|
|
4940ab8 |
Summary: Allows restricted root access for specified users
|
|
cvsdist |
3703e23 |
Name: sudo
|
|
|
74fbecc |
Version: 1.9.5p2
|
|
|
7df67e1 |
Release: 1%{?dist}
|
|
dnk |
520e07d |
License: ISC
|
|
|
481e766 |
URL: https://www.sudo.ws
|
|
|
481e766 |
Source0: %{url}/dist/%{name}-%{version}.tar.gz
|
|
|
ffcdc7d |
Source1: sudoers
|
|
|
3e6b39b |
Requires: pam
|
|
|
3e6b39b |
Recommends: vim-minimal
|
|
|
481e766 |
Recommends: %{name}-python-plugin%{?_isa} = %{version}-%{release}
|
|
|
3e6b39b |
Requires(post): coreutils
|
|
|
474d0dd |
|
|
|
474d0dd |
BuildRequires: pam-devel
|
|
|
474d0dd |
BuildRequires: groff
|
|
|
474d0dd |
BuildRequires: openldap-devel
|
|
|
4616de0 |
BuildRequires: flex
|
|
|
4616de0 |
BuildRequires: bison
|
|
|
e25038b |
BuildRequires: automake autoconf libtool
|
|
|
e25038b |
BuildRequires: audit-libs-devel libcap-devel
|
|
|
2c73738 |
BuildRequires: libselinux-devel
|
|
|
eca3e72 |
BuildRequires: sendmail
|
|
|
0894814 |
BuildRequires: gettext
|
|
|
3928123 |
BuildRequires: zlib-devel
|
|
cvsdist |
63abc0a |
|
|
|
6d077ba |
# don't strip
|
|
|
3b2065d |
Patch1: sudo-1.6.7p5-strip.patch
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
%description
|
|
cvsdist |
3703e23 |
Sudo (superuser do) allows a system administrator to give certain
|
|
cvsdist |
3703e23 |
users (or groups of users) the ability to run some (or all) commands
|
|
cvsdist |
3703e23 |
as root while logging all commands and arguments. Sudo operates on a
|
|
cvsdist |
3703e23 |
per-command basis. It is not a replacement for the shell. Features
|
|
cvsdist |
3703e23 |
include: the ability to restrict what commands a user may run on a
|
|
cvsdist |
3703e23 |
per-host basis, copious logging of each command (providing a clear
|
|
cvsdist |
3703e23 |
audit trail of who did what), a configurable timeout of the sudo
|
|
cvsdist |
3703e23 |
command, and the ability to use the same configuration file (sudoers)
|
|
cvsdist |
3703e23 |
on many different machines.
|
|
cvsdist |
3703e23 |
|
|
|
269d3c7 |
%package devel
|
|
|
269d3c7 |
Summary: Development files for %{name}
|
|
|
269d3c7 |
Requires: %{name} = %{version}-%{release}
|
|
|
269d3c7 |
|
|
|
269d3c7 |
%description devel
|
|
|
269d3c7 |
The %{name}-devel package contains header files developing sudo
|
|
|
269d3c7 |
plugins that use %{name}.
|
|
|
269d3c7 |
|
|
|
7df67e1 |
|
|
|
7df67e1 |
%package logsrvd
|
|
|
7df67e1 |
Summary: High-performance log server for %{name}
|
|
|
7df67e1 |
Requires: %{name} = %{version}-%{release}
|
|
|
7df67e1 |
BuildRequires: openssl-devel
|
|
|
7df67e1 |
|
|
|
7df67e1 |
|
|
|
7df67e1 |
%description logsrvd
|
|
|
7df67e1 |
%{name}-logsrvd is a high-performance log server that accepts event and I/O logs from sudo.
|
|
|
7df67e1 |
It can be used to implement centralized logging of sudo logs.
|
|
|
7df67e1 |
|
|
|
481e766 |
%package python-plugin
|
|
|
481e766 |
Summary: Python plugin for %{name}
|
|
|
481e766 |
Requires: %{name} = %{version}-%{release}
|
|
|
481e766 |
BuildRequires: python3-devel
|
|
|
481e766 |
|
|
|
481e766 |
|
|
|
481e766 |
%description python-plugin
|
|
|
481e766 |
%{name}-python-plugin allows using sudo plugins written in Python.
|
|
|
481e766 |
|
|
cvsdist |
3703e23 |
%prep
|
|
|
7df67e1 |
%setup -q
|
|
dnk |
520e07d |
|
|
|
3b2065d |
%patch1 -p1 -b .strip
|
|
|
911d5c1 |
|
|
cvsdist |
3703e23 |
%build
|
|
|
fbec0ab |
# Remove bundled copy of zlib
|
|
|
fbec0ab |
rm -rf zlib/
|
|
|
41b07d4 |
autoreconf -I m4 -fv --install
|
|
|
05534ca |
|
|
|
eb965f4 |
%ifarch s390 s390x sparc64
|
|
cvsdist |
63abc0a |
F_PIE=-fPIE
|
|
cvsdist |
63abc0a |
%else
|
|
cvsdist |
63abc0a |
F_PIE=-fpie
|
|
cvsdist |
63abc0a |
%endif
|
|
cvsdist |
63abc0a |
|
|
|
c973b40 |
export CFLAGS="$RPM_OPT_FLAGS $F_PIE" LDFLAGS="-pie -Wl,-z,relro -Wl,-z,now"
|
|
cvsdist |
63abc0a |
|
|
cvsdist |
3703e23 |
%configure \
|
|
|
e3e8515 |
--prefix=%{_prefix} \
|
|
|
e3e8515 |
--sbindir=%{_sbindir} \
|
|
|
e3e8515 |
--libdir=%{_libdir} \
|
|
|
8729726 |
--docdir=%{_pkgdocdir} \
|
|
|
481e766 |
--enable-openssl \
|
|
|
3859d5e |
--disable-root-mailer \
|
|
|
e3e8515 |
--with-logging=syslog \
|
|
|
e3e8515 |
--with-logfac=authpriv \
|
|
|
e3e8515 |
--with-pam \
|
|
|
3928123 |
--with-pam-login \
|
|
|
e3e8515 |
--with-editor=/bin/vi \
|
|
|
e3e8515 |
--with-env-editor \
|
|
|
e3e8515 |
--with-ignore-dot \
|
|
|
e3e8515 |
--with-tty-tickets \
|
|
|
0fe071d |
--with-ldap \
|
|
|
3928123 |
--with-selinux \
|
|
|
3928123 |
--with-passprompt="[sudo] password for %p: " \
|
|
|
481e766 |
--enable-python \
|
|
|
3928123 |
--with-linux-audit \
|
|
|
3928123 |
--with-sssd
|
|
|
3928123 |
# --without-kerb5 \
|
|
|
3928123 |
# --without-kerb4
|
|
cvsdist |
3703e23 |
make
|
|
cvsdist |
3703e23 |
|
|
|
2c03b0a |
%check
|
|
|
2c03b0a |
make check
|
|
|
2c03b0a |
|
|
cvsdist |
3703e23 |
%install
|
|
cvsdist |
3703e23 |
rm -rf $RPM_BUILD_ROOT
|
|
|
d610fe7 |
make install DESTDIR="$RPM_BUILD_ROOT" install_uid=`id -u` install_gid=`id -g` sudoers_uid=`id -u` sudoers_gid=`id -g`
|
|
|
0894814 |
|
|
cvsdist |
3703e23 |
chmod 755 $RPM_BUILD_ROOT%{_bindir}/* $RPM_BUILD_ROOT%{_sbindir}/*
|
|
|
9714d25 |
install -p -d -m 700 $RPM_BUILD_ROOT/var/db/sudo
|
|
|
932e467 |
install -p -d -m 700 $RPM_BUILD_ROOT/var/db/sudo/lectured
|
|
|
a9a317e |
install -p -d -m 750 $RPM_BUILD_ROOT/etc/sudoers.d
|
|
|
e3e8515 |
install -p -c -m 0440 %{SOURCE1} $RPM_BUILD_ROOT/etc/sudoers
|
|
|
e431039 |
#add sudo to protected packages
|
|
|
4f41fcf |
install -p -d -m 755 $RPM_BUILD_ROOT/etc/dnf/protected.d/
|
|
|
e431039 |
touch sudo.conf
|
|
|
e431039 |
echo sudo > sudo.conf
|
|
|
4f41fcf |
install -p -c -m 0644 sudo.conf $RPM_BUILD_ROOT/etc/dnf/protected.d/
|
|
|
e431039 |
rm -f sudo.conf
|
|
cvsdist |
3703e23 |
|
|
|
8729726 |
chmod +x $RPM_BUILD_ROOT%{_libexecdir}/sudo/*.so # for stripping, reset in %%files
