FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Port details
sudo Allow others to run commands as root
1.8.11.p1 security on this many watch lists=486 search for ports that depend on this port An older version of this port was marked as vulnerable.
Maintained by: wxs@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
License: sudo


This is the CU version of sudo.

Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity.  The basic philosophy is to
give as few privileges as possible but still allow people to get their
work done.

WWW: http://www.sudo.ws/
SVNWeb : Main Web Site : Distfiles Availability : PortsMon

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Required Libraries:
  1. devel/gettext

This port is required by:

for Build for Run * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...

To install the port: cd /usr/ports/security/sudo/ && make install clean
To add the package: pkg install security/sudo


Configuration Options
===> The following configuration options are available for sudo-1.8.11.p1:
     AUDIT=on: Enable BSM audit support
     DISABLE_AUTH=off: Do not require authentication by default
     DISABLE_ROOT_SUDO=off: Do not allow root to run sudo
     DOCS=on: Build and/or install documentation
     INSULTS=off: Enable insults on failures
     LDAP=off: LDAP protocol support
     NLS=on: Native Language Support
     NOARGS_SHELL=off: Run a shell if no arguments are given
     OPIE=off: Enable one-time passwords (no PAM support)
     SSSD=off: Enable SSSD backend support.
===> Use 'make config' to modify these settings

Master Sites:
  1. ftp://core.ring.gr.jp/pub/misc/sudo/
  2. ftp://ftp.arcane-networks.fr/pub/mirrors/sudo/
  3. ftp://ftp.cin.nihon-u.ac.jp/pub/misc/sudo/
  4. ftp://ftp.cs.tu-berlin.de/pub/misc/sudo/
  5. ftp://ftp.in2p3.fr/pub/sudo/
  6. ftp://ftp.informatik.uni-hamburg.de/pub/os/unix/utils/sudo/
  7. ftp://ftp.ring.gr.jp/pub/misc/sudo/
  8. ftp://ftp.st.ryukoku.ac.jp/pub/security/tool/sudo/
  9. ftp://ftp.sudo.ws/pub/sudo/
  10. ftp://ftp.tuwien.ac.at/utils/admin-tools/sudo/
  11. ftp://ftp.twaren.net/Unix/Security/Sudo/
  12. ftp://ftp.usbm.de/pub/sudo/
  13. ftp://ftp.uwsg.indiana.edu/pub/security/sudo/
  14. ftp://mirror.cdmon.com/pub/sudo/
  15. ftp://obsd.isc.org/pub/sudo/
  16. ftp://plier.ucar.edu/pub/sudo/
  17. ftp://sunsite.icm.edu.pl/packages/sudo/
  18. ftp://sunsite.ualberta.ca/pub/Mirror/sudo/
  19. ftp://zoot.tele.dk/pub/sudo/
  20. http://core.ring.gr.jp/archives/misc/sudo/
  21. http://distcache.FreeBSD.org/ports-distfiles/
  22. http://ftp.arcane-networks.fr/pub/mirrors/sudo/
  23. http://ftp.twaren.net/Unix/Security/Sudo/
  24. http://sudo-ftp.basemirror.de/
  25. http://sudo.cybermirror.org/
  26. http://sudo.p8ra.de/sudo/dist/
  27. http://www.ring.gr.jp/archives/misc/sudo/
  28. http://www.sudo.ws/sudo/dist/

Number of commits found: 152 (showing only 100 on this page)

1 | 2  »  

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
16 Oct 2014 02:05:18
Original commit files touched by this commit  1.8.11.p1
Revision:370967
wxs search for other commits by this committer
Update to 1.8.11p1

