rpm/sudo
SHA256
1
0
Fork 0
forked from pool/sudo
Code Pull Requests Activity

OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sudo?expand=0&rev=18

Browse Source
This commit is contained in:
OBS User unknown 2008-08-22 20:03:52 +00:00 committed by Git OBS Bridge
parent b232a2dbd6
commit c9351a3cb8
5 changed files with 19 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
sudo-1.6.9p17-ldap.diff
View File

@ -1,8 +1,8 @@
--- configure.in --- configure.in
+++ configure.in +++ configure.in
@@ -2325,7 +2325,7 @@ @@ -2330,7 +2330,7 @@
SUDO_LIBS="${SUDO_LIBS}${LDAP_LIBS}" SUDO_LIBS="${SUDO_LIBS} ${LDAP_LIBS}"
LIBS="$_LIBS" LIBS="$_LIBS"
- LDFLAGS="$_LDFLAGS" - LDFLAGS="$_LDFLAGS"
+ LDFLAGS="${LDFLAGS} $_LDFLAGS" + LDFLAGS="${LDFLAGS} $_LDFLAGS"

2
sudo-1.6.9p17-secure_path.diff
View File

@ -22,7 +22,7 @@
if (path == NULL) if (path == NULL)
--- logging.c --- logging.c
+++ logging.c +++ logging.c
@@ -464,7 +464,7 @@ @@ -466,7 +466,7 @@
#ifndef NO_ROOT_MAILER #ifndef NO_ROOT_MAILER
static char *root_envp[] = { static char *root_envp[] = {
"HOME=/", "HOME=/",

6
sudo-1.6.9p17-sudoers.diff
View File

@ -13,7 +13,7 @@
overridden in \fIsudoers\fR). overridden in \fIsudoers\fR).
--- sudoers --- sudoers
+++ sudoers +++ sudoers
@@ -15,6 +15,24 @@ @@ -15,6 +15,26 @@
# Defaults specification # Defaults specification
@ -21,6 +21,8 @@
+# unexpected or harmful way (CVE-2005-2959, CVE-2005-4158, CVE-2006-0151) +# unexpected or harmful way (CVE-2005-2959, CVE-2005-4158, CVE-2006-0151)
+Defaults always_set_home +Defaults always_set_home
+Defaults env_reset +Defaults env_reset
+# Change env_reset to !env_reset in previous line to keep all environment variables
+# Following list will no longer be necessary after this change
+ +
+Defaults env_keep = "LANG LC_ADDRESS LC_CTYPE LC_COLLATE LC_IDENTIFICATION LC_MEASUREMENT LC_MESSAGES LC_MONETARY LC_NAME LC_NUMERIC LC_PAPER LC_TELEPHONE LC_TIME LC_ALL LANGUAGE LINGUAS XDG_SESSION_COOKIE" +Defaults env_keep = "LANG LC_ADDRESS LC_CTYPE LC_COLLATE LC_IDENTIFICATION LC_MEASUREMENT LC_MESSAGES LC_MONETARY LC_NAME LC_NUMERIC LC_PAPER LC_TELEPHONE LC_TIME LC_ALL LANGUAGE LINGUAS XDG_SESSION_COOKIE"
+# Comment out the preceding line and uncomment the following one if you need +# Comment out the preceding line and uncomment the following one if you need
@ -33,7 +35,7 @@
+# installed system. When configuring sudo, delete the two +# installed system. When configuring sudo, delete the two
+# following lines: +# following lines:
+Defaults targetpw # ask for the password of the target user i.e. root +Defaults targetpw # ask for the password of the target user i.e. root
+ALL ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'! +ALL ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'!
+ +
# Runas alias specification # Runas alias specification

6
sudo.changes
View File

@ -1,3 +1,9 @@
-------------------------------------------------------------------
Wed Aug 20 15:41:38 CEST 2008 - prusnak@suse.cz
- enabled SELinux support [Fate#303662]
- added comment about !env_reset into sudoers file
------------------------------------------------------------------- -------------------------------------------------------------------
Wed Aug 6 19:35:05 CEST 2008 - prusnak@suse.cz Wed Aug 6 19:35:05 CEST 2008 - prusnak@suse.cz

7
sudo.spec
View File

@ -20,9 +20,10 @@
Name: sudo Name: sudo
BuildRequires: openldap2-devel pam-devel postfix BuildRequires: openldap2-devel pam-devel postfix
BuildRequires: libselinux-devel
PreReq: coreutils PreReq: coreutils
Version: 1.6.9p17 Version: 1.6.9p17
Release: 1 Release: 10
AutoReqProv: on AutoReqProv: on
Group: System/Base Group: System/Base
License: BSD 3-Clause License: BSD 3-Clause
@ -81,6 +82,7 @@ export LDFLAGS="-pie"
%configure \ %configure \
--libexecdir=%{_libexecdir}/sudo \ --libexecdir=%{_libexecdir}/sudo \
--with-noexec=%{_libexecdir}/sudo/sudo_noexec.so \ --with-noexec=%{_libexecdir}/sudo/sudo_noexec.so \
--with-selinux \
--with-logfac=auth \ --with-logfac=auth \
--with-insults \ --with-insults \
--with-all-insults \ --with-all-insults \
@ -123,6 +125,9 @@ rm -rf $RPM_BUILD_ROOT
/var/run/sudo /var/run/sudo
%changelog %changelog
* Wed Aug 20 2008 prusnak@suse.cz
- enabled SELinux support [Fate#303662]
- added comment about !env_reset into sudoers file
* Wed Aug 06 2008 prusnak@suse.cz * Wed Aug 06 2008 prusnak@suse.cz
- updated to 1.6.9p17 - updated to 1.6.9p17
* The -i flag should imply resetting the environment, as it did in * The -i flag should imply resetting the environment, as it did in