Subject: CVS commit: pkgsrc/security/sudo
To: None <>
From: Thomas Klausner <>
List: pkgsrc-changes
Date: 04/01/2003 19:07:22
Module Name:	pkgsrc
Committed By:	wiz
Date:		Tue Apr  1 16:07:22 UTC 2003

Modified Files:
	pkgsrc/security/sudo: Makefile distinfo
	pkgsrc/security/sudo/patches: patch-af patch-ag
Removed Files:
	pkgsrc/security/sudo/patches: patch-aa patch-ab patch-ac

Log Message:
Update to 1.6.7p1 (
478) Wildcards now work correctly in the env_keep Defaults directive.
479) Added support for non-root timestamp dirs.  This allows the timestamp
     dir to be shared via NFS (though this is not recommended).
480) Removed double printing of bad environment variable table in -V mode.
481) configure script has been regenerated with autoconf 2.5.7.
     This required some changes to
482) Fixed a compilation problem on SunOS; thanks to Alek O. Komarnitsky.
483) SecurID 5.0 API support from Michael Stroucken.
484) Restore state of signal handlers to what we had upon startup.
     Fixes a problem when using sudo with nohup; thanks to Paul Markham.
485) Revamp set_perms() to use setresuid() or setreuid() when available
     in preference to POSIX stuff since they allow us to properly
     implement "stay_setuid" whereas POSIX does not really.
486) In strict mode sudo did not throw an error for undefined User_Aliases.
487) Fixed a Makefile bug on IRIX.
488) Write the prompt *after* turning off echo to avoid some password
     characters being echoed on heavily-loaded machines with fast typists.
489) Added %U and %H escapes in the prompt and fixed treatment of %%.
490) Visudo will now add a final newline to sudoers if the user's editor
     not add one before EOF.
491) The lexer state is now reset to its initial value on EOF.
     Previously, the state was not reset between parser invocations
     which could cause problems for visudo in rare cases.
492) Added support for Defaults that apply based on the RunasUser.
493) Sudo now includes copies of strlc{at,py} and uses them throughout.
494) Sudo is now careful to avoid interger overflow when allocating
     memory.  This is one of those "should not happen" situations.
495) Added a configure option (--with-stow) to make sudo compatible
     with GNU stow.
496) auth/kerb5.c now compiles under Heimdal.
497) The volatile prefix is used in the hopes of preventing compilers
     from optimizing away memory zeroing.  Unfortunately, this results
     in some warnings from gcc.
498) Better Kerberos IV/V support in the configure script.
499) Fixed a logic thinko in the SIGCHLD handler that caused problems
     with rlogin on HP-UX.
500) configure now adds -R to LDFLAGS when it adds -L for Solaris and
     SVR4.  There is a configure option, --with-rpath, to control this.
501) On AIX, configure will pass extra directory paths to the linker
     via the -blibpath ld option.  This is only active when additional
     library paths are used.  It may be disabled via the
     --without-blibpath configure option.
502) The --with-skey and --with-opie configure options now take
     an optional directory argument that should have an include and
     lib dir for the skey/opie include file and library respectively.
503) Fixed false positives in the overflow detection of expand_prompt().

To generate a diff of this commit:
cvs rdiff -r1.53 -r1.54 pkgsrc/security/sudo/Makefile
cvs rdiff -r1.11 -r1.12 pkgsrc/security/sudo/distinfo
cvs rdiff -r1.8 -r0 pkgsrc/security/sudo/patches/patch-aa
cvs rdiff -r1.5 -r0 pkgsrc/security/sudo/patches/patch-ab
cvs rdiff -r1.9 -r0 pkgsrc/security/sudo/patches/patch-ac
cvs rdiff -r1.10 -r1.11 pkgsrc/security/sudo/patches/patch-af
cvs rdiff -r1.3 -r1.4 pkgsrc/security/sudo/patches/patch-ag

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.