|
|
|
3928123 |
|
|
|
8f687c7 |
# Don't package LICENSE as a doc
|
|
|
8f687c7 |
rm -rf $RPM_BUILD_ROOT%{_pkgdocdir}/LICENSE
|
|
|
8f687c7 |
|
|
|
200fa94 |
# Remove examples; Examples can be found in man pages too.
|
|
|
200fa94 |
rm -rf $RPM_BUILD_ROOT%{_datadir}/examples/sudo
|
|
|
200fa94 |
|
|
|
9047d52 |
#Remove all .la files
|
|
|
9047d52 |
find $RPM_BUILD_ROOT -name '*.la' -exec rm -f {} ';'
|
|
|
9047d52 |
|
|
|
ababf7b |
# Remove sudoers.dist
|
|
|
ababf7b |
rm -f $RPM_BUILD_ROOT%{_sysconfdir}/sudoers.dist
|
|
|
ababf7b |
|
|
|
0894814 |
%find_lang sudo
|
|
|
0894814 |
%find_lang sudoers
|
|
|
0894814 |
|
|
|
0894814 |
cat sudo.lang sudoers.lang > sudo_all.lang
|
|
|
0894814 |
rm sudo.lang sudoers.lang
|
|
|
0894814 |
|
|
cvsdist |
3703e23 |
mkdir -p $RPM_BUILD_ROOT/etc/pam.d
|
|
cvsdist |
3703e23 |
cat > $RPM_BUILD_ROOT/etc/pam.d/sudo << EOF
|
|
|
3928123 |
#%%PAM-1.0
|
|
|
e3e8515 |
auth include system-auth
|
|
|
e3e8515 |
account include system-auth
|
|
|
e3e8515 |
password include system-auth
|
|
|
e3e8515 |
session optional pam_keyinit.so revoke
|
|
|
e3e8515 |
session required pam_limits.so
|
|
|
a5f9360 |
session include system-auth
|
|
|
4616de0 |
EOF
|
|
|
4616de0 |
|
|
|
4616de0 |
cat > $RPM_BUILD_ROOT/etc/pam.d/sudo-i << EOF
|
|
|
3928123 |
#%%PAM-1.0
|
|
|
e3e8515 |
auth include sudo
|
|
|
e3e8515 |
account include sudo
|
|
|
e3e8515 |
password include sudo
|
|
|
e3e8515 |
session optional pam_keyinit.so force revoke
|
|
|
a5f9360 |
session include sudo
|
|
cvsdist |
3703e23 |
EOF
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
3703e23 |
|
|
|
0894814 |
%files -f sudo_all.lang
|
|
cvsdist |
91f6747 |
%attr(0440,root,root) %config(noreplace) /etc/sudoers
|
|
|
a9a317e |
%attr(0750,root,root) %dir /etc/sudoers.d/
|
|
cvsdist |
3703e23 |
%config(noreplace) /etc/pam.d/sudo
|
|
|
4616de0 |
%config(noreplace) /etc/pam.d/sudo-i
|
|
|
9047d52 |
%attr(0644,root,root) %{_tmpfilesdir}/sudo.conf
|
|
|
7df67e1 |
%attr(0644,root,root) %config(noreplace) /etc/dnf/protected.d/sudo.conf
|
|
|
7df67e1 |
%attr(0640,root,root) %config(noreplace) /etc/sudo.conf
|
|
|
e273750 |
%dir /var/db/sudo
|
|
|
932e467 |
%dir /var/db/sudo/lectured
|
|
cvsdist |
3703e23 |
%attr(4111,root,root) %{_bindir}/sudo
|
|
|
9047d52 |
%{_bindir}/sudoedit
|
|
dnk |
520e07d |
%attr(0111,root,root) %{_bindir}/sudoreplay
|
|
cvsdist |
3703e23 |
%attr(0755,root,root) %{_sbindir}/visudo
|
|
|
81b7651 |
%{_bindir}/cvtsudoers
|
|
|
0477581 |
%dir %{_libexecdir}/sudo
|
|
|
8729726 |
%attr(0755,root,root) %{_libexecdir}/sudo/sesh
|
|
|
8729726 |
%attr(0644,root,root) %{_libexecdir}/sudo/sudo_noexec.so
|
|
|
8729726 |
%attr(0644,root,root) %{_libexecdir}/sudo/sudoers.so
|
|
|
77bc95a |
%attr(0644,root,root) %{_libexecdir}/sudo/audit_json.so
|
|
|
8729726 |
%attr(0644,root,root) %{_libexecdir}/sudo/group_file.so
|
|
|
77bc95a |
%attr(0644,root,root) %{_libexecdir}/sudo/sample_approval.so
|
|
|
8729726 |
%attr(0644,root,root) %{_libexecdir}/sudo/system_group.so
|
|
|
9047d52 |
%attr(0644,root,root) %{_libexecdir}/sudo/libsudo_util.so.?.?.?
|
|
|
9047d52 |
%{_libexecdir}/sudo/libsudo_util.so.?
|
|
Marek Tamaskovic |
0c12737 |
%{_libexecdir}/sudo/libsudo_util.so
|
|
cvsdist |
3703e23 |
%{_mandir}/man5/sudoers.5*
|
|
|
ac43db5 |
%{_mandir}/man5/sudoers.ldap.5*
|
|
|
8729726 |
%{_mandir}/man5/sudo.conf.5*
|
|
cvsdist |
3703e23 |
%{_mandir}/man8/sudo.8*
|
|
|
d610fe7 |
%{_mandir}/man8/sudoedit.8*
|
|
dnk |
520e07d |
%{_mandir}/man8/sudoreplay.8*
|
|
cvsdist |
3703e23 |
%{_mandir}/man8/visudo.8*
|
|
|
81b7651 |
%{_mandir}/man1/cvtsudoers.1.gz
|
|
|
81b7651 |
%{_mandir}/man5/sudoers_timestamp.5.gz
|
|
|
8729726 |
%dir %{_pkgdocdir}/
|
|
|
8729726 |
%{_pkgdocdir}/*
|
|
|
8f687c7 |
%{!?_licensedir:%global license %%doc}
|
|
|
8f687c7 |
%license doc/LICENSE
|
|
|
824a03a |
%exclude %{_pkgdocdir}/ChangeLog
|
|
cvsdist |
3703e23 |
|
|
|
269d3c7 |
%files devel
|
|
|
bbce9a9 |
%doc plugins/sample/sample_plugin.c
|
|
|
269d3c7 |
%{_includedir}/sudo_plugin.h
|
|
|
269d3c7 |
%{_mandir}/man8/sudo_plugin.8*
|
|
|
269d3c7 |
|
|
|
7df67e1 |
%files logsrvd
|
|
|
7df67e1 |
%attr(0640,root,root) %config(noreplace) /etc/sudo_logsrvd.conf
|
|
|
7df67e1 |
%attr(0755,root,root) %{_sbindir}/sudo_logsrvd
|
|
|
7df67e1 |
%attr(0755,root,root) %{_sbindir}/sudo_sendlog
|
|
|
7df67e1 |
%{_mandir}/man5/sudo_logsrv.proto.5.gz
|
|
|
7df67e1 |
%{_mandir}/man5/sudo_logsrvd.conf.5.gz
|
|
|
7df67e1 |
%{_mandir}/man8/sudo_logsrvd.8.gz
|
|
|
7df67e1 |
%{_mandir}/man8/sudo_sendlog.8.gz
|
|
|
7df67e1 |
|
|
|
481e766 |
%files python-plugin
|
|
|
481e766 |
%{_mandir}/man8/sudo_plugin_python.8.gz
|
|
|
481e766 |
%attr(0644,root,root) %{_libexecdir}/sudo/python_plugin.so
|
|
|
481e766 |
|
|
cvsdist |
3703e23 |
%changelog
|
|
|
74fbecc |
* Tue Jan 26 2021 Matthew Miller <mattdm@fedoraproject.org> - 1.9.5p2-1
|
|
|
74fbecc |
- rebase to 1.9.5p2
|
|
|
74fbecc |
Resolves: rhbz#1920611
|
|
|
74fbecc |
- fixed CVE-2021-3156 sudo: Heap buffer overflow in argument parsing
|
|
|
74fbecc |
Resolves: rhbz#1920618
|
|
|
74fbecc |
|
|
|
481e766 |
* Mon Jan 18 2021 Radovan Sroka <rsroka@redhat.com> - 1.9.5p1-1
|
|
|
481e766 |
- rebase to 1.9.5p1
|
|
|
481e766 |
- updated sudo url
|
|
|
481e766 |
Resolves: rhbz#1902758
|
|
|
481e766 |
- enabled python plugin as a subpackage
|
|
|
481e766 |
Resolves: rhbz#1909299
|
|
|
481e766 |
- fixed double free in sss_to_sudoers
|
|
|
481e766 |
Resolves: rhbz#1885874
|
|
|
481e766 |
- fixed CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit
|
|
|
481e766 |
Resolves: rhbz#1915055
|
|
|
481e766 |
