[sudo-workers] sudo 1.7a1 released
Todd C. Miller
Todd.Miller at courtesan.com
Fri Sep 7 09:58:02 EDT 2007
This is the first alpha version of sudo version 1.7. I'm labeling
this as alpha not due to stability issues but simply because it is
not feature frozen yet (there are some LDAP enhancements still to
What's new in Sudo 1.7?
* Rewritten parser that converts sudoers into a set of data structures.
This eliminates a number of ordering issues and makes it possible to
apply sudoers Defaults entries before searching for the command.
It also adds support for per-command Defaults specifications.
* Sudoers now supports a #include facility to allow the inclusion of other
* Sudo's -l (list) flag has been enhanced:
o applicable Defaults options are now listed
o a command argument can be specified for testing whether a user
may run a specific command.
o a new -U flag can be used in conjunction with "sudo -l" to allow
root (or a user with "sudo ALL") list another user's privileges.
* A uid may now be used anywhere a username is valid.
* The "secure_path" run-time Defaults option has been restored.
* Password and group data is now cached for fast lookups.
* The file descriptor at which sudo starts closing all open files is now
configurable via sudoers and, optionally, the command line.
* Visudo will now warn about aliases that are defined but not used.
More information about the sudo-workers