbols (rhbz#798517) 2012-02-29 10:20:33 +01:00
Daniel Kopecek
b27e499e8f SSSD patch update 2012-02-22 11:27:43 +01:00
Daniel Kopecek
d415988861 added SSSD support 2012-02-07 12:25:11 +01:00
Daniel Kopecek
2c51203bb4 added patch for CVE-2012-0809 2012-01-26 15:36:37 +01:00
Dennis Gilmore
6a1e504d6b - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild 2012-01-13 22:32:29 -06:00
Daniel Kopecek
0894814a99 update to 1.8.3p1 
disable output word wrapping if the output is piped
 2011-11-10 10:22:56 +01:00
Peter Robinson
911d5c1fe9 Remove execute bit from sample script in docs so we don't pull in perl 2011-09-07 09:48:26 +01:00
Daniel Kopecek
269d3c7dce rebase to 1.8.1p2 
removed .sudoi patch
fixed typo: RELPRO -> RELRO
added -devel subpackage for the sudo_plugin.h header file
use default ldap configuration files again
 2011-07-12 13:20:39 +02:00
Daniel Kopecek
c973b40001 build with RELPRO 2011-06-03 15:01:00 +02:00
Dennis Gilmore
ed2333e15c - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild 2011-02-09 10:29:16 -06:00
Daniel Kopecek
e5db21ffd8 bump release number 2011-01-17 11:40:57 +01:00
Daniel Kopecek
142eb81e35 Corrected sudo.spec 2011-01-17 11:39:16 +01:00
Daniel Kopecek
92c68ba926 - rebase to 1.7.4p5 
- fixed sudo-1.7.4p4-getgrouplist.patch
- fixes CVE-2011-0008, CVE-2011-0010
 2011-01-17 11:23:52 +01:00
Daniel Kopecek
d12db81253 - anybody in the wheel group has now root access (using password) (rhbz#656873) 
- sync configuration paths with the nss_ldap package (rhbz#652687)
 2010-11-30 12:16:25 +01:00
Daniel Kopecek
ecddd163e2 - added upstream patch to fix rhbz#638345 2010-09-29 10:26:02 +02:00
Daniel Kopecek
9714d256ce - added patch for #635250 
- /var/run/sudo -> /var/db/sudo in .spec
 2010-09-20 08:38:07 +02:00
Daniel Kopecek
e273750ee7 - sudo now uses /var/db/sudo for timestamps 2010-09-07 16:49:47 +02:00
dnk
520e07da9c - update to new upstream version 
- new command available: sudoreplay
- use native audit support
- corrected license field value: BSD -> ISC
 2010-09-07 16:28:31 +02:00
Daniel Kopeček
4933b8941d - added patch that fixes insufficient environment sanitization issue 
(#598154)
 2010-06-02 09:06:33 +00:00
Daniel Kopeček
ac43db5783 - update to new upstream version 
- merged .audit and .libaudit patch
- added sudoers.ldap.5* to files
 2010-04-14 13:49:58 +00:00
Daniel Kopeček
d3f6d25f13 forgot to update sources... 2010-03-01 11:59:20 +00:00
Daniel Kopeček
cd64307f4c update to new upstream version 2010-03-01 11:54:07 +00:00
Daniel Kopeček
0d6a144061 - fixed no valid sudoers sources found (#558875) 2010-02-16 22:27:13 +00:00
Daniel Kopeček
8e5b1df1b9 - audit related Makefile.in and configure.in corrections 
- added --with-audit configure option
- removed call to libtoolize
 2010-02-10 15:52:05 +00:00
Daniel Kopeček
46cc5da5fe - fixed segfault when #include directive is used in cycles (#561336) 2010-02-10 12:38:59 +00:00
Daniel Kopeček
a9a317e7d0 - Add /etc/sudoers.d dir and use it in default config (#551470). 
- Drop *.pod man page duplicates from docs.