- fixed CVE-2021-23240 sudo: symbolic link attack in SELinux-enabled sudoedit
|
|
|
481e766 |
Resolves: rhbz#1915054
|
|
|
481e766 |
|
|
|
7df67e1 |
* Tue Sep 15 2020 Radovan Sroka <rsroka@redhat.com> - 1.9.2-1
|
|
|
7df67e1 |
- rebase to 1.9.2
|
|
|
7df67e1 |
Resolves: rhbz#1859577
|
|
|
7df67e1 |
- added logsrvd subpackage
|
|
|
7df67e1 |
- added openssl-devel buildrequires
|
|
|
7df67e1 |
Resolves: rhbz#1860653
|
|
|
7df67e1 |
- fixed sudo runstatedir path
|
|
|
7df67e1 |
- it was generated as /sudo instead of /run/sudo
|
|
|
7df67e1 |
Resolves: rhbz#1868215
|
|
|
7df67e1 |
- added /var/lib/snapd/snap/bin to secure_path variable
|
|
|
7df67e1 |
Resolves: rhbz#1691996
|
|
|
7df67e1 |
|
|
|
77bc95a |
* Wed Mar 25 2020 Attila Lakatos <alakatos@redhat.com> - 1.9.0-0.1.b4
|
|
|
77bc95a |
- update to latest development version 1.9.0b4
|
|
|
77bc95a |
Resolves: rhbz#1816593
|
|
|
3e5ff76 |
- setrlimit(RLIMIT_CORE): Operation not permitted warning message fix
|
|
|
3e5ff76 |
Resolves: rhbz#1773148
|
|
|
77bc95a |
|
|
|
8afd87a |
* Mon Feb 24 2020 Attila Lakatos <alakatos@redhat.com> - 1.9.0-0.1.b1
|
|
|
8afd87a |
- update to latest development version 1.9.0b1
|
|
|
8afd87a |
- added sudo_logsrvd and sudo_sendlog to files and their appropriate man pages
|
|
|
8afd87a |
Resolves: rhbz#1787823
|
|
|
8afd87a |
- Stack based buffer overflow in when pwfeedback is enabled
|
|
|
8afd87a |
Resolves: rhbz#1796945
|
|
|
8afd87a |
- fixes: CVE-2019-18634
|
|
|
8afd87a |
- By using ! character in the shadow file instead of a password hash can access to a run as all sudoer account
|
|
|
8afd87a |
Resolves: rhbz#1786709
|
|
|
8afd87a |
- fixes CVE-2019-19234
|
|
|
8afd87a |
- attacker with access to a Runas ALL sudoer account can impersonate a nonexistent user
|
|
|
8afd87a |
Resolves: rhbz#1786705
|
|
|
8afd87a |
- fixes CVE-2019-19232
|
|
|
8afd87a |
|
|
|
709fe6b |
* Fri Jan 31 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.29-2
|
|
|
709fe6b |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
|
|
|
709fe6b |
|
|
|
514d3fe |
* Mon Nov 11 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.29-1
|
|
|
514d3fe |
- rebase to 1.8.29
|
|
|
514d3fe |
Resolves: rhbz#1766233
|
|
|
514d3fe |
|
|
|
aebc794 |
* Tue Oct 22 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.28p1-1
|
|
|
aebc794 |
- rebase to 1.8.28p1
|
|
|
aebc794 |
Resolves: rhbz#1762350
|
|
|
aebc794 |
|
|
|
4e850fe |
* Tue Oct 15 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.28-1
|
|
|
4e850fe |
- rebase to 1.8.28
|
|
|
4e850fe |
Resolves: rhbz#1761533
|
|
|
4e850fe |
- set always_set_home by default
|
|
|
4e850fe |
Resolves: rhbz#1728687
|
|
|
4e850fe |
- Sync sudoers options from rhel8 to fedora
|
|
|
4e850fe |
Resolves: rhbz#1761781
|
|
|
4e850fe |
- CVE-2019-14287
|
|
|
4e850fe |
Resolves: rhbz#1761584
|
|
|
4e850fe |
|
|
|
14fb2d7 |
* Sat Jul 27 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.27-3
|
|
|
14fb2d7 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
|
|
|
14fb2d7 |
|
|
|
5ee3545 |
* Sun Mar 31 2019 Marek Tamaskovic <mtamasko@redhat.com> 1.8.27-2
|
|
|
5ee3545 |
- resolves rhbz#1676925
|
|
|
5ee3545 |
- Removed PS1, PS2 from sudoers
|
|
|
5ee3545 |
|
|
|
906c920 |
* Mon Mar 11 2019 Radovan Sroka <rsroka@redhat.com> 1.8.27-1
|
|
|
906c920 |
- rebase sudo to 1.8.27
|
|
|
906c920 |
|
|
|
bd4c63f |
* Sun Feb 03 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.25p1-2
|
|
|
bd4c63f |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
|
|
|
bd4c63f |
|
|
|
44df529 |
* Mon Oct 01 2018 Radovan Sroka <rsroka@redhat.com> 1.8.25p1-1
|
|
|
44df529 |
- rebase sudo to 1.8.25p1
|
|
|
44df529 |
|
|
|
4f41fcf |
* Mon Sep 10 2018 Radovan Sroka <rsroka@redhat.com> 1.8.25-1
|
|
|
4f41fcf |
- rebase sudo to latest stawble version
|
|
|
4f41fcf |
- install /etc/dnf/protected.d/sudo instead of /etc/yum/protected.d/sudo (1626968)
|
|
|
4f41fcf |
|
|
|
5d14267 |
* Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.23-3
|
|
|
5d14267 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
|
|
|
5d14267 |
|
|
|
126b222 |
* Tue Jul 03 2018 Matthew Miller <mattdm@fedoraproject.org> - 1.8.23-2
|
|
|
126b222 |
- remove defattr, as default is now sane
|
|
|
126b222 |
|
|
|
9d54237 |
* Wed May 09 2018 Daniel Kopecek <dkopecek@redhat.com> - 1.8.23-1
|
|
|
9d54237 |
- update to 1.8.23
|
|
|
9d54237 |
|
|
|
81b7651 |
* Wed Apr 18 2018 Daniel Kopecek <dkopecek@redhat.com> - 1.8.23-0.1.b3
|
|
|
81b7651 |
- update to 1.8.23b3
|
|
|
81b7651 |
|
|
|
41ef614 |
* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.22-0.2.b1
|
|
|
41ef614 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
|
|
|
41ef614 |
|
|
|
ddbf4e5 |
* Thu Dec 14 2017 Radovan Sroka <rsroka@redhat.com> - 1.8.22b1-1
|
|
|
ddbf4e5 |
- update to 1.8.22b1
|
|
|
ddbf4e5 |
- Added /usr/local/sbin and /usr/local/bin to secure path rhbz#1166185
|
|
|
ddbf4e5 |
|
|
Marek Tamaskovic |
0c12737 |
* Thu Sep 21 2017 Marek Tamaskovic <mtamasko@redhat.com> - 1.8.21p2-1
|
|
Marek Tamaskovic |
0c12737 |
- update to 1.8.21p2
|
|
Marek Tamaskovic |
0c12737 |
- Moved libsudo_util.so from the -devel sub-package to main package (1481225)
|
|
Marek Tamaskovic |
0c12737 |
|
|
|
3e6b39b |
* Wed Sep 06 2017 Matthew Miller <mattdm@fedoraproject.org> - 1.8.20p2-4
|
|
|
3e6b39b |
- replace file-based requirements with package-level ones:
|
|
|
3e6b39b |
- /etc/pam.d/system-auth to 'pam'
|
|
|
3e6b39b |
- /bin/chmod to 'coreutils' (bug #1488934)
|
|
|
3e6b39b |
- /usr/bin/vi to vim-minimal
|
|
|
3e6b39b |
- ... and make vim-minimal "recommends" instead of "requires", because
|
|
|
3e6b39b |
other editors can be configured.