PR:		194259
Submitted by:	cy@ and Yasuhiro KIMURA <yasu@utahime.org>
22 Sep 2014 15:38:19
Original commit files touched by this commit  1.8.10.p3_1
Revision:368965
bapt search for other commits by this committer
Simplify plist
11 Sep 2014 23:17:13
Original commit files touched by this commit  1.8.10.p3_1
Revision:367995
bdrewery search for other commits by this committer
Use @sample for sudoers
24 Jul 2014 18:34:16
Original commit files touched by this commit  1.8.10.p3_1
Revision:362835
tijl search for other commits by this committer
net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample
(Only the first 15 lines of the commit message are shown above View all of this commit message)
15 Jul 2014 16:57:39
Original commit files touched by this commit  1.8.10.p3
Revision:361977
adamw search for other commits by this committer
Add DOCS to OPTIONS_DEFINE to ports that check for PORT_OPTIONS:MDOCS.
08 May 2014 03:27:07
Original commit files touched by this commit  1.8.10.p3
Revision:353250
wxs search for other commits by this committer
Update to 1.8.10p3.
12 Apr 2014 02:24:09
Original commit files touched by this commit  1.8.10.p2
Revision:351059
wxs search for other commits by this committer
Add option for sssd.

Submitted by:	petef@
17 Mar 2014 17:55:58
Original commit files touched by this commit  1.8.10.p2
Revision:348496
wxs search for other commits by this committer
Update to 1.8.10p2.

PR:		ports/187567
Submitted by:	Yasuhiro KIMURA <yasu@utahime.org>
04 Mar 2014 01:10:18
Original commit files touched by this commit  1.8.9.p5
Revision:346984
adamw search for other commits by this committer
Use OPTIONS helpers.
08 Feb 2014 21:48:05
Original commit files touched by this commit  1.8.9.p5
Revision:343397
wxs search for other commits by this committer
Update to 1.8.9p5.

PR:		ports/185581
Submitted by:	Yasuhiro KIMURA <yasu@utahime.org>
10 Oct 2013 13:28:12
Original commit files touched by this commit  1.8.8
Revision:329993
wxs search for other commits by this committer
[1]: Update to 1.8.8.
[2]: Switch logging to authpriv.

PR:		[1] ports/182618
Submitted by:	[1] Yasuhiro KIMURA <yasu@utahime.org>
		[2] des@
20 Sep 2013 22:55:26
Original commit files touched by this commit  1.8.7_1
Revision:327769
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
14 Aug 2013 22:35:54
Refresh Original commit files touched by this commit
Revision:324744  Sanity Test Failure
ak search for other commits by this committer
- Remove MAKE_JOBS_SAFE variable

Approved by:	portmgr (bdrewery)
17 Jul 2013 13:36:10
Original commit files touched by this commit  1.8.7_1
Revision:323166
wxs search for other commits by this committer
Cleanup /var/db/sudo if it is empty. This eliminates leftovers when building
the package.
05 Jul 2013 18:46:34
Original commit files touched by this commit  1.8.7_1
Revision:322347
wxs search for other commits by this committer
Fix missing include.

This was causing the "Undefined symbol '_'" message when hitting ^C or
entering an incorect command.

PR:		ports/180262
Submitted by:	Christophe Juniet <c.juniet@gmail.com>
28 Jun 2013 00:58:49
Original commit files touched by this commit  1.8.7
Revision:321914
wxs search for other commits by this committer
Update to 1.8.7.
04 May 2013 22:30:31
Original commit files touched by this commit  1.8.6.p8
Revision:317387
wxs search for other commits by this committer
Disable PIE on ARM. This was causing a crash at runtime.

Submitted by:	Lukasz Siemiradzki
24 Apr 2013 18:10:32
Original commit files touched by this commit  1.8.6.p8
Revision:316464
ak search for other commits by this committer
- Convert USE_GETTEXT to USES (part 3)

Approved by:	portmgr (bapt)
16 Apr 2013 15:30:52
Original commit files touched by this commit  1.8.6.p8
Revision:315822
wxs search for other commits by this committer
Update to 1.8.6p8.

Feature safe:	yes
01 Mar 2013 01:57:29
Original commit files touched by this commit  1.8.6.p7
Revision:313131
wxs search for other commits by this committer
Update to 1.8.6p7.

