[sudo-workers] sudo 1.7.0rc3 released

Todd C. Miller Todd.Miller at courtesan.com
Tue Nov 4 18:39:51 EST 2008 

This is the third release candidate of sudo version 1.7.0.  I'd
love to hear reports of success (or failure!) in real-world
environments.

Download links:
    http://www.sudo.ws/sudo/dist/beta/sudo-1.7.0rc3.tar.gz
    ftp://ftp.sudo.ws/pub/sudo/beta/sudo-1.7.0rc3.tar.gz

Changes from Sudo 1.7.0rc2:

 o Fixed line continuation in double quotes.  It was only being honored if
   preceded by whitespace.

 o Fixed a use after free bug.

 o Added sudoers_locale Defaults option to override the default sudoers
   locale of "C".

 o For sudoedit, check EDITOR/VISUAL to make sure sudoedit is not
   re-invoking itself or sudo.  This allows one to set EDITOR to
   sudoedit without getting into an infinite loop of sudoedit running
   itself until the path gets too big.  Also added SUDO_EDITOR
   environment variable which is used by sudoedit in preference
   to EDITOR/VISUAL.

 o Added character class support to bundled glob(3) and fnmatch(3).

 o Fixed AIX limit setting.

 o Fixed a parser bug on machines with signed char (powerpc).

 o Don't error out on a zero-length sudoers file.  With the advent of
   #include the user could create a situation where sudo is unusable.

 o Fixed several bugs in Defaults matching.

 o When setting the umask, use the union of the
   user's umask and the default value set in sudoers so that we
   never lower the user's umask when running a command


What's new in Sudo 1.7?

 * Rewritten parser that converts sudoers into a set of data structures.
   This eliminates a number of ordering issues and makes it possible to
   apply sudoers Defaults entries before searching for the command.
   It also adds support for per-command Defaults specifications.

 * Sudoers now supports a #include facility to allow the inclusion of other
   sudoers-format files.

 * Sudo's -l (list) flag has been enhanced:
    o applicable Defaults options are now listed
    o a command argument can be specified for testing whether a user
      may run a specific command.
    o a new -U flag can be used in conjunction with "sudo -l" to allow
      root (or a user with "sudo ALL") list another user's privileges.

 * A new -g flag has been added to allow the user to specify a
   primary group to run the command as.  The sudoers syntax has been
   extended to include a group section in the Runas specification.

 * A uid may now be used anywhere a username is valid.

 * The "secure_path" run-time Defaults option has been restored.

 * Password and group data is now cached for fast lookups.

 * The file descriptor at which sudo starts closing all open files is now
   configurable via sudoers and, optionally, the command line.

 * Visudo will now warn about aliases that are defined but not used.

 * The -i and -s command line flags now take an optional command
   to be run via the shell.  Previously, the argument was passed
   to the shell as a script to run.

 * Improved LDAP support.  SASL authentication may now be used in
   conjunction when connecting to an LDAP server.  The krb5_ccname
   parameter in ldap.conf may be used to enable Kerberos.

 * Support for /etc/nsswitch.conf.  LDAP users may now use nsswitch.conf
   to specify the sudoers order.  E.g.:
	sudoers: ldap files
   to check LDAP, then /etc/sudoers.  The default is "files", even
   when LDAP support is compiled in.  This differs from sudo 1.6
   where LDAP was always consulted first.

 * Support for /etc/environment on AIX and Linux.  If sudo is run
   with the -i flag, the contents of /etc/environment are used to
   populate the new environment that is passed to the command being
   run.

 * If no terminal is available or if the new -A flag is specified,
   sudo will use a helper program to read the password if one is
   configured.  Typically, this is a graphical password prompter
   such as ssh-askpass.

 * A new Defaults option, "mailfrom" that sets the value of the
   "From:" field in the warning/error mail.  If unspecified, the
   login name of the invoking user is used.

 * A new flag, -n, may be used to indicate that sudo should not
   prompt the user for a password and, instead, exit with an error
   if authentication is required.

More information about the sudo-workers mailing list