Navigation:
Browse pkgsrc
(this page)| 2022-12-22 10:24:38 by Paolo Vincenzo Olivo | Files touched by this commit (2) |
Log message: security/opendoas: allow optional 'persist' support. Add optional support for a persist argument to enable time-based credential caching, modeled after the equivalent OpenBSD's doas behaviour. Implemented via timestamp records, in lack of a TIOCCHKVERAUTH ioctl. Marked upstream as experimental and hereby disabled by default. Available only on Linux. |
2022-07-04 10:25:58 by pin | Files touched by this commit (2) |  |
Log message: security/opendoas: update to 6.8.2 This release adds a patch from PR#92 to aborting early if argv is not set or empty. Nothing else has changed in this patch release. |
| 2022-05-09 17:21:20 by Nia Alarie | Files touched by this commit (1) |
Log message: opendoas: Work around some blatant problems on NetBSD with implict function declaration and improper linkage. |
| 2021-11-26 09:40:40 by pin | Files touched by this commit (3) | |
Log message: security/opendoas: update to 6.8.1 -This release fixes one major issue that has been assigned CVE-2019-25016. Rules that allowed the user to execute any command would inherit the executing users PATH instead of resetting it to a default PATH. The path will now be correctly reset (d5acd52) to the defined default PATH. Those rules still allow the user to execute any program from their PATH but executed commands won't inherit the users PATH anymore. Rules that limit the user to execute only a specific command are not affected by this and are only executed from the default PATH and with the PATH environment variable set to the safe default. Other changes are: -apply missing man page changes -Fixes to the configuration parser 2d7431c, 01ac841 and 36cc28e -Minor documentation and error message wording changes. |
| 2021-10-26 13:18:07 by Nia Alarie | Files touched by this commit (605) |
Log message: security: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Unfetchable distfiles (fetched conditionally?): ./security/cyrus-sasl/distinfo \ cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2 |
| 2021-10-07 16:54:50 by Nia Alarie | Files touched by this commit (606) |
Log message: security: Remove SHA1 hashes for distfiles |
| 2021-01-29 08:53:39 by Jonathan Perkin | Files touched by this commit (3) |
Log message: opendoas: Apply patch for CVE-2019-25016. Patch from __skn on IRC. Thanks! Bump PKGREVISION. |
| 2021-01-01 15:28:57 by pin | Files touched by this commit (5) |
Log message: security/opendoas: import package Packaged in wip by Sunil Nimmagadda. An unofficial, portable fork of the OpenBSD doas command. doas is a minimal replacement for the venerable sudo. It was initially written by Ted Unangst of the OpenBSD project to provide 95% of the features of sudo with a fraction of the codebase. |
New packages: