| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
| |
PR: 247467
Submitted by: maintainer (jsmith resonatingmedia com)
Notes:
svn path=/head/; revision=539953
|
| |
|
|
|
|
|
|
|
| |
PR: 245238
Submitted by: jsmith@resonatingmedia.com (maintainer)
MFH: 2020Q2
Notes:
svn path=/head/; revision=532505
|
| |
|
|
|
|
|
|
|
| |
PR: 242931
Submitted by: jsmith@resonatingmedia.com (maintainer)
Relnotes: https://github.com/slicer69/doas/releases/tag/6.2p4
Notes:
svn path=/head/; revision=521559
|
| |
|
|
|
|
|
|
| |
PR: 240305
Submitted by: jsmith@resonatingmedia.com (maintainer)
Notes:
svn path=/head/; revision=512740
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Update the pkg-message to give users that install/upgrade the port some
info about the changed behavior regarding the environment variables. [1]
* Make the configuration of target user's sanitized $PATH that is set at
compile time more flexible by enabling users to configure it via
_GLOBAL_PATH. [2]
* Also pet portlint/portclippy by placing USES to the top of the USES block
and remove the superfluous occurence of GH_PROJECT while I'm here.
Changelog:
* Most environment variables are no longer copied to the target user's
environment. This avoids corrupting files through use of $HOME, for
example.
When environment variables are required, keepenv can be set in the
doas.conf file.
* The target user's sanitized $PATH can be set at compile time to avoid
passing malicious executables to the target user's path.
https://github.com/slicer69/doas/releases/tag/6.1
PR: 239629
Submitted by: jsmith@resonatingmedia.com (maintainer)
Approved by: jsmith@resonatingmedia.com (maintainer) [1] [2]
MFH: 2019Q3
Notes:
svn path=/head/; revision=508097
|
| |
|
|
| |
Notes:
svn path=/head/; revision=506905
|
| |
|
|
|
|
|
|
| |
PR: 236465
Submitted by: jsmith@resonatingmedia.com (maintainer)
Notes:
svn path=/head/; revision=496207
|
| |
|
|
|
|
|
|
| |
PR: 222936
Submitted by: maintainer
Notes:
svn path=/head/; revision=451880
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This update brings the security/doas port up to date with upstream.
This gives us the added benefit of restricted path searching. Which
means if the admin puts a relative path in the