 2010-01-12 13:17:31 +00:00
Daniel Kopeček
7a4ce764b3 - new upstream version 1.7.2p2-1 
- commented out unused aliases in sudoers to make visudo happy (#550239)
 2010-01-07 15:24:53 +00:00
Tomáš Mráz
4e2470df23 - rebuilt with new audit 2009-08-21 11:19:03 +00:00
Daniel Kopeček
ea73fb27c7 cleanup 2009-08-20 13:01:46 +00:00
Daniel Kopeček
9bc07b3b72 moved secure_path from compile-time option to sudoers file (#517428) 2009-08-20 12:38:43 +00:00
Jesse Keating
bf223ad016 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild 2009-07-27 04:58:19 +00:00
Daniel Kopeček
0b7f70f9e1 - moved the closefrom() call before audit_help_open() 
- epoch number sync
 2009-07-09 13:29:34 +00:00
Daniel Kopeček
6a836e9aac - updated sudo to version 1.7.1 
- fixed small bug in configure.in (sudo-1.7.1-conffix.patch)
- reverted the value of secure-path configure option
 2009-06-22 14:27:32 +00:00
Daniel Kopeček
db5280d0ec Can't use -5, trying -6 2009-02-24 15:49:07 +00:00
Daniel Kopeček
9b190fb143 I hope this is the last commit today... 2009-02-24 15:43:30 +00:00
Daniel Kopeček
8e0d152bd4 typo 2009-02-24 15:34:40 +00:00
Daniel Kopeček
aefbd0093d - fixed building with new libtool 
- fix for incorrect handling of groups in Runas_User
- added /usr/local/sbin to secure-path
 2009-02-24 15:24:58 +00:00
Daniel Kopeček
eca3e72bb0 - build with sendmail installed 
- added /usr/local/bin to secure-path
 2009-01-13 17:09:02 +00:00
Peter Vrabec
83eef97412 spec file fix 2008-09-03 08:59:59 +00:00
Peter Vrabec
5922acb089 - adjust audit patch, do not scream when kernel is compiled without audit 
netlink support (#401201
 2008-09-02 13:56:42 +00:00
Peter Vrabec
f6d08872cc upgrade 2008-07-04 14:13:33 +00:00
Peter Vrabec
05534ca1d2 build with newer autoconf-2.62 (#449614) 2008-06-18 09:52:34 +00:00
Peter Vrabec
2981ba32e0 - compiled with secure path (#80215) 2008-05-13 12:42:02 +00:00
Peter Vrabec
e94854c079 fix path to updatedb in /etc/sudoers (#445103) 2008-05-05 11:53:04 +00:00
Peter Vrabec
80df5ff713 include ldap files in rpm package (#439506) 2008-03-31 14:08:45 +00:00
Peter Vrabec
475a962dfe include [sudo] in password prompt 2008-03-13 08:50:25 +00:00
Peter Vrabec
83dd2f4834 audit support improvement 2008-03-04 10:28:10 +00:00
Peter Vrabec
0fe071d2e4 upgrade 2008-02-21 15:10:42 +00:00
Peter Vrabec
7769b8ecbc spec file fix 2008-02-06 13:39:49 +00:00
Peter Vrabec
659ffd61f2 fix files section 2008-02-06 13:29:36 +00:00
Peter Vrabec
2c73738be1 add buildrequires 2008-02-06 13:05:56 +00:00
Peter Vrabec
6dfc39bc61 - upgrade to the latest upstream release 
- add selinux support
 2008-02-06 12:43:43 +00:00
Dennis Gilmore
eb965f4152 add sparc64 to the list of arches that need -fPIE 2008-02-04 08:30:14 +00:00
Peter Vrabec
bb69e9d436 fix 401201: sudo complains: audit_log_user_command(): Connection refused 2008-01-07 18:31:40 +00:00
Jesse Keating
ebba253fbc - Rebuild for deps 2007-12-05 22:17:51 +00:00
Jesse Keating
75b6ccbe62 - Rebuild for openssl bump 2007-12-05 19:29:30 +00:00
Peter Vrabec
e25038bfb0 fix autotools stuff and add audit support 2007-08-30 16:21:58 +00:00
Peter Vrabec
3b2065d554 - upgrade to upstream release 2007-08-20 12:11:21 +00:00
Peter Vrabec
05db95fdf1 also use getgrouplist() to determine group membership (#235915) 2007-04-12 08:29:55 +00:00
Peter Vrabec
e3e8515a40 fix some spec file issues 2007-02-26 19:23:08 +00:00
Peter Vrabec
4940ab8619 fix rpmlint issue 2006-12-14 11:23:51 +00:00
Peter Vrabec
8887e35d08 fix typo in sudoers file (#212308) 2006-10-26 09:14:04 +00:00
