version 1.18, 2002/04/25 15:49:02 |
version 1.19, 2003/03/15 21:23:53 |
|
|
477) Fixed a security hole in prompt rewriting found by Global InterSec. |
477) Fixed a security hole in prompt rewriting found by Global InterSec. |
|
|
Sudo 1.6.6 released. |
Sudo 1.6.6 released. |
|
|
|
478) Wildcards now work correctly in the env_keep Defaults directive> |
|
|
|
479) Added support for non-root timestamp dirs. This allows the timestamp |
|
dir to be shared via NFS (though this is not recommended). |
|
|
|
480) Removed double printing of bad environment variable table in -V mode. |
|
|
|
481) configure script has been regenerated with autoconf 2.5.7. |
|
This required some changes to configure.in. |
|
|
|
482) Fixed a compilation problem on SunOS; thanks to Alek O. Komarnitsky. |
|
|
|
483) SecurID 5.0 API support from Michael Stroucken. |
|
|
|
484) Restore state of signal handlers to what we had upon startup. |
|
Fixes a problem when using sudo with nohup; thanks to Paul Markham. |
|
|
|
485) Revamp set_perms() to use setresuid() or setreuid() when available |
|
in preference to POSIX stuff since they allow us to properly |
|
implement "stay_setuid" whereas POSIX does not really. |
|
|
|
486) In strict mode sudo did not throw an error for undefined User_Aliases. |
|
|
|
487) Fixed a Makefile bug on IRIX. |
|
|
|
488) Write the prompt *after* turning off echo to avoid some password |
|
characters being echoed on heavily-loaded machines with fast typists. |
|
|
|
489) Added %U and %H escapes in the prompt and fixed treatment of %%. |
|
|
|
490) Visudo will now add a final newline to sudoers if the user's editor |
|
not add one before EOF. |
|
|
|
491) The lexer state is now reset to its initial value on EOF. |
|
Previously, the state was not reset between parser invocations |
|
which could cause problems for visudo in rare cases. |
|
|
|
492) Added support for Defaults that apply based on the RunasUser. |
|
|
|
493) Sudo now includes copies of strlc{at,py} and uses them throughout. |
|
|
|
494) Sudo is now careful to avoid interger overflow when allocating |
|
memory. This is one of those "should not happen" situations. |
|
|
|
495) A new option, --with-stow can be used to package sudo with GNU stow. |
|
|
|
496) auth/kerb5.c now compiles under Heimdal. |
|
|
|
497) The volatile prefix is used in the hopes of preventing compilers |
|
from optimizing away memory zeroing. Unfortunately, this results |
|
in some warnings from gcc. |
|
|
|
Sudo 1.6.7 released. |