|
|
|
3e6b39b |
|
|
|
185e454 |
* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.20p2-3
|
|
|
185e454 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
|
|
|
185e454 |
|
|
|
7769b86 |
* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.20p2-2
|
|
|
7769b86 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
|
|
|
7769b86 |
|
|
|
e0f60ff |
* Thu Jun 01 2017 Daniel Kopecek <dkopecek@redhat.com> 1.8.20p2-1
|
|
|
e0f60ff |
- update to 1.8.20p2
|
|
|
e0f60ff |
|
|
|
ababf7b |
* Wed May 31 2017 Daniel Kopecek <dkopecek@redhat.com> 1.8.20p1-1
|
|
|
ababf7b |
- update to 1.8.20p1
|
|
|
ababf7b |
- fixes CVE-2017-1000367
|
|
|
ababf7b |
Resolves: rhbz#1456884
|
|
|
ababf7b |
|
|
|
e431039 |
* Fri Apr 07 2017 Jiri Vymazal <jvymazal@redhat.com> - 1.8.20-0.1.b1
|
|
|
e431039 |
- update to latest development version 1.8.20b1
|
|
|
e431039 |
- added sudo to dnf/yum protected packages
|
|
|
e431039 |
Resolves: rhbz#1418756
|
|
|
e431039 |
|
|
|
e431039 |
* Mon Feb 13 2017 Tomas Sykora <tosykora@redhat.com> - 1.8.19p2-1
|
|
Tomas Sykora |
e05aa77 |
- update to 1.8.19p2
|
|
Tomas Sykora |
e05aa77 |
|
|
|
4a9e2fc |
* Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.19-0.3.20161108git738c3cb
|
|
|
4a9e2fc |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
|
|
|
4a9e2fc |
|
|
|
e07c54c |
* Tue Nov 08 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.19-0.2.20161108git738c3cb
|
|
|
e07c54c |
- update to latest development version
|
|
|
e07c54c |
- fixes CVE-2016-7076
|
|
|
e07c54c |
|
|
|
ab266a8 |
* Fri Sep 23 2016 Radovan Sroka <rsroka@redhat.com> 1.8.19-0.1.20160923git90e4538
|
|
|
ab266a8 |
- we were not able to update from rc and beta versions to stable one
|
|
|
ab266a8 |
- so this is a new snapshot package which resolves it
|
|
|
ab266a8 |
|
|
|
68760bc |
* Wed Sep 21 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18-1
|
|
|
68760bc |
- update to 1.8.18
|
|
|
68760bc |
|
|
|
bc3371c |
* Fri Sep 16 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18rc4-1
|
|
|
bc3371c |
- update to 1.8.18rc4
|
|
|
bc3371c |
|
|
|
4884b56 |
* Wed Sep 14 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18rc2-1
|
|
|
4884b56 |
- update to 1.8.18rc2
|
|
|
4884b56 |
- dropped sudo-1.8.14p1-ldapconfpatch.patch
|
|
|
4884b56 |
upstreamed --> https://www.sudo.ws/pipermail/sudo-workers/2016-September/001006.html
|
|
|
4884b56 |
|
|
|
3859d5e |
* Fri Aug 26 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18b2-1
|
|
|
3859d5e |
- update to 1.8.18b2
|
|
|
3859d5e |
- added --disable-root-mailer as configure option
|
|
|
3859d5e |
Resolves: rhbz#1324091
|
|
|
3859d5e |
|
|
|
932e467 |
* Fri Jun 24 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.17p1-1
|
|
|
932e467 |
- update to 1.8.17p1
|
|
|
932e467 |
- install the /var/db/sudo/lectured
|
|
|
932e467 |
Resolves: rhbz#1321414
|
|
|
932e467 |
|
|
|
d3ea02b |
* Tue May 31 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-4
|
|
|
d3ea02b |
- removed INPUTRC from env_keep to prevent a possible info leak
|
|
|
d3ea02b |
Resolves: rhbz#1340701
|
|
|
d3ea02b |
|
|
|
333fe38 |
* Fri May 13 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-3
|
|
|
333fe38 |
- fixed upstream patch for rhbz#1328735
|
|
|
333fe38 |
|
|
|
c0063ce |
* Thu May 12 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-2
|
|
|
c0063ce |
- fixed invalid sesh argument array construction
|
|
|
c0063ce |
|
|
|
df8acf0 |
* Mon Apr 04 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-1
|
|
|
df8acf0 |
- update to 1.8.16
|
|
|
df8acf0 |
|
|
|
8ef2445 |
* Fri Feb 05 2016 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.15-2
|
|
|
8ef2445 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
|
|
|
8ef2445 |
|
|
|
2306938 |
* Thu Nov 5 2015 Daniel Kopecek <dkopecek@redhat.com> 1.8.15-1
|
|
|
2306938 |
- update to 1.8.15
|
|
|
2306938 |
- fixes CVE-2015-5602
|
|
|
2306938 |
|
|
|
2c03b0a |
* Mon Aug 24 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-3
|
|
|
2c03b0a |
- enable upstream test suite
|
|
|
2c03b0a |
|
|
|
c1ed913 |
* Mon Aug 24 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-2
|
|
|
c1ed913 |
- add patch that resolves initialization problem before sudo_strsplit call
|
|
|
c1ed913 |
- add patch that resolves deadcode in visudo.c
|
|
|
c1ed913 |
- add patch that removes extra while in visudo.c and sudoers.c
|
|
|
c1ed913 |
|
|
|
09c5077 |
* Mon Jul 27 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-1
|
|
|
09c5077 |
- update to 1.8.14p3
|
|
|
09c5077 |
|
|
|
febf087 |
* Mon Jul 20 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p1-1
|
|
|
febf087 |
- update to 1.8.14p1-1
|
|
|
febf087 |
- rebase sudo-1.8.14b3-ldapconfpatch.patch -> sudo-1.8.14p1-ldapconfpatch.patch
|
|
|
febf087 |
- rebase sudo-1.8.14b4-docpassexpire.patch -> sudo-1.8.14p1-docpassexpire.patch
|
|
|
febf087 |
|
|
|
af884a4 |
* Tue Jul 14 2015 Radovan Sroka <rsroka@redhat.com> 1.8.12-2
|
|
|
af884a4 |
- add patch3 sudo.1.8.14b4-passexpire.patch that makes change in documentation about timestamp_time
|
|
|
af884a4 |
- Resolves: rhbz#1162070
|
|
|
af884a4 |
|
|
|
9047d52 |
* Fri Jul 10 2015 Radovan Sroka <rsroka@redhat.com> - 1.8.14b4-1
|
|
|
9047d52 |
- Update to 1.8.14b4
|
|
|
9047d52 |
- Add own %%{_tmpfilesdir}/sudo.conf
|
|
|
9047d52 |
|
|
|
fb968d2 |
* Fri Jun 19 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.12-2
|
|
|
fb968d2 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
|
|
|
fb968d2 |
|
|
|
200fa94 |
* Wed Feb 18 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.12
|
|
|
200fa94 |
- update to 1.8.12
|
|
|
200fa94 |
- fixes CVE-2014-9680
|
|
|
200fa94 |
|
|
|
7719973 |
* Mon Nov 3 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.11p2-1
|
|
|
7719973 |
- update to 1.8.11p2
|
|
|
7719973 |
- added patch to fix upstream bug #671 -- exiting immediately
|
|
|
7719973 |
when audit is disabled
|
|
|
7719973 |
|
|
|
a5f9360 |
* Tue Sep 30 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.11-1
|
|
|
a5f9360 |
- update to 1.8.11
|
|
|
a5f9360 |
- major changes & fixes:
|
|
|
a5f9360 |
- when running a command in the background, sudo will now forward
|
|
|
a5f9360 |
SIGINFO to the command
|
|
|
a5f9360 |
- the passwords in ldap.conf and ldap.secret may now be encoded in base64.
|
|
|
a5f9360 |
- SELinux role changes are now audited. For sudoedit, we now audit
|
|
|
a5f9360 |
the actual editor being run, instead of just the sudoedit command.
|
|
|
a5f9360 |
- it is now possible to match an environment variable's value as well as
|
|
|
a5f9360 |
its name using env_keep and env_check
|
|
|
a5f9360 |
- new files created via sudoedit as a non-root user now have the proper group id
|
|
|
a5f9360 |
- sudoedit now works correctly in conjunction with sudo's SELinux RBAC support
|
|
|
a5f9360 |
- it is now possible to disable network interface probing in sudo.conf by
|
|
|
a5f9360 |
changing the value of the probe_interfaces setting
|
|
|
a5f9360 |
- when listing a user's privileges (sudo -l), the sudoers plugin will now prompt
|
|
|
a5f9360 |
for the user's password even if the targetpw, rootpw or runaspw options are set.
