Return to 58.html CVS log | Up to [local] / www |
version 1.37, 2015/08/19 03:38:23 | version 1.38, 2015/08/19 03:51:02 | ||
---|---|---|---|
|
|
||
<li>Security improvements: | <li>Security improvements: | ||
<ul> | <ul> | ||
<li>sudo has been replaced with <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=doas&sektion=1">doas(1)</a>. | <li>sudo in base has been replaced with <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=doas&sektion=1">doas(1)</a>, sudo is available as a package. | ||
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=file&sektion=1">file(1)</a> has been replaced with a new modern implementation, including sandbox and privilege separation. | <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=file&sektion=1">file(1)</a> has been replaced with a new modern implementation, including sandbox and privilege separation. | ||
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pax&sektion=1">pax(1)</a> (and tar(1) and cpio(1)) now prevent archive extraction from escaping the current directory via symlinks; <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tar&sektion=1">tar(1)</a> without <tt>-P</tt> option now strips up through any "<tt>..</tt>" path components. | <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pax&sektion=1">pax(1)</a> (and tar(1) and cpio(1)) now prevent archive extraction from escaping the current directory via symlinks; <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tar&sektion=1">tar(1)</a> without <tt>-P</tt> option now strips up through any "<tt>..</tt>" path components. | ||
<li>Improved kernel checks of ELF headers. | <li>Improved kernel checks of ELF headers. |