VuXML entry coming in the next day or two tops.
24 Jan 2013 18:16:38
Original commit files touched by this commit  1.8.6.p5
Revision:310939 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.6p5.
16 Jan 2013 15:42:07
Original commit files touched by this commit  1.8.6.p4
Revision:310499 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.6.p4.
Trim header.
Remove ia64 fix, included upstream.
01 Jan 2013 20:33:52
Original commit files touched by this commit  1.8.6.p3_1
Revision:309783 This port version is marked as vulnerable.
wxs search for other commits by this committer
Disable PIE on ia64. This was causing a run-time failure.

Submitted by:	Anton Shterenlikht, Todd Miller
11 Oct 2012 13:36:47
Original commit files touched by this commit  1.8.6.p3_1
Revision:305723 This port version is marked as vulnerable.
wxs search for other commits by this committer
If OPIE option is on we can not pass --with-pam in CONFIGURE_ARGS. Make it
so that OPIE will pass --with-opie and if it is off we pass --with-pam. [1]

No functional changes with this, just a build fix.

While here use tabs where appropriate and cleanup pkg-descr. [2]

Feature safe:	yes
27 Sep 2012 13:44:02
Original commit files touched by this commit  1.8.6.p3_1
Revision:304961 This port version is marked as vulnerable.
wxs search for other commits by this committer
Fix the temporary workaround by passing the appropriate flag in
LDFLAGS. Since I want to ensure those who built it on i386 with this
workaround will rebuild it now that it is fixed bump PORTREVISION.
27 Sep 2012 02:57:50
Original commit files touched by this commit  1.8.6.p3
Revision:304944 This port version is marked as vulnerable.
wxs search for other commits by this committer
Fix build on i386 by disabling hardening measures. This is a temporary
fix until I can figure out what is really going on.
26 Sep 2012 01:49:52
Original commit files touched by this commit  1.8.6.p3
Revision:304871 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.6p3

PR:		ports/171837
Submitted by:	cy@
17 Aug 2012 18:25:23
Original commit files touched by this commit  1.8.5.p3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.5p3
21 Jun 2012 13:01:13
Original commit files touched by this commit  1.8.5.p2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Fix typo.

PR:             ports/169284
Submitted by:   From: Bryan Drewery <bryan@shatow.net>
19 Jun 2012 01:38:09
Original commit files touched by this commit  1.8.5.p2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Add option to enable OPIE support (off by default). [1]
While here, convert to new-style options.

PR:             ports/168812 [1]
Submitted by:   Zak Blacher <zblacher@sandvine.com> [1]
03 Jun 2012 20:21:46
Original commit files touched by this commit  1.8.5.p2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.5p2.
21 May 2012 15:39:02
Original commit files touched by this commit  1.8.5.p1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.5p1.

Changes: http://www.sudo.ws/sudo/stable.html#1.8.5p1
16 May 2012 14:26:34
Original commit files touched by this commit  1.8.4_2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.4p5

Security:       b3435b68-9ee8-11e1-997c-002354ed89bc
13 Mar 2012 15:25:11
Original commit files touched by this commit  1.8.4_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.4p4

Changes from 1.8.4p2 through 1.8.4p4 are here:
http://www.sudo.ws/sudo/stable.html#1.8.4p4

Feature safe:   yes
01 Mar 2012 02:06:48
Original commit files touched by this commit  1.8.4
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.4p2

PR:             ports/165528
Submitted by:   rea@
06 Feb 2012 02:47:25
Original commit files touched by this commit  1.8.3_2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
If you used LDAP and NOPORTDOCS then the documentation directory would be
left behind on install. The upstream Makefile would create the directory
and put sudoers2ldif there, but pkg-plist would not register it properly.

This fix moves sudoers2ldif to 'bin' since it isn't really documentation.
It's installation is still controlled by the LDAP knob though.

Spotted by:     scheidell@
30 Jan 2012 16:37:25
Original commit files touched by this commit  1.8.3_2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.3p2

Security:       7c920bb7-4b5f-11e1-9f47-00e0815b8da8
09 Nov 2011 17:18:44
Original commit files touched by this commit  1.8.3_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Switch to using MASTER_SITE_SUDO.
09 Nov 2011 15:26:04
Original commit files touched by this commit  1.8.3_1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Remove WITH_FBSD10_FIX, is no longer needed
01 Nov 2011 14:13:05
Original commit files touched by this commit  1.8.3_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Use DISTNAME instead of DISTFILES and remove WRKSRC.

Submitted by:   sunpoet@
30 Oct 2011 14:24:02
Original commit files touched by this commit  1.8.3_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Fix version number going backwards.

Noticed by:     erwin@
30 Oct 2011 02:49:59
Original commit files touched by this commit  1.8.3.p1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 1.8.3p1
29 Oct 2011 10:31:51
Original commit files touched by this commit  1.8.3
 This port version is marked as vulnerable.
kwm search for other commits by this committer
Fix build on FreeBSD 10

Approved by:    portmgr (miwi)
23 Oct 2011 15:00:38
Original commit files touched by this commit  1.8.3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 1.8.3.
23 Sep 2011 22:26:39
Original commit files touched by this commit  1.8.2
 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav
07 Sep 2011 01:30:26
Original commit files touched by this commit  1.8.2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Switch to using bsd.port.options.mk.
06 Sep 2011 18:07:33
Original commit files touched by this commit  1.8.2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 1.8.2
- Now depend on gettext
- While here, use DISTVERSION.
02 Aug 2011 21:35:36
Original commit files touched by this commit  1.8.1_5
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Remove dead MASTER_SITES.

Noticed by:     The Distilator
22 May 2011 19:33:13
Original commit files touched by this commit  1.8.1_5
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.1p2
13 May 2011 14:30:35
Original commit files touched by this commit  1.8.1_4
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Add an AUDIT option, which is off by default for now. I will turn it on
with the next significant bump.

Submitted by:   Mike Kelly (private mail)
17 Apr 2011 13:50:10
Original commit files touched by this commit  1.8.1_4
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.1p1.
No longer need to worry about etc/sudoers.d problem, as it is no longer
a fatal error.
12 Apr 2011 03:42:45
Original commit files touched by this commit  1.8.1_3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Fix a typo in pkg-install. Should use -m and not -M for install(1).

Noticed by:     sunpoet@
11 Apr 2011 19:43:39
Original commit files touched by this commit  1.8.1_3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
The install process checks the validity of sudoers before installing
etc/sudoers.d. If you have an sudoers with the includedir directive the
install will fail. Fix this by creating the directory in a pre-install
target.

This should fix "The Great sudo Debacle of 2011" once and for all.

Tested by:      dougb@
11 Apr 2011 16:50:19
Original commit files touched by this commit  1.8.1_2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Revert the removal of sudoers.d. It is a POLA violation. While here remove
the UPDATING entry as it no longer applies.
11 Apr 2011 12:47:00
Original commit files touched by this commit  1.8.1_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
We don't install a sudoers.d, remove that from the default sudoers file.

PR:             ports/156305
Submitted by:   Helmut Schneider <jumper99@gmx.de>
                Anatoly Borodin <anatoly.borodin@gmail.com>
10 Apr 2011 01:39:49
Original commit files touched by this commit  1.8.1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.8.1. There are a lot of behind-the-scenes changes in this port,
including a plugin system now.

While here, do some whitespace fixes.
19 Jan 2011 18:32:50
Original commit files touched by this commit  1.7.4.6
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.7.4p6.

"This release fixes a bug in the I/O logging support that could cause visual
artifacts in full-screen programs such as text editors.  This bug was listed as
fixed in sudo 1.7.4p5 but the fix was merged incorrectly."

Feature safe:   yes
13 Jan 2011 20:00:11
Original commit files touched by this commit  1.7.4.5
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.7.4p5.

Special thanks to rea@ for commiting the appropriate VuXML for me. :)

PR:             ports/153939
Submitted by:   rea@
Security:       908f4cf2-1e8b-11e0-a587-001b77d09812
Feature safe:   yes
24 Oct 2010 23:34:12
Original commit files touched by this commit  1.7.4.4_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Work around annoying, but harmless, bug with install(1) using "-b~" by changing
it to use "-b ~".
While here also strip libsudo_noexec.so.