|
|
|
a5f9360 |
- the new use_netgroups sudoers option can be used to explicitly enable or disable
|
|
|
a5f9360 |
netgroups support
|
|
|
a5f9360 |
- visudo can now export a sudoers file in JSON format using the new -x flag
|
|
|
a5f9360 |
- added patch to read ldap.conf more closely to nss_ldap
|
|
|
a5f9360 |
- require /usr/bin/vi instead of vim-minimal
|
|
|
a5f9360 |
- include pam.d/system-auth in PAM session phase from pam.d/sudo
|
|
|
a5f9360 |
- include pam.d/sudo in PAM session phase from pam.d/sudo-i
|
|
|
71fccff |
|
|
|
8f687c7 |
* Tue Aug 5 2014 Tom Callaway <spot@fedoraproject.org> - 1.8.8-6
|
|
|
8f687c7 |
- fix license handling
|
|
|
8f687c7 |
|
|
|
ed48f93 |
* Sun Jun 08 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.8-5
|
|
|
ed48f93 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
|
|
|
ed48f93 |
|
|
|
824a03a |
* Sat May 31 2014 Peter Robinson <pbrobinson@fedoraproject.org> 1.8.8-4
|
|
|
824a03a |
- Drop ChangeLog, we ship NEWS
|
|
|
824a03a |
|
|
|
fbec0ab |
* Mon Mar 10 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.8-3
|
|
|
fbec0ab |
- remove bundled copy of zlib before compilation
|
|
|
fbec0ab |
- drop the requiretty Defaults setting from sudoers
|
|
|
fbec0ab |
|
|
|
0477581 |
* Sat Jan 25 2014 Ville Skyttä <ville.skytta@iki.fi> - 1.8.8-2
|
|
|
0477581 |
- Own the %%{_libexecdir}/sudo dir.
|
|
|
0477581 |
|
|
|
8729726 |
* Mon Sep 30 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.8-1
|
|
|
8729726 |
- update to 1.8.8
|
|
|
8729726 |
- major changes & fixes:
|
|
|
8729726 |
- LDAP SASL support now works properly with Kerberos
|
|
|
8729726 |
- root may no longer change its SELinux role without entering a password
|
|
|
8729726 |
- user messages are now always displayed in the user's locale, even when
|
|
|
8729726 |
the same message is being logged or mailed in a different locale.
|
|
|
8729726 |
- log files created by sudo now explicitly have the group set to group
|
|
|
8729726 |
ID 0 rather than relying on BSD group semantics
|
|
|
8729726 |
- sudo now stores its libexec files in a sudo subdirectory instead of in
|
|
|
8729726 |
libexec itself
|
|
|
8729726 |
- system_group and group_file sudoers group provider plugins are now
|
|
|
8729726 |
installed by default
|
|
|
8729726 |
- the paths to ldap.conf and ldap.secret may now be specified as arguments
|
|
|
8729726 |
to the sudoers plugin in the sudo.conf file
|
|
|
8729726 |
- ...and many new features and settings. See the upstream ChangeLog for the
|
|
|
8729726 |
full list.
|
|
|
8729726 |
- several sssd support fixes
|
|
|
8729726 |
- added patch to make uid/gid specification parsing more strict (don't accept
|
|
|
8729726 |
an invalid number as uid/gid)
|
|
|
8729726 |
- use the _pkgdocdir macro
|
|
|
8729726 |
(see https://fedoraproject.org/wiki/Changes/UnversionedDocdirs)
|
|
|
8729726 |
- fixed several bugs found by the clang static analyzer
|
|
|
8729726 |
- added %%post dependency on chmod
|
|
|
8729726 |
|
|
|
d656fea |
* Sun Aug 04 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.6p7-2
|
|
|
d656fea |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
|
|
|
d656fea |
|
|
|
3928123 |
* Thu Feb 28 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-1
|
|
|
3928123 |
- update to 1.8.6p7
|
|
|
3928123 |
- fixes CVE-2013-1775 and CVE-2013-1776
|
|
|
3928123 |
- fixed several packaging issues (thanks to ville.skytta@iki.fi)
|
|
|
3928123 |
- build with system zlib.
|
|
|
3928123 |
- let rpmbuild strip libexecdir/*.so.
|
|
|
3928123 |
- own the %%{_docdir}/sudo-* dir.
|
|
|
3928123 |
- fix some rpmlint warnings (spaces vs tabs, unescaped macros).
|
|
|
3928123 |
- fix bogus %%changelog dates.
|
|
|
3928123 |
|
|
|
d201380 |
* Fri Feb 15 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.6p3-3
|
|
|
d201380 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
|
|
|
d201380 |
|
|
|
bbce9a9 |
* Mon Nov 12 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-2
|
|
|
bbce9a9 |
- added upstream patch for a regression
|
|
|
bbce9a9 |
- don't include arch specific files in the -devel subpackage
|
|
|
bbce9a9 |
- ship only one sample plugin in the -devel subpackage
|
|
|
bbce9a9 |
|
|
|
a9963cd |
* Tue Sep 25 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-1
|
|
|
a9963cd |
- update to 1.8.6p3
|
|
|
a9963cd |
- drop -pipelist patch (fixed in upstream)
|
|
|
a9963cd |
|
|
|
41b07d4 |
* Thu Sep 6 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6-1
|
|
|
41b07d4 |
- update to 1.8.6
|
|
|
41b07d4 |
|
|
|
049d966 |
* Thu Jul 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.5-4
|
|
|
049d966 |
- added patches that fix & improve SSSD support (thanks to pbrezina@redhat.com)
|
|
|
049d966 |
- re-enabled SSSD support
|
|
|
049d966 |
- removed libsss_sudo dependency
|
|
|
049d966 |
|
|
Bill Nottingham |
0247bea |
* Tue Jul 24 2012 Bill Nottingham <notting@redhat.com> - 1.8.5-3
|
|
Bill Nottingham |
0247bea |
- flip sudoers2ldif executable bit after make install, not in setup
|
|
Bill Nottingham |
0247bea |
|
|
|
94079dc |
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.5-2
|
|
|
94079dc |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
|
|
|
94079dc |
|
|
|
86c7e68 |
* Thu May 17 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.5-1
|
|
|
86c7e68 |
- update to 1.8.5
|
|
|
86c7e68 |
- fixed CVE-2012-2337
|
|
|
86c7e68 |
- temporarily disabled SSSD support
|
|
|
86c7e68 |
|
|
|
74fe5b9 |
* Wed Feb 29 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-6
|
|
|
6b548c8 |
- fixed problems with undefined symbols (rhbz#798517)
|
|
|
6b548c8 |
|
|
|
b27e499 |
* Wed Feb 22 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-5
|
|
|
b27e499 |
- SSSD patch update
|
|
|
b27e499 |
|
|
|
d415988 |
* Tue Feb 7 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-4
|
|
|
d415988 |
- added SSSD support
|
|
|
d415988 |
|
|
|
2c51203 |
* Thu Jan 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-3
|
|
|
2c51203 |
- added patch for CVE-2012-0809
|
|
|
2c51203 |
|
|
|
6a1e504 |
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.3p1-2
|
|
|
6a1e504 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
|
|
|
6a1e504 |
|
|
|
3928123 |
* Thu Nov 10 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-1
|
|
|
0894814 |
- update to 1.8.3p1
|
|
|
0894814 |
- disable output word wrapping if the output is piped
|
|
|
0894814 |
|
|
|
911d5c1 |
* Wed Sep 7 2011 Peter Robinson <pbrobinson@fedoraproject.org> - 1.8.1p2-2
|
|
|
911d5c1 |
- Remove execute bit from sample script in docs so we don't pull in perl
|
|
|
911d5c1 |
|
|
|
269d3c7 |
* Tue Jul 12 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.8.1p2-1
|
|
|
269d3c7 |
- rebase to 1.8.1p2
|
|
|
269d3c7 |
- removed .sudoi patch
|
|
|
269d3c7 |
- fixed typo: RELPRO -> RELRO
|
|
|
269d3c7 |
- added -devel subpackage for the sudo_plugin.h header file
|
|
|
269d3c7 |
- use default ldap configuration files again
|
|
|
269d3c7 |
|
|
|
c973b40 |
* Fri Jun 3 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-4
|
|
|
269d3c7 |
- build with RELRO
|
|
|
c973b40 |
|
|
|
ed2333e |
* Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.4p5-3
|
|
|
ed2333e |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
|
|
|
ed2333e |
|
|
|
e5db21f |
* Mon Jan 17 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-2
|
|
|
92c68ba |
- rebase to 1.7.4p5
|
|
|
92c68ba |
- fixed sudo-1.7.4p4-getgrouplist.patch
|
|
|
92c68ba |
- fixes CVE-2011-0008, CVE-2011-0010
|
|
|
92c68ba |
|
|
|
d12db81 |
* Tue Nov 30 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-5
|
|
|
d12db81 |
- anybody in the wheel group has now root access (using password) (rhbz#656873)
|
|
|
d12db81 |
- sync configuration paths with the nss_ldap package (rhbz#652687)
|
|
|
d12db81 |
|
|
|
ecddd16 |
* Wed Sep 29 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-4
|
|
|
ecddd16 |
- added upstream patch to fix rhbz#638345
|
|
|
ecddd16 |
|
|
|
9714d25 |
* Mon Sep 20 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-3
|
|
|
9714d25 |
- added patch for #635250
|
|
|
9714d25 |
- /var/run/sudo -> /var/db/sudo in .spec
|
|
|
9714d25 |
|
|
|
e273750 |
* Tue Sep 7 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-2
|
|
|
e273750 |
- sudo now uses /var/db/sudo for timestamps
|
|
|
e273750 |
|
|
dnk |
520e07d |
* Tue Sep 7 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-1
|
|
dnk |
520e07d |
- update to new upstream version
|
|
dnk |
520e07d |
- new command available: sudoreplay
|
|
dnk |
520e07d |
- use native audit support
|
|
dnk |
520e07d |
- corrected license field value: BSD -> ISC
|
|
dnk |
520e07d |
|
|
|
4933b89 |
* Wed Jun 2 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p6-2
|
|
|
4933b89 |
- added patch that fixes insufficient environment sanitization issue (#598154)
|
|
|
4933b89 |
|
|
|
ac43db5 |
* Wed Apr 14 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p6-1
|
|
|
ac43db5 |
- update to new upstream version
|
|
|
ac43db5 |
- merged .audit and .libaudit patch
|
|
|
ac43db5 |
- added sudoers.ldap.5* to files
|
|
|
ac43db5 |
|
|
|
d3f6d25 |
* Mon Mar 1 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p5-2
|
|
|
cd64307 |
- update to new upstream version
|
|
|
cd64307 |
|
|
|
0d6a144 |
* Tue Feb 16 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-5
|
|
|
0d6a144 |
- fixed no valid sudoers sources found (#558875)
|
|
|
0d6a144 |
|
|
|
8e5b1df |
* Wed Feb 10 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-4
|
|
|
8e5b1df |
- audit related Makefile.in and configure.in corrections
|
|
|
8e5b1df |
- added --with-audit configure option
|
|
|
8e5b1df |
- removed call to libtoolize
|
|
|
8e5b1df |
|
|
|
46cc5da |
* Wed Feb 10 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-3
|
|
|
46cc5da |
- fixed segfault when #include directive is used in cycles (#561336)
|
|
|
46cc5da |
|
|
|
a9a317e |
* Fri Jan 8 2010 Ville Skyttä <ville.skytta@iki.fi> - 1.7.2p2-2
|
|
|
a9a317e |
- Add /etc/sudoers.d dir and use it in default config (#551470).