Jesse Keating
f9c44dec3c bump for gcc bug 2006-10-01 20:21:12 +00:00
Peter Vrabec
b0b9d355b3 fix sudoers file, X apps didn't work (#206320) 2006-09-21 08:41:38 +00:00
Peter Vrabec
c386abaab0 use Red Hat specific default sudoers file 2006-08-08 11:57:00 +00:00
kzak
4616de0e31 IPv6 and keyring support 2006-07-16 22:37:37 +00:00
Jesse Keating
0778e3bc07 bumped for rebuild 2006-07-12 08:19:37 +00:00
kzak
4a3d3910ca fix last commit 2006-05-29 13:19:19 +00:00
kzak
fa67ab3431 added requirettyp to the default sudoers 2006-05-29 12:51:22 +00:00
kzak
e01e7cd24e cosmetic change 2006-05-23 14:40:10 +00:00
kzak
474d0dde27 add LDAP support 2006-05-23 14:27:14 +00:00
Jesse Keating
77a56d1336 bump for bug in double-long on ppc(64) 2006-02-11 05:45:16 +00:00
kzak
c5558ce3e0 reset env. by default 2006-02-08 16:19:20 +00:00
Jesse Keating
bc598978bb bump for new gcc/glibc 2006-02-07 13:54:38 +00:00
Daniel J Walsh
54679b5508 - Remove selinux patch. It has been decided that the SELinux patch for sudo 
is
- no longer necessary. In tageted policy it had no effect. In strict/MLS
    policy
- We require the person using sudo to execute newrole before using sudo.
 2006-01-23 14:37:30 +00:00
Jesse Keating
0206542028 gcc update bump 2005-12-09 22:43:21 +00:00
kzak
e735e2a52c new upstream version 1.6.8p12 2005-11-25 07:46:20 +00:00
kzak
6911aa8e97 new upstream 2005-11-08 11:39:15 +00:00
Tomáš Mráz
600475ebdd - use include instead of pam_stack in pam config 2005-10-13 13:13:58 +00:00
kzak
813c8db24a fix selinux patch 2005-10-11 11:41:09 +00:00
kzak
4da10e91a1 - remove old version of selinux patch 2005-10-11 09:39:44 +00:00
kzak
6d077ba60d - fix debuginfo 2005-09-19 18:03:10 +00:00
kzak
75a3d42e85 - fix #162623 - sesh hangs when child suspends 2005-09-19 17:24:05 +00:00
Daniel J Walsh
5498c7d271 - Add back in interfaces call, SELinux has been fixed to work around 2005-08-02 14:39:04 +00:00
kzak
b05f9af60a - new version 1.6.8p9 (resolve #161116 - CAN-2005-1993 sudo trusted user 
arbitrary command execution)
 2005-06-21 09:11:59 +00:00
kzak
cc2f1bd45b - fix #154511 – sudo does not use limits.conf 2005-05-24 14:52:13 +00:00
Thomas Woerner
d610fe7c8e [tw] 
- new version 1.6.8p8: new sudoedit and sudo_noexec
 2005-04-12 12:19:47 +00:00
Thomas Woerner
38dae062d4 [tw] rebuild 2005-02-09 17:31:08 +00:00
Thomas Woerner
6401cb4983 [tw] - added missing BuildRequires for libselinux-devel (#132883) 2004-10-04 15:39:47 +00:00
Daniel J Walsh
a567e85341 Fix missing param error in sesh 2004-09-29 11:58:37 +00:00
Daniel J Walsh
7ec8de7a85 eliminate full patch check in sesh 2004-09-27 19:10:49 +00:00
cvsdist
20909be86c auto-import changelog data from sudo-1.6.7p5-28.src.rpm 
Thu Jul 08 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-28
- Fix selinux patch to switch to root user
 2004-09-09 12:54:27 +00:00
cvsdist
a152ece149 auto-import changelog data from sudo-1.6.7p5-27.src.rpm 
Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
 2004-09-09 12:54:11 +00:00
cvsdist
1f451eb2e2 auto-import changelog data from sudo-1.6.7p5-26.src.rpm 
Tue Apr 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-26
- Eliminate tty handling from selinux
Thu Apr 01 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-25
- fixed spec file: sesh in file section with selinux flag (#119682)
Tue Mar 30 2004 Colin Walters <walters@redhat.com> 1.6.7p5-24
- Enhance sesh.c to fork/exec children itself, to avoid having sudo reap
    all domains.