Submitted by:   John Hein (private mail)
17 Oct 2010 01:51:08
Original commit files touched by this commit  1.7.4.4_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Add a bunch of new mirrors and remove dead ones. The mirror list now matches
http://www.sudo.ws/sudo/download_mirrors.html.

Noticed by:     The Distilator
14 Sep 2010 15:24:30
Original commit files touched by this commit  1.7.4.4_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Add two missing files when LDAP knob is on. No need to bump PORTREVISION as it
defaults to off.
14 Sep 2010 00:25:14
Original commit files touched by this commit  1.7.4.4_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Remove SHELL_SETS_HOME knob since as far as I can tell it doesn't do anything
anymore. The configure script still supports it but the behavior is now
controlled by a setting in the configuration file "Defaults env_keep += HOME".
13 Sep 2010 20:46:01
Original commit files touched by this commit  1.7.4.4_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Fix packaging.

PR:             ports/150371
Submitted by:   Sunpoet Po-Chuan Hsieh <sunpoet@sunpoet.net>, dim@
07 Sep 2010 18:13:23
Original commit files touched by this commit  1.7.4.4
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.7.4p4 to address a couple of minor bugs and Runas group
vulnerability.
While I'm here also cleanup files/patch-Makefile.in.

Security:       67b514c3-ba8f-11df-8f6e-000c29a67389
05 Sep 2010 21:33:42
Original commit files touched by this commit  1.7.4.3_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Fix package installation by correcting usage of %B and installing a file
to make sure the empty directory is created.

PR:             ports/149912
Submitted by:   Alexey V.Degtyarev <alexey@renatasystems.org>
22 Aug 2010 12:32:26
Original commit files touched by this commit  1.7.4.3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Strip the binaries by default. No need to bump PORTREVISION for such a
minor change.

PR:             ports/149135
Submitted by:   Anonymous <swell.k@gmail.com>
22 Aug 2010 01:58:33
Original commit files touched by this commit  1.7.4.3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.7.4p3
Install etc/pam.d/sudo and etc/pam.d/sudo.default
16 Aug 2010 13:06:02
Original commit files touched by this commit  1.7.4.2_1
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Fix problems when upgrading using packages:
 - Always install sudoers.sample.
 - There is no need for pkg-install anymore.
 - Bump PORTREVISION.
16 Aug 2010 02:16:26
Original commit files touched by this commit  1.7.4.2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.7.4p2.
05 Jul 2010 16:34:02
Original commit files touched by this commit  1.7.3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Remove unsupported argument to configure.

PR:             ports/148378
Submitted by:   Jeremy Chadwick <freebsd@jdc.parodius.com>
Feature safe:   yes
04 Jul 2010 18:56:44
Original commit files touched by this commit  1.7.3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.7.3

Feature safe:   yes
03 Jun 2010 00:11:49
Original commit files touched by this commit  1.7.2.7
 This port version is marked as vulnerable.
wxs search for other commits by this committer
Update to 1.7.2p7.

Security:       d42e5b66-6ea0-11df-9c8d-00e0815b8da8
15 Apr 2010 20:55:39
Original commit files touched by this commit  1.7.2.6
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 1.7.2p6 (security fix).

Security:       1a9f678d-48ca-11df-85f8-000c29a67389
01 Mar 2010 17:48:13
Original commit files touched by this commit  1.7.2.5
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 1.7.2p5. Security fix (1.7.2p4) and general bug fixes beyond that.

Security:       018a84d0-2548-11df-b4a3-00e0815b8da8
Feature safe:   yes
05 Jan 2010 14:57:17
Original commit files touched by this commit  1.7.2.2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Fix options screen to have a shorter description.

Noticed by:     garga@
04 Jan 2010 21:28:22
Original commit files touched by this commit  1.7.2.2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 1.7.2.2
- Mark jobs safe
- Cleanup whitespace in OPTIONS
- [1] Add ability to specify syslog facility at build time (defaults to local2,
  no functional change)
- [2] Add ability to specify ldap configuration file (defaults to
  ${PREFIX}/etc/ldap.conf, no functional change)

PR:             [2]: ports/127822
Submitted by:   [1]: skreuzer@ (private mail)
                [2]: Sergey Skvortsov <skv@freebsd.org>
12 Oct 2009 17:55:26
Original commit files touched by this commit  1.6.9.20
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Take maintainer. Thanks Tom for all your hard work on this.