|
|
|
a9a317e |
- Drop *.pod man page duplicates from docs.
|
|
|
a9a317e |
|
|
|
7a4ce76 |
* Thu Jan 07 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-1
|
|
|
7a4ce76 |
- new upstream version 1.7.2p2-1
|
|
|
7a4ce76 |
- commented out unused aliases in sudoers to make visudo happy (#550239)
|
|
|
7a4ce76 |
|
|
|
4e2470d |
* Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 1.7.1-7
|
|
|
4e2470d |
- rebuilt with new audit
|
|
|
4e2470d |
|
|
|
9bc07b3 |
* Thu Aug 20 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-6
|
|
|
9bc07b3 |
- moved secure_path from compile-time option to sudoers file (#517428)
|
|
|
9bc07b3 |
|
|
|
bf223ad |
* Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.1-5
|
|
|
bf223ad |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
|
|
|
bf223ad |
|
|
|
0b7f70f |
* Thu Jul 09 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-4
|
|
|
0b7f70f |
- moved the closefrom() call before audit_help_open() (sudo-1.7.1-auditfix.patch)
|
|
|
0b7f70f |
- epoch number sync
|
|
|
0b7f70f |
|
|
|
6a836e9 |
* Mon Jun 22 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-1
|
|
|
6a836e9 |
- updated sudo to version 1.7.1
|
|
|
6a836e9 |
- fixed small bug in configure.in (sudo-1.7.1-conffix.patch)
|
|
|
6a836e9 |
|
|
|
db5280d |
* Tue Feb 24 2009 Daniel Kopecek <dkopecek@redhat.com> 1.6.9p17-6
|
|
|
aefbd00 |
- fixed building with new libtool
|
|
|
aefbd00 |
- fix for incorrect handling of groups in Runas_User
|
|
|
aefbd00 |
- added /usr/local/sbin to secure-path
|
|
|
aefbd00 |
|
|
|
eca3e72 |
* Tue Jan 13 2009 Daniel Kopecek <dkopecek@redhat.com> 1.6.9p17-3
|
|
|
eca3e72 |
- build with sendmail installed
|
|
|
eca3e72 |
- Added /usr/local/bin to secure-path
|
|
|
eca3e72 |
|
|
|
5922acb |
* Tue Sep 02 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p17-2
|
|
|
5922acb |
- adjust audit patch, do not scream when kernel is
|
|
|
5922acb |
compiled without audit netlink support (#401201)
|
|
|
5922acb |
|
|
|
f6d0887 |
* Fri Jul 04 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p17-1
|
|
|
f6d0887 |
- upgrade
|
|
|
f6d0887 |
|
|
|
05534ca |
* Wed Jun 18 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-7
|
|
|
05534ca |
- build with newer autoconf-2.62 (#449614)
|
|
|
05534ca |
|
|
|
2981ba3 |
* Tue May 13 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-6
|
|
|
2981ba3 |
- compiled with secure path (#80215)
|
|
|
2981ba3 |
|
|
|
e94854c |
* Mon May 05 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-5
|
|
|
e94854c |
- fix path to updatedb in /etc/sudoers (#445103)
|
|
|
e94854c |
|
|
|
80df5ff |
* Mon Mar 31 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-4
|
|
|
80df5ff |
- include ldap files in rpm package (#439506)
|
|
|
80df5ff |
|
|
|
475a962 |
* Thu Mar 13 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-3
|
|
|
475a962 |
- include [sudo] in password prompt (#437092)
|
|
|
475a962 |
|
|
|
83dd2f4 |
* Tue Mar 04 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-2
|
|
|
83dd2f4 |
- audit support improvement
|
|
|
83dd2f4 |
|
|
|
0fe071d |
* Thu Feb 21 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-1
|
|
|
0fe071d |
- upgrade to the latest upstream release
|
|
|
0fe071d |
|
|
|
6dfc39b |
* Wed Feb 06 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p12-1
|
|
|
6dfc39b |
- upgrade to the latest upstream release
|
|
|
6dfc39b |
- add selinux support
|
|
|
6dfc39b |
|
|
|
3928123 |
* Mon Feb 04 2008 Dennis Gilmore <dennis@ausil.us> 1.6.9p4-6
|
|
|
eb965f4 |
- sparc64 needs to be in the -fPIE list with s390
|
|
|
eb965f4 |
|
|
|
bb69e9d |
* Mon Jan 07 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-5
|
|
|
bb69e9d |
- fix complains about audit_log_user_command(): Connection
|
|
|
bb69e9d |
refused (#401201)
|
|
|
bb69e9d |
|
|
|
ebba253 |
* Wed Dec 05 2007 Release Engineering <rel-eng at fedoraproject dot org> - 1.6.9p4-4
|
|
|
bb69e9d |
- Rebuild for deps
|
|
|
ebba253 |
|
|
|
75b6ccb |
* Wed Dec 05 2007 Release Engineering <rel-eng at fedoraproject dot org> - 1.6.9p4-3
|
|
|
bb69e9d |
- Rebuild for openssl bump
|
|
|
75b6ccb |
|
|
|
e25038b |
* Thu Aug 30 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-2
|
|
|
e25038b |
- fix autotools stuff and add audit support
|
|
|
e25038b |
|
|
|
3b2065d |
* Mon Aug 20 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-1
|
|
|
3b2065d |
- upgrade to upstream release
|
|
|
3b2065d |
|
|
|
05db95f |
* Thu Apr 12 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-14
|
|
|
05db95f |
- also use getgrouplist() to determine group membership (#235915)
|
|
|
05db95f |
|
|
|
e3e8515 |
* Mon Feb 26 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-13
|
|
|
e3e8515 |
- fix some spec file issues
|
|
|
e3e8515 |
|
|
|
4940ab8 |
* Thu Dec 14 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-12
|
|
|
4940ab8 |
- fix rpmlint issue
|
|
|
4940ab8 |
|
|
|
8887e35 |
* Thu Oct 26 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-11
|
|
|
8887e35 |
- fix typo in sudoers file (#212308)
|
|
|
8887e35 |
|
|
|
f9c44de |
* Sun Oct 01 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-10
|
|
|
f9c44de |
- rebuilt for unwind info generation, broken in gcc-4.1.1-21
|
|
|
f9c44de |
|
|
|
b0b9d35 |
* Thu Sep 21 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-9
|
|
|
b0b9d35 |
- fix sudoers file, X apps didn't work (#206320)
|
|
|
b0b9d35 |
|
|
|
c386aba |
* Tue Aug 08 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-8
|
|
|
c386aba |
- use Red Hat specific default sudoers file
|
|
|
c386aba |
|
|
|
4616de0 |
* Sun Jul 16 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-7
|
|
|
4616de0 |
- fix #198755 - make login processes (sudo -i) initialise session keyring
|
|
|
4616de0 |
(thanks for PAM config files to David Howells)
|
|
|
4616de0 |
- add IPv6 support (patch by Milan Zazrivec)
|
|
|
4616de0 |
|
|
|
0778e3b |
* Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-6.1
|
|
|
0778e3b |
- rebuild
|
|
|
0778e3b |
|
|
|
fa67ab3 |
* Mon May 29 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-6
|
|
|
fa67ab3 |
- fix #190062 - "ssh localhost sudo su" will show the password in clear
|
|
|
fa67ab3 |
|
|
|
474d0dd |
* Tue May 23 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-5
|
|
|
e01e7cd |
- add LDAP support (#170848)
|
|
|
474d0dd |
|
|
|
77a56d1 |
* Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-4.1
|
|
|
77a56d1 |
- bump again for double-long bug on ppc(64)
|
|
|
77a56d1 |
|
|
|
c5558ce |
* Wed Feb 8 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-4
|
|
|
c5558ce |
- reset env. by default
|
|
|
c5558ce |
|
|
|
bc59897 |
* Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-3.1
|
|
|
bc59897 |
- rebuilt for new gcc4.1 snapshot and glibc changes
|
|
|
bc59897 |
|
|
|
54679b5 |
* Mon Jan 23 2006 Dan Walsh <dwalsh@redhat.com> 1.6.8p12-3
|
|
|
54679b5 |
- Remove selinux patch. It has been decided that the SELinux patch for sudo is
|
|
|
54679b5 |
- no longer necessary. In tageted policy it had no effect. In strict/MLS policy
|
|
|
54679b5 |
- We require the person using sudo to execute newrole before using sudo.
