From kennedys at ca.ibm.com  Fri Jun  4 15:39:26 2010
From: kennedys at ca.ibm.com (Sam Kennedy)
Date: Fri, 4 Jun 2010 15:39:26 -0400
Subject: [sudo-workers] Need a SUDO Expert in Canada
Message-ID: <OF6BB18C2A.A941C2DF-ON85257738.006BC4B2-85257738.006BFB30@ca.ibm.com>


Hi There,

We are in urgent need of a SUDO expert in Canada to assist with our SUDO
project.  We are looking for someone skilled on multiple platforms who is
available for about six months.  Can anyone help?

Thanks!
                                                      
                                                      
                                                      
                                                      
 Gabriel (Sam) Kennedy                                
 Senior Manager Architects                            
 Certified ITIL V3 Expert                             
 Systems Management Integration                       
 Integrated Technology Delivery, Global Services, IBM 
 Canada Ltd.                                          
 Tel:905-316-4392 Cell:905-836-3191                   
 KennedyS at ca.ibm.com                                  
                                                      





From Todd.Miller at courtesan.com  Mon Jun 14 17:28:19 2010
From: Todd.Miller at courtesan.com (Todd C. Miller)
Date: Mon, 14 Jun 2010 17:28:19 -0400
Subject: [sudo-workers] sudo 1.7.3b3 available
Message-ID: <201006142128.o5ELSJvY012280@core.courtesan.com>

A new beta version of sudo 1.7.3 is now available.

Download links:
    http://www.sudo.ws/sudo/dist/beta/sudo-1.7.3b3.tar.gz
    ftp://ftp.sudo.ws/pub/sudo/beta/sudo-1.7.3b3.tar.gz

Major changes between sudo 1.7.2p7 and 1.7.3b3:

 * Support for logging I/O for the command being run.
   For more information, see the documentation for the "log_input"
   and "log_output" Defaults options in the sudoers manual.  Also
   see the sudoreplay manual for how to replay I/O log sessions.

 * The use_pty sudoers option can be used to force a command to be
   run in a pseudo-pty, even when I/O logging is not enabled.

 * On some systems, sudo can now detect when a user has logged out
   and back in again when tty-based time stamps are in use.  Supported
   systems include Solaris systems with the devices file system,
   Mac OS X, and Linux systems with the devpts filesystem (pseudo-ttys
   only).

 * Sudo's SELinux support should now function correctly when running
   commands as a non-root user and when one of stdin, stdout or stderr
   is not a terminal.

 * Sudo now uses mbr_check_membership() on systems that support it
   to determine group membership.  Currently, only Darwin (Mac OS X)
   supports this.

 * The passwd_timeout and timestamp_timeout options may now be
   specified as floating point numbers for more granular timeout
   values.


From Todd.Miller at courtesan.com  Mon Jun 28 09:56:10 2010
From: Todd.Miller at courtesan.com (Todd C. Miller)
Date: Mon, 28 Jun 2010 09:56:10 -0400
Subject: [sudo-workers] sudo 1.7.3rc1 available
Message-ID: <201006281356.o5SDuABD021802@core.courtesan.com>

The first release candidate of sudo 1.7.3 is now available.
Sudo 1.7.3 is scheduled for release on June 30th.

Download links:
    http://www.sudo.ws/sudo/dist/beta/sudo-1.7.3rc1.tar.gz
    ftp://ftp.sudo.ws/pub/sudo/beta/sudo-1.7.3rc1.tar.gz

Major changes between sudo 1.7.2p7 and 1.7.3rc1:

 * Support for logging I/O for the command being run.
   For more information, see the documentation for the "log_input"
   and "log_output" Defaults options in the sudoers manual.  Also
   see the sudoreplay manual for how to replay I/O log sessions.

 * The use_pty sudoers option can be used to force a command to be
   run in a pseudo-pty, even when I/O logging is not enabled.

 * On some systems, sudo can now detect when a user has logged out
   and back in again when tty-based time stamps are in use.  Supported
   systems include Solaris systems with the devices file system,
   Mac OS X, and Linux systems with the devpts filesystem (pseudo-ttys
   only).

 * On AIX systems, the registry setting in /etc/security/user is
   now taken into account when looking up users and groups.  Sudo
   now applies the correct the user and group ids when running a
   command as a user whose account details come from a different
   source (e.g. LDAP or DCE vs.  local files).

 * Support for multiple 'sudoers_base' and 'uri' entries in ldap.conf.
   When multiple entries are listed, sudo will try each one in the
   order in which they are specified.

 * Sudo's SELinux support should now function correctly when running
   commands as a non-root user and when one of stdin, stdout or stderr
   is not a terminal.

 * Sudo will now use the Linux audit system with configure with
   the --with-linux-audit flag.

 * Sudo now uses mbr_check_membership() on systems that support it
   to determine group membership.  Currently, only Darwin (Mac OS X)
   supports this.

 * When the tty_tickets sudoers option is enabled but there is no
   terminal device, sudo will no longer use or create a tty-based
   ticket file.  Previously, sudo would use a tty name of "unknown".
   As a consequence, if a user has no terminal device, sudo will
   now always prompt for a password.

 * The passwd_timeout and timestamp_timeout options may now be
   specified as floating point numbers for more granular timeout
   values.

 * Negating the fqdn option in sudoers now works correctly when sudo
   is configured with the --with-fqdn option.  In previous versions
   of sudo the fqdn was set before sudoers was parsed.