Path to this page:
Next | Query returned 8 messages, browsing 1 to 10 | previous
CVS Commit History:
2022-12-22 10:24:38 by Paolo Vincenzo Olivo | Files touched by this commit (2) |
Log message:
security/opendoas: allow optional 'persist' support.
Add optional support for a persist argument to enable time-based
credential caching, modeled after the equivalent OpenBSD's doas
behaviour.
Implemented via timestamp records, in lack of a TIOCCHKVERAUTH ioctl.
Marked upstream as experimental and hereby disabled by default.
Available only on Linux.
|
2022-07-04 10:25:58 by pin | Files touched by this commit (2) | |
Log message:
security/opendoas: update to 6.8.2
This release adds a patch from PR#92 to aborting early if argv is not set or
empty.
Nothing else has changed in this patch release.
|
2022-05-09 17:21:20 by Nia Alarie | Files touched by this commit (1) |
Log message:
opendoas: Work around some blatant problems on NetBSD with implict
function declaration and improper linkage.
|
2021-11-26 09:40:40 by pin | Files touched by this commit (3) | |
Log message:
security/opendoas: update to 6.8.1
-This release fixes one major issue that has been assigned CVE-2019-25016.
Rules that allowed the user to execute any command would inherit the
executing users PATH instead of resetting it to a default PATH.
The path will now be correctly reset (d5acd52) to the defined default PATH.
Those rules still allow the user to execute any program from their PATH
but executed commands won't inherit the users PATH anymore.
Rules that limit the user to execute only a specific command are not affected
by this and are only executed from the default PATH and with the PATH
environment variable set to the safe default.
Other changes are:
-apply missing man page changes
-Fixes to the configuration parser 2d7431c, 01ac841 and 36cc28e
-Minor documentation and error message wording changes.
|
2021-10-26 13:18:07 by Nia Alarie | Files touched by this commit (605) |
Log message:
security: Replace RMD160 checksums with BLAKE2s checksums
All checksums have been double-checked against existing RMD160 and
SHA512 hashes
Unfetchable distfiles (fetched conditionally?):
./security/cyrus-sasl/distinfo \
cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
|
2021-10-07 16:54:50 by Nia Alarie | Files touched by this commit (606) |
Log message:
security: Remove SHA1 hashes for distfiles
|
2021-01-29 08:53:39 by Jonathan Perkin | Files touched by this commit (3) |
Log message:
opendoas: Apply patch for CVE-2019-25016.
Patch from __skn on IRC. Thanks! Bump PKGREVISION.
|
2021-01-01 15:28:57 by pin | Files touched by this commit (5) |
Log message:
security/opendoas: import package
Packaged in wip by Sunil Nimmagadda.
An unofficial, portable fork of the OpenBSD doas command.
doas is a minimal replacement for the venerable sudo. It was
initially written by Ted Unangst of the OpenBSD project to provide
95% of the features of sudo with a fraction of the codebase.
|
Next | Query returned 8 messages, browsing 1 to 10 | previous