|
|
|
54679b5 |
|
|
|
0206542 |
* Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com>
|
|
|
0206542 |
- rebuilt
|
|
|
0206542 |
|
|
|
e735e2a |
* Fri Nov 25 2005 Karel Zak <kzak@redhat.com> 1.6.8p12-1
|
|
|
e735e2a |
- new upstream version 1.6.8p12
|
|
|
e735e2a |
|
|
|
6911aa8 |
* Tue Nov 8 2005 Karel Zak <kzak@redhat.com> 1.6.8p11-1
|
|
|
6911aa8 |
- new upstream version 1.6.8p11
|
|
|
6911aa8 |
|
|
|
600475e |
* Thu Oct 13 2005 Tomas Mraz <tmraz@redhat.com> 1.6.8p9-6
|
|
|
600475e |
- use include instead of pam_stack in pam config
|
|
|
600475e |
|
|
|
813c8db |
* Tue Oct 11 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-5
|
|
|
813c8db |
- enable interfaces in selinux patch
|
|
|
813c8db |
- merge sudo-1.6.8p8-sesh-stopsig.patch to selinux patch
|
|
|
813c8db |
|
|
|
6d077ba |
* Mon Sep 19 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-4
|
|
|
6d077ba |
- fix debuginfo
|
|
|
6d077ba |
|
|
|
75a3d42 |
* Mon Sep 19 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-3
|
|
|
75a3d42 |
- fix #162623 - sesh hangs when child suspends
|
|
|
75a3d42 |
|
|
|
5498c7d |
* Mon Aug 1 2005 Dan Walsh <dwalsh@redhat.com> 1.6.8p9-2
|
|
|
5498c7d |
- Add back in interfaces call, SELinux has been fixed to work around
|
|
|
5498c7d |
|
|
|
b05f9af |
* Tue Jun 21 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-1
|
|
|
b05f9af |
- new version 1.6.8p9 (resolve #161116 - CAN-2005-1993 sudo trusted user arbitrary command execution)
|
|
|
b05f9af |
|
|
|
cc2f1bd |
* Tue May 24 2005 Karel Zak <kzak@redhat.com> 1.6.8p8-2
|
|
|
75a3d42 |
- fix #154511 - sudo does not use limits.conf
|
|
|
cc2f1bd |
|
|
|
d610fe7 |
* Mon Apr 4 2005 Thomas Woerner <twoerner@redhat.com> 1.6.8p8-1
|
|
|
d610fe7 |
- new version 1.6.8p8: new sudoedit and sudo_noexec
|
|
|
d610fe7 |
|
|
|
38dae06 |
* Wed Feb 9 2005 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-31
|
|
|
38dae06 |
- rebuild
|
|
|
38dae06 |
|
|
|
6401cb4 |
* Mon Oct 4 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-30.1
|
|
|
6401cb4 |
- added missing BuildRequires for libselinux-devel (#132883)
|
|
|
6401cb4 |
|
|
|
a567e85 |
* Wed Sep 29 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-30
|
|
|
a567e85 |
- Fix missing param error in sesh
|
|
|
a567e85 |
|
|
|
7ec8de7 |
* Mon Sep 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-29
|
|
|
7ec8de7 |
- Remove full patch check from sesh
|
|
|
7ec8de7 |
|
|
cvsdist |
20909be |
* Thu Jul 8 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-28
|
|
cvsdist |
20909be |
- Fix selinux patch to switch to root user
|
|
cvsdist |
20909be |
|
|
cvsdist |
a152ece |
* Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
|
|
cvsdist |
a152ece |
- rebuilt
|
|
cvsdist |
a152ece |
|
|
cvsdist |
1f451eb |
* Tue Apr 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-26
|
|
cvsdist |
1f451eb |
- Eliminate tty handling from selinux
|
|
cvsdist |
1f451eb |
|
|
cvsdist |
1f451eb |
* Thu Apr 1 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-25
|
|
cvsdist |
1f451eb |
- fixed spec file: sesh in file section with selinux flag (#119682)
|
|
cvsdist |
1f451eb |
|
|
|
3928123 |
* Tue Mar 30 2004 Colin Walters <walters@redhat.com> 1.6.7p5-24
|
|
cvsdist |
1f451eb |
- Enhance sesh.c to fork/exec children itself, to avoid
|
|
cvsdist |
1f451eb |
having sudo reap all domains.
|
|
cvsdist |
1f451eb |
- Only reinstall default signal handlers immediately before
|
|
cvsdist |
1f451eb |
exec of child with SELinux patch
|
|
cvsdist |
1f451eb |
|
|
cvsdist |
63abc0a |
* Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-23
|
|
cvsdist |
63abc0a |
- change to default to sysadm_r
|
|
cvsdist |
63abc0a |
- Fix tty handling
|
|
cvsdist |
63abc0a |
|
|
cvsdist |
63abc0a |
* Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-22
|
|
cvsdist |
63abc0a |
- Add /bin/sesh to run selinux code.
|
|
cvsdist |
63abc0a |
- replace /bin/bash -c with /bin/sesh
|
|
cvsdist |
63abc0a |
|
|
cvsdist |
63abc0a |
* Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-21
|
|
cvsdist |
63abc0a |
- Hard code to use "/bin/bash -c" for selinux
|
|
cvsdist |
63abc0a |
|
|
cvsdist |
63abc0a |
* Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-20
|
|
cvsdist |
63abc0a |
- Eliminate closing and reopening of terminals, to match su.
|
|
cvsdist |
63abc0a |
|
|
cvsdist |
63abc0a |
* Mon Mar 15 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-19
|
|
cvsdist |
63abc0a |
- SELinux fixes to make transitions work properly
|
|
cvsdist |
63abc0a |
|
|
cvsdist |
63abc0a |
* Fri Mar 5 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-18
|
|
cvsdist |
63abc0a |
- pied sudo
|
|
cvsdist |
63abc0a |
|
|
cvsdist |
63abc0a |
* Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
|
|
cvsdist |
63abc0a |
- rebuilt
|
|
cvsdist |
63abc0a |
|
|
cvsdist |
cadae3b |
* Tue Jan 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-16
|
|
cvsdist |
cadae3b |
- Eliminate interfaces call, since this requires big SELinux privs
|
|
cvsdist |
cadae3b |
- and it seems to be useless.
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Tue Jan 27 2004 Karsten Hopp <karsten@redhat.de> 1.6.7p5-15
|
|
cvsdist |
cadae3b |
- visudo requires vim-minimal or setting EDITOR to something useful (#68605)
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Mon Jan 26 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-14
|
|
cvsdist |
cadae3b |
- Fix is_selinux_enabled call
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Tue Jan 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-13
|
|
cvsdist |
cadae3b |
- Clean up patch on failure
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Tue Jan 6 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-12
|
|
cvsdist |
cadae3b |
- Remove sudo.te for now.
