[sudo-commits] sudo changeset 10661:e1a52c34da5e
Todd C. Miller
Todd.Miller at courtesan.com
Mon Sep 19 06:22:08 MDT 2016
changeset: 10661:e1a52c34da5e in /raid/repos/sudo
details: https://www.sudo.ws/repos/sudo/rev/e1a52c34da5e
user: Todd C. Miller <Todd.Miller at courtesan.com>
date: Mon Sep 19 06:19:49 2016 -0600
Log Message:
Fix matching when no sudoRunAsUser is present in a sudoRole.
If only a sudoRunAsGroup is present, match on the invoking user
if the -g option was specified and the group matched.
If no sudoRunAsGroup is present and the -g option was specified,
allow it if it matches the passwd gid of the runas user.
This matches the behavior of the sudoers backend.
diffstat:
plugins/sudoers/ldap.c | 45 ++++++++++++++++++++++++++++++---------------
plugins/sudoers/sssd.c | 44 +++++++++++++++++++++++++++++---------------
2 files changed, 59 insertions(+), 30 deletions(-)
More information about the sudo-commits
mailing list