From: Todd C. Miller Date: Tue, 15 Sep 1998 02:02:20 +0000 (+0000) Subject: updtaed for 1.5.6 X-Git-Tag: SUDO_1_5_6~1 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=e467587894a4c5025e7d01b332d3c03f32c3157b;p=sudo updtaed for 1.5.6 --- diff --git a/BUGS b/BUGS index 96f857f3c..c6a1ec92e 100644 --- a/BUGS +++ b/BUGS @@ -18,3 +18,7 @@ Known bugs in sudo version 1.5.6 6) There is still a bug in the ``sudo -l'' processing code that can cause sudo to get a SEGV. I've not been able to track it down yet. + +7) HOST_IN_LOG and WRAP_LOG are changeable via configure but not options.h. + All the options should really become arguments to configure and + options.h should just go away (its functionality subsumed by config.h). diff --git a/CHANGES b/CHANGES index b4effb0c0..0683d8d3c 100644 --- a/CHANGES +++ b/CHANGES @@ -871,3 +871,66 @@ Sudo 1.5.4 released. once for the parser. Also try to open ten times if we get EAGAIN. Sudo 1.5.5 released. + +270) Initialize group vector if we are becoming a user other than root. + For root, it is often more useful to hang on to our existing group + vector. + +271) Fix usage of select(2) to deal correctly with a high-numbered fd. + +272) Fixed a bug where sudo sometime didn't give the user a chance to + enter a password at the prompt. + +273) Use a dynamically sized buffer when reading ether interfaces. + +274) Fixed configure problems with identification of HP-UX > 10.x and + with cc being identified as a cross compiler on some platforms. + +275) Fixed a problem with HP-UX 10.x and alloca. Bison does not + include alloca.h on HP-UX 10.x even though it uses alloca() + (and thus needs the #define of alloca(x) to __builtin_alloca(x)). + To fix this we include alloca.h ourselves if using bison and not gcc. + +276) Included support for the AIX 4.x authenticate() function from + Matt Richards . + +277) Fixed an off by one error in the parser. Found by + Piete Brooks + +278) Change NewArgv size computation to work on UNICOS. + From Mike Kienenberger + +279) Added --with-logfile and --with-timedir configure options. + +280) Use getcwd(3), not getwd(3) to avoid possible buffer overflow. + Use BSD getcwd(3) if system lacks one or is SunOS 4.x. + +281) Fix 'fprintf' argument mismatches in 'visudo.c'. + From ariel@oz.engr.sgi.com (Ariel Faigon) + +282) Use waitpid or wait3 to reap children in logging.c. + Pointed out by Theo de Raadt + +283) Sudo should prompt for a password before telling the user that + a command could not be found. Noted by rhodie@NAC.NET. + +284) Fix OTP_ONLY for opie; "Deven T. Corzine" . + +285) Include pre-yacc'd parse.yacc as sudo.tab.[ch] since more and + more vendors are charging for yacc (bad vendor, no cookie). + +286) Use MAX*, not MAX*+1 + +287) Add support for Hitachi SR2201, from b-edgington@hpcc.hitachi-eu.co.uk + +288) Added RUNAS_DEFAULT option to allow one to compile sudo with a + default runas user other than root. + +289) Add options to log the hostname in the file-based log and to not + do word wrap in file-based log. From Theo Van Dinter + +290) RedHat Linux pam support, from Gary Calvin . + pam.sudo goes in /etc/pam.d/sudo on RedHat 5.0 and above. + +291) With sudo -s, set command the full path of the shell, not the basename. + Noted by Peter W. Osel diff --git a/TODO b/TODO index 71e5d5f39..88a924807 100644 --- a/TODO +++ b/TODO @@ -57,3 +57,18 @@ TODO list (most will be addressed in the next rewrite) so folks with sysV chown can set to a secure location. 24) Add a per-tty restriction? Ie: only can run foo from /dev/console. + +25) Use popen.c instead of rolling own in logging.c + Need to make popen.c portable first... + +26) Add test for how to read ether interfaces in configure script + +27) If an OS is capable of using shadow password, try the shadow + functions first and fallback on getpw*(). + +28) Add configure check for $(CC) -R and use it in addition to -L + +29) Change things in options.h -> --with-FOO options to configure. + +30) An option to make "sudo -s" use the target user's shell might be nice + (and more like su).