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Fri Jan 2 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-11
|
|
cvsdist |
cadae3b |
- Fix usage message
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Mon Dec 22 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-10
|
|
cvsdist |
cadae3b |
- Clean up sudo.te to not blow up if pam.te not present
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Thu Dec 18 2003 Thomas Woerner <twoerner@redhat.com>
|
|
cvsdist |
cadae3b |
- added missing BuildRequires for groff
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Tue Dec 16 2003 Jeremy Katz <katzj@redhat.com> 1.6.7p5-9
|
|
cvsdist |
cadae3b |
- remove left-over debugging code
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Tue Dec 16 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-8
|
|
cvsdist |
cadae3b |
- Fix terminal handling that caused Sudo to exit on non selinux machines.
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Mon Dec 15 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-7
|
|
cvsdist |
cadae3b |
- Remove sudo_var_run_t which is now pam_var_run_t
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Fri Dec 12 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-6
|
|
cvsdist |
cadae3b |
- Fix terminal handling and policy
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Thu Dec 11 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-5
|
|
cvsdist |
cadae3b |
- Fix policy
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Thu Nov 13 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-4.sel
|
|
cvsdist |
cadae3b |
- Turn on SELinux support
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
cadae3b |
* Tue Jul 29 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-3
|
|
cvsdist |
cadae3b |
- Add support for SELinux
|
|
cvsdist |
cadae3b |
|
|
cvsdist |
ec26ed9 |
* Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com>
|
|
cvsdist |
ec26ed9 |
- rebuilt
|
|
cvsdist |
ec26ed9 |
|
|
cvsdist |
ec26ed9 |
* Mon May 19 2003 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-1
|
|
cvsdist |
ec26ed9 |
|
|
cvsdist |
efc80da |
* Wed Jan 22 2003 Tim Powers <timp@redhat.com>
|
|
cvsdist |
efc80da |
- rebuilt
|
|
cvsdist |
efc80da |
|
|
cvsdist |
efc80da |
* Tue Nov 12 2002 Nalin Dahyabhai <nalin@redhat.com> 1.6.6-2
|
|
cvsdist |
efc80da |
- remove absolute path names from the PAM configuration, ensuring that the
|
|
cvsdist |
efc80da |
right modules get used for whichever arch we're built for
|
|
cvsdist |
efc80da |
- don't try to install the FAQ, which isn't there any more
|
|
cvsdist |
efc80da |
|
|
cvsdist |
f6955da |
* Thu Jun 27 2002 Bill Nottingham <notting@redhat.com> 1.6.6-1
|
|
cvsdist |
f6955da |
- update to 1.6.6
|
|
cvsdist |
f6955da |
|
|
cvsdist |
c9f0993 |
* Fri Jun 21 2002 Tim Powers <timp@redhat.com>
|
|
cvsdist |
c9f0993 |
- automated rebuild
|
|
cvsdist |
c9f0993 |
|
|
cvsdist |
c9f0993 |
* Thu May 23 2002 Tim Powers <timp@redhat.com>
|
|
cvsdist |
c9f0993 |
- automated rebuild
|
|
cvsdist |
c9f0993 |
|
|
cvsdist |
ec327fd |
* Thu Apr 18 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p2-2
|
|
cvsdist |
ec327fd |
- Fix bug #63768
|
|
cvsdist |
ec327fd |
|
|
cvsdist |
0bc856b |
* Thu Mar 14 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p2-1
|
|
cvsdist |
0bc856b |
- 1.6.5p2
|
|
cvsdist |
0bc856b |
|
|
cvsdist |
0bc856b |
* Fri Jan 18 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p1-1
|
|
cvsdist |
0bc856b |
- 1.6.5p1
|
|
cvsdist |
0bc856b |
- Hope this "a new release per day" madness stops ;)
|
|
cvsdist |
0bc856b |
|
|
cvsdist |
0bc856b |
* Thu Jan 17 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5-1
|
|
cvsdist |
0bc856b |
- 1.6.5
|
|
cvsdist |
0bc856b |
|
|
cvsdist |
0bc856b |
* Tue Jan 15 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.4p1-1
|
|
cvsdist |
0bc856b |
- 1.6.4p1
|
|
cvsdist |
0bc856b |
|
|
cvsdist |
91f6747 |
* Mon Jan 14 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.4-1
|
|
cvsdist |
91f6747 |
- Update to 1.6.4
|
|
cvsdist |
91f6747 |
|
|
cvsdist |
af8530b |
* Mon Jul 23 2001 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.3p7-2
|
|
cvsdist |
af8530b |
- Add build requirements (#49706)
|
|
cvsdist |
af8530b |
- s/Copyright/License/
|
|
cvsdist |
af8530b |
- bzip2 source
|
|
cvsdist |
af8530b |
|
|
cvsdist |
adda6fa |
* Sat Jun 16 2001 Than Ngo <than@redhat.com>
|
|
cvsdist |
adda6fa |
- update to 1.6.3p7
|
|
cvsdist |
adda6fa |
- use %%{_tmppath}
|
|
cvsdist |
adda6fa |
|
|
cvsdist |
fe09dbc |
* Fri Feb 23 2001 Bernhard Rosenkraenzer <bero@redhat.com>
|
|
cvsdist |
fe09dbc |
- 1.6.3p6, fixes buffer overrun
|
|
cvsdist |
fe09dbc |
|
|
cvsdist |
fe09dbc |
* Tue Oct 10 2000 Bernhard Rosenkraenzer <bero@redhat.com>
|
|
cvsdist |
fe09dbc |
- 1.6.3p5
|
|
cvsdist |
fe09dbc |
|
|
cvsdist |
3703e23 |
* Wed Jul 12 2000 Prospector <bugzilla@redhat.com>
|
|
cvsdist |
3703e23 |
- automatic rebuild
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Tue Jun 06 2000 Karsten Hopp <karsten@redhat.de>
|
|
cvsdist |
3703e23 |
- fixed owner of sudo and visudo
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Thu Jun 1 2000 Nalin Dahyabhai <nalin@redhat.com>
|
|
cvsdist |
3703e23 |
- modify PAM setup to use system-auth
|
|
cvsdist |
3703e23 |
- clean up buildrooting by using the makeinstall macro
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Tue Apr 11 2000 Bernhard Rosenkraenzer <bero@redhat.com>
|
|
cvsdist |
3703e23 |
- initial build in main distrib
|
|
cvsdist |
3703e23 |
- update to 1.6.3
|
|
cvsdist |
3703e23 |
- deal with compressed man pages
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Tue Dec 14 1999 Preston Brown <pbrown@redhat.com>
|
|
cvsdist |
3703e23 |
- updated to 1.6.1 for Powertools 6.2
|
|
cvsdist |
3703e23 |
- config files are now noreplace.
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Thu Jul 22 1999 Tim Powers <timp@redhat.com>
|
|
cvsdist |
3703e23 |
- updated to 1.5.9p2 for Powertools 6.1
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Wed May 12 1999 Bill Nottingham <notting@redhat.com>
|
|
cvsdist |
3703e23 |
- sudo is configured with pam. There's no pam.d file. Oops.
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Mon Apr 26 1999 Preston Brown <pbrown@redhat.com>
|
|
cvsdist |
3703e23 |
- upgraded to 1.59p1 for powertools 6.0
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Tue Oct 27 1998 Preston Brown <pbrown@redhat.com>
|
|
cvsdist |
3703e23 |
- fixed so it doesn't find /usr/bin/vi first, but instead /bin/vi (always installed)
|
|
cvsdist |
3703e23 |
|
|
|
3928123 |
* Thu Oct 08 1998 Michael Maher <mike@redhat.com>
|
|
cvsdist |
3703e23 |
- built package for 5.2
|
|
cvsdist |
3703e23 |
|
|
|
e3e8515 |
* Mon May 18 1998 Michael Maher <mike@redhat.com>
|
|
|
e3e8515 |
- updated SPEC file
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Thu Jan 29 1998 Otto Hammersmith <otto@redhat.com>
|
|
cvsdist |
3703e23 |
- updated to 1.5.4
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Tue Nov 18 1997 Otto Hammersmith <otto@redhat.com>
|
|
cvsdist |
3703e23 |
- built for glibc, no problems
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Fri Apr 25 1997 Michael Fulbright <msf@redhat.com>
|
|
cvsdist |
3703e23 |
- Fixed for 4.2 PowerTools
|
|
cvsdist |
3703e23 |
- Still need to be pamified
|
|
cvsdist |
3703e23 |
- Still need to move stmp file to /var/log
|
|
cvsdist |
3703e23 |
|
|
cvsdist |
3703e23 |
* Mon Feb 17 1997 Michael Fulbright <msf@redhat.com>
|
|
cvsdist |
3703e23 |
- First version for PowerCD.
|
|
cvsdist |
3703e23 |
|