From: Todd C. Miller <Todd.Miller@courtesan.com>
Date: Tue, 30 Nov 2010 20:06:22 +0000 (-0500)
Subject: Update with latest changes
X-Git-Tag: SUDO_1_7_5~90
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=4b0d5d808e368a70641e5824dda2fbdbbc4a58d0;p=sudo

Update with latest changes

--HG--
branch : 1.7
---

diff --git a/NEWS b/NEWS
index 6f20d649d..291a0408e 100644
--- a/NEWS
+++ b/NEWS
@@ -49,6 +49,24 @@ What's new in Sudo 1.7.5?
  * Sudo now unblocks all signals on startup to avoid problems caused
    by the parent process changing the default signal mask.
 
+ * LDAP Sudoers entries may now specify a time period for which
+   the entry is valid.  This requires an updated sudoers schema
+   that includes the sudoNotBefore and sudoNotAfter attributes.
+   Support for timed entries must be explicitly enabled in the
+   ldap.conf file.  Based on changes from Andreas Mueller.
+
+ * LDAP Sudoers entries may now specify a sudoOrder attribute that
+   determines the order in which matching entries are applied; the first
+   matching entry is used.  This requires an updated sudoers schema that
+   includes the sudOrder attribute.  Based on changes from Andreas Mueller.
+
+ * When run as sudoedit, or when given the -e flag, sudo now treats
+   command line arguments as pathnames.  This means that slashes
+   in the sudoers file entry must explicitly match slashes in
+   the command line arguments.  As a result, and entry such as:
+	user ALL = sudoedit /etc/*
+   will allow editing of /etc/motd but not /etc/security/default.
+
 What's new in Sudo 1.7.4p4?
 
  * A potential security issue has been fixed with respect to the handling