[sudo-commits] sudo changeset 14871:790d60c6ed4b
Todd C. Miller
Todd.Miller at sudo.ws
Mon Jul 10 14:32:18 MDT 2023
changeset: 14871:790d60c6ed4b in /raid/repos/sudo
details: https://www.sudo.ws/repos/sudo/rev/790d60c6ed4b
user: Todd C. Miller <Todd.Miller at sudo.ws>
date: Mon Jul 10 14:30:40 2023 -0600
Log Message:
Only allow the user to specify -D or -R for the special "*" value.
The sudoers file must now explicitly allow the user to specify a
directory (sudo -D) or chroot (sudo -R) by setting cwd or chroot
to "*". If a specific cwd or chroot value is set in sudoers, the
user may not use the -D or -R options, even if they match the value
in sudoers.
diffstat:
plugins/sudoers/check_util.c | 12 ++++++------
plugins/sudoers/regress/testsudoers/test25.out.ok | 12 ------------
plugins/sudoers/regress/testsudoers/test25.sh | 8 --------
plugins/sudoers/regress/testsudoers/test26.out.ok | 12 ------------
plugins/sudoers/regress/testsudoers/test26.sh | 8 --------
5 files changed, 6 insertions(+), 46 deletions(-)
More information about the sudo-commits
mailing list