8f39b9fd2e
- update to 1.9.7p2:
* When formatting JSON output, octal numbers are now stored as strings, not
numbers. The JSON spec does not actually support octal numbers with a 0
prefix.
* Sudo now can handle the getgroups() function returning a different number
of groups for subsequent invocations. GitHub PR #106.
* When loading a Python plugin, python_plugin.so now verifies that the module
loaded matches the one we tried to load. This allows sudo to display a more
useful error message when trying to load a plugin with a name that conflicts
with a Python module installed in the system location.
* Sudo no longer sets the the open files resource limit to unlimited while it
runs. This avoids a problem where sudo's closefrom() emulation would need to
close a very large number of descriptors on systems without a way to determine
which ones are actually open.
* Sudo now includes a configure check for va_copy or __va_copy and only defines
its own version if the configure test fails.
* Fixed a bug in sudo's utmp file handling which prevented old entries from being
reused. As a result, the utmp (or utmpx) file was appended to unnecessarily.
* ixed a bug introduced in sudo 1.9.7 that prevented sudo_logsrvd from
accepting TLS connections when OpenSSL is used. Bug #988.
* Fixed an SELinux sudoedit bug when the edited temporary file could not be
opened. The sesh helper would still be run even when there are no temporary
files available to install.
* The sudo_noexec.so file is now built as a module on all systems other than
macOS. This makes it possible to use other libtool implementations such as
slibtool. On macOS shared libraries and modules are not interchangeable and
the version of libtool shipped with sudo must be used.
OBS-URL: https://build.opensuse.org/request/show/909589
OBS-URL: https://build.opensuse.org/package/show/Base:System/sudo?expand=0&rev=202
In the default (ie unconfigured) configuration sudo asks for root password. This allows to use an ordinary user account for administration of a freshly installed system. When configuring sudo, please make sure to delete the two following lines: Defaults targetpw # ask for the password of the target user i.e. root %users ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'!