Approved by:    tmclaugh
12 Jun 2009 00:46:49
Original commit files touched by this commit  1.6.9.20
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Add OPTIONS for WITH_DISABLE_ROOT_SUDO, WITH_DISABLE_AUTH, and
WITH_NOARGS_SHELL

Submitted by:   Scott Fultz
06 Feb 2009 19:35:47
Original commit files touched by this commit  1.6.9.20
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Security update for sudo to 1.6.9p20 for CVE 2009-0034

Changes:
- Only use the cached supplementory group vector when matching groups
  for the invoking user. (security)
- When setting the umask, use the union of the user's umask and the
  default value set in sudoers so that we never lower the user's umask
  when running a command.
- Sudo now operates in the C locale again when doing a match against
  sudoers.

PR:             131446
Submitted by:   Eygene Ryabinkin
Security:       vid:13d6d997-f455-11dd-8516-001b77d09812
11 Oct 2008 20:39:03
Original commit files touched by this commit  1.6.9.17
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Add FTP_PASSIVE_MODE to example env_keep line for pkg utilities and fetch.

Suggested by:   koitsu
21 Aug 2008 06:18:49
Original commit files touched by this commit  1.6.9.17
 This port version is marked as vulnerable.
rafan search for other commits by this committer
Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk
(Only the first 15 lines of the commit message are shown above View all of this commit message)
06 Jul 2008 23:20:05
Original commit files touched by this commit  1.6.9.17
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Update to 1.6.9p17
* the -i flag implies resetting the environment as it did prior to
  1.6.9.  The -i and -E flags are now mutually-exclusive.
10 Apr 2008 14:00:22
Original commit files touched by this commit  1.6.9.15_1
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Fix pkg-plist, libtool archive is no longer installed.

Prompted by:    pavmail
09 Apr 2008 16:44:28
Original commit files touched by this commit  1.6.9.15
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Update to 1.6.9p15
* The HOME environment variable is once again preserved by default, as per
  the documentation.

- Finally remember to fix the $FreeBSD$ line in pam file.
09 Mar 2008 20:51:31
Original commit files touched by this commit  1.6.9.14
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Update to 1.6.9p14

* Check sudoers even if user is found in LDAP so Defaults can take
  effect.
* Fix crash when pam_lastlog is (incorrectly) usesd in session section
  of PAM file.
28 Jan 2008 06:29:03
Original commit files touched by this commit  1.6.9.12
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Update to 1.6.9p12

Changes:
- The ALL command in sudoers now implies SETENV permissions.
- The command search is now performed using the target user's auxiliary
  group vector too.
- Various LDAP code improvements.
- Added passprompt_override flag to sudoers to cause sudo's prompt to be
  used in all cases.  Also set when the -p flag is used.
- New %p prompt escape that expands to the user whose password is being
  prompted, as specified by the rootpw, targetpw and runaspw sudoers
  flags.
12 Nov 2007 01:21:20
Original commit files touched by this commit  1.6.9.6
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Make fetchable again.  Add my MASTER_SITE_LOCAL to the mix and replace
  a number of outdated sites.

Notified by:    Ferenc Gartner
Approved by:    portmgr (linimon, erwin)
23 Oct 2007 00:46:45
Original commit files touched by this commit  1.6.9.6
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Update to 1.6.9p6
- Sudo now only prints the password prompt if the process is in the
  foreground.
17 Sep 2007 14:55:13
Original commit files touched by this commit  1.6.9.5
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Update to 1.6.9p5:
- Fixed a bug in the IP address matching introduced by the IPV6 merge.
- Fixed sudoedit when used on a non-existent file.
- Groups and netgroups are now valid in an LDAP sudoRunas statement.
03 Sep 2007 17:13:29
Original commit files touched by this commit  1.6.9.4
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Install schema.OpenLDAP into DOCSDIR.