- Only reinstall default signal handlers immediately before exec of child
    with SELinux patch
 2004-09-09 12:54:05 +00:00
cvsdist
63abc0a246 auto-import changelog data from sudo-1.6.7p5-23.src.rpm 
Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-23
- change to default to sysadm_r
- Fix tty handling
Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-22
- Add /bin/sesh to run selinux code.
- replace /bin/bash -c with /bin/sesh
Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-21
- Hard code to use "/bin/bash -c" for selinux
Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-20
- Eliminate closing and reopening of terminals, to match su.
Mon Mar 15 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-19
- SELinux fixes to make transitions work properly
Fri Mar 05 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-18
- pied sudo
Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
 2004-09-09 12:53:47 +00:00
cvsdist
cadae3b7d2 auto-import changelog data from sudo-1.6.7p5-16.src.rpm 
Tue Jan 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-16
- Eliminate interfaces call, since this requires big SELinux privs
- and it seems to be useless.
Tue Jan 27 2004 Karsten Hopp <karsten@redhat.de> 1.6.7p5-15
- visudo requires vim-minimal or setting EDITOR to something useful
    (#68605)
Mon Jan 26 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-14
- Fix is_selinux_enabled call
Tue Jan 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-13
- Clean up patch on failure
Tue Jan 06 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-12
- Remove sudo.te for now.
Fri Jan 02 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-11
- Fix usage message
Mon Dec 22 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-10
- Clean up sudo.te to not blow up if pam.te not present
Thu Dec 18 2003 Thomas Woerner <twoerner@redhat.com>
- added missing BuildRequires for groff
Tue Dec 16 2003 Jeremy Katz <katzj@redhat.com> 1.6.7p5-9
- remove left-over debugging code
Tue Dec 16 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-8
- Fix terminal handling that caused Sudo to exit on non selinux machines.
Mon Dec 15 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-7
- Remove sudo_var_run_t which is now pam_var_run_t
Fri Dec 12 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-6
- Fix terminal handling and policy
Thu Dec 11 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-5
- Fix policy
Thu Nov 13 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-4.sel
- Turn on SELinux support
Tue Jul 29 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-3
- Add support for SELinux
 2004-09-09 12:51:15 +00:00
cvsdist
ec26ed9440 auto-import changelog data from sudo-1.6.7p5-2.src.rpm 
Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com>
- rebuilt
Mon May 19 2003 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-1
Wed Jan 22 2003 Tim Powers <timp@redhat.com>
- rebuilt
 2004-09-09 12:51:10 +00:00
cvsdist
efc80da459 auto-import changelog data from sudo-1.6.6-3.src.rpm 
Wed Jan 22 2003 Tim Powers <timp@redhat.com>
- rebuilt
Tue Nov 12 2002 Nalin Dahyabhai <nalin@redhat.com> 1.6.6-2
- remove absolute path names from the PAM configuration, ensuring that the
    right modules get used for whichever arch we're built for
- don't try to install the FAQ, which isn't there any more
 2004-09-09 12:50:37 +00:00