lp:ubuntu/hardy-proposed/sudo

Created by James Westby and last modified
Get this branch:
bzr branch lp:ubuntu/hardy-proposed/sudo
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Development

Recent revisions

26. By Mackenzie Morgan

* debian/rules:
 - add /usr/lib/kde4/bin to secure_path (LP: #191264)

25. By Martin Pitt

sudo.c: Drop usage of locale again, to revert back to the 1.6.8 behaviour.
fnmatch() and glob() behave differently under different locales and thus
cause undefined behaviour with (admittedly underspecified) character range
globs such as "[a-Z]". Patch taken from upstream CVS, see
http://www.gratisoft.us/bugzilla/show_bug.cgi?id=296 (LP: #228046)

24. By Martin Pitt

* env.c: Do not reset $HOME. sudo's documentation specifies that $HOME is
  not changed unless -H/-s is specified, and behaved that way until Gutsy
  (thus this is a regression). Fix backported from latest sudo release:
  http://www.sudo.ws/cgi-bin/cvsweb/sudo/env.c.diff?r1=1.39.2.17&r2=1.39.2.18
  (LP: #221395)
* debian/postinst: Put "NOPASSWD" example at the bottom, so that
  uncommenting it will actually work (later entries override former ones).
  Also add a comment to point that out. This will only apply to new
  installs, though, touching sudoers on upgrades is a no-go. (LP: #131399)

23. By Martin Pitt

logging.c: Ignore SIGPIPE when creating an error email, so that non-fatal
error messages (like "unable to resolve local host name") do not lead to
being killed with SIGPIPE if /usr/bin/sendmail does not exist or crashes.
(LP: #32906)

22. By Martin Pitt

env.c: Add "http_proxy" to initial_keepenv_table, so that it is kept
for "sudo apt-get ...". This is an EBW workaround for a design problem of
not having a system-wide proxy setting, but in order to not break existing
practice for upgrades we have to live with it for Hardy.

21. By Steve Langasek

No-change rebuild against libldap-2.4-2.

20. By Martin Pitt

* Merge with Debian unstable. Remaining Ubuntu changes:
  - debian/rules: Disable lecture, enable tty_tickets by default. (Ubuntu
    specific)
  - Add debian/sudo_root.8: Explanation of root handling through sudo.
    Install it in debian/rules. (Ubuntu specific)
  - sudo.c: If the user successfully authenticated and he is in the 'admin'
    group, then create a stamp ~/.sudo_as_admin_successful. Our default bash
    profile checks for this and displays a short intro about sudo if the
    flag is not present. (Ubuntu specific)
* The password prompt asks for the target user's password now, not the
  invoking one's. (LP: #148498)

19. By Martin Pitt

* Merge with Debian unstable. Remaining Ubuntu changes:
  - debian/prerm: Abort package removal if there is no root password.
    (Debian #451241).
  - debian/rules: Disable lecture, enable tty_tickets by default. (Ubuntu
    specific)
  - Add debian/sudo_root.8: Explanation of root handling through sudo.
    Install it in debian/rules. (Ubuntu specific)
  - sudo.c: If the user successfully authenticated and he is in the 'admin'
    group, then create a stamp ~/.sudo_as_admin_successful. Our default bash
    profile checks for this and displays a short intro about sudo if the
    flag is not present. (Ubuntu specific)
* sudo.c, parse.c: Apply a change that was missing from the older upstream
  tarball that fixes the upstream solution of "SETENV is implicit for ALL".
  We do not want to deviate our orig.tar.gz from Debian's, though.

18. By Martin Pitt

* Merge with Debian unstable. Remaining Ubuntu changes:
  - debian/prerm: Abort package removal if there is no root password.
    Forwarded to Debian #451241.
  - sudoers: Add some explanatory text why it is a REALLY good idea to use
    visudo. (LP #11620)
    Forwarded upstream: http://www.gratisoft.us/bugzilla/show_bug.cgi?id=269
  - debian/rules: Disable lecture, enable tty_tickets by default.
  - debian/rules: Configure less confusing default password prompt to point
    out that it is sudo asking for the user's password, as opposed to
    another program like ssh, or asking for the root password. (LP #8556)
    Forwarded to Debian #343268.
  - Add debian/sudo_root.8: Explanation of root handling through sudo.
    Install it in debian/rules.
  - sudo.c: If the user successfully authenticated and he is in the 'admin'
    group, then create a stamp ~/.sudo_as_admin_successful. Our default bash
    profile checks for this and displays a short intro about sudo if the
    flag is not present.
* New upstream version 1.6.9 fixes the following bugs:
  - Does not ask for password any more if stdin is not a terminal.
    (LP: #130636)
  - sudo -k/-K does not fail any more if timestamp is in the future.
    (LP: #43233)
* Drop our very intrusive patch for selectively cleaning the environment
  based on whether the user can execute all commands or only some. Debian
  and upstream now default to cleaning the environment unconditionally and
  provide option -E and the SETENV tag to override it.
  Instead, do a tinpy patch to parse.yacc which enables SETENV implicitly
  for 'ALL' commands.
  Forwarded upstream: http://www.gratisoft.us/bugzilla/show_bug.cgi?id=268
* sudo.c: Disable i18n for now (upstream enabled it in 1.6.9), since this
  causes PAM to output localized password prompts, which in turn breaks -p
  and --with-passprompt, which finally breaks gksu. See
  http://www.gratisoft.us/bugzilla/show_bug.cgi?id=270 for details.

17. By Martin Pitt

debian/rules: Configure less confusing default password prompt to (a)
point out that it wants to know the user's password (instead of root's or
whichever) and (b) that it is sudo which asks the question (since those
prompts become really unintelligible if the command asks its own password,
such as 'ssh', 'passwd', or 'mount -t cifs'). Do not modify
--with-badpass-message though, since that breaks gksu. Thanks to Marco
Rodrigues, leoquant, and nxvl for the discussion and proposals.
(LP: #8556)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/karmic/sudo
This branch contains Public information 
Everyone can see this information.

Subscribers