Prompted by:    flz
27 Aug 2007 19:40:48
Original commit files touched by this commit  1.6.9.4
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Update to 1.6.9p4
- IPv6 support added.
- Added notes to default sudoers for handling environmental variables
  related to our pkg_* tools and portupgrade.
13 Aug 2007 00:14:15
Original commit files touched by this commit  1.6.9.3_1
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Work around broken configure script and explicitly set location of
  sudo_noexec.so to unbreak NOEXEC option. [1]
- Build using --with-secure-path if SUDO_SECURE_PATH is set when
  building the port.  SUDO_SECURE_PATH should be set to a PATH string.
  [2]
- Don't bother deleting sudo_noexec.la.  Deleting the file after it's
  installed is ugly and since it's not harmful it's not worth patching
  the install.
- Set CONFIGURE_TARGET.

PR:             115442 [1], 115381 [2]
Submitted by:   vd [1], Janos Mohacsi [2]
03 Aug 2007 00:56:01
Original commit files touched by this commit  1.6.9.3_1
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Fix session stack in default pam file.
02 Aug 2007 17:25:19
Original commit files touched by this commit  1.6.9.3
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Update to 1.6.9p3
- Fixes bug related to supplemental group matching
30 Jul 2007 15:01:47
Original commit files touched by this commit  1.6.9.2
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Update to 1.6.9p2
- Environment handling fix.
27 Jul 2007 01:00:56
Original commit files touched by this commit  1.6.9.1
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Fix PORTVERSION

Noticed by:     ume
26 Jul 2007 15:53:40
Original commit files touched by this commit  1.6.9.p1
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Update to 1.6.9p1
  * Worked around a bug in some PAM implementations that caused a crash
    when no tty was present.
  * Fixed a crash on some platforms in the error logging function.
- Change default pam session stack to pam_permit like su does [1]
- Grab maintainership

Sugested by:    des [1]
23 Jul 2007 03:54:05
Original commit files touched by this commit  1.6.9_1
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
- Fix segfault when there is no TTY when executing. [1]
- Temporarilly disable session entry in default pam file because
  pam_lastlog causes users to appear as though they have logged out in
  system logs. [2]

Reported by:    yarodin@gmail.com [1], Paul Fraser <pfraser@gmail.com> [2]
Submitted by:   Todd Miller [1]
21 Jul 2007 03:15:13
Original commit files touched by this commit  1.6.9
 This port version is marked as vulnerable.
tmclaugh search for other commits by this committer
Update to 1.6.9

Application changes:
- PAM, since present, is used by default.
- Environment variable handling has changed significantly.
- Sudo checks the user's supplemental group vector so nsswitch order is
  no longer important for group based rules.
(See UPGRADE and CHANGING under share/doc/sudo/ for more.)

Port changes:
- PAM file is no longer clobered on reinstall.
- OPIE option has been removed due to PAM being used by default.
- Selected documentation is now installed.
02 May 2007 18:47:17
Original commit files touched by this commit  1.6.8.12_2
 This port version is marked as vulnerable.
sat search for other commits by this committer
- Add an option to enable insults

Submitted by:   Dan Casey <dcasey@debtresolve.com>

Number of commits found: 152 (showing only 100 on this page)

1 | 2  »  

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
otrsDec 16
mod_dav_svnDec 15
subversionDec 15
subversion16Dec 15
subversion17Dec 15
nvidia-driverDec 14
nvidia-driver-173Dec 14
nvidia-driver-304Dec 14
nvidia-driver-71Dec 14
nvidia-driver-96Dec 14
asterisk11Dec 11
bind99Dec 11
xorg-serverDec 10
unboundDec 09
freetype2Dec 07

11 vulnerabilities affecting 47 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24438
Broken 139
Deprecated 70
Ignore 394
Forbidden 3
Restricted 207
No CDROM 93
Vulnerable 22
Expired 0
Set to expire 65
Interactive 0
new 24 hours 0
new 48 hours1
new 7 days27
new fortnight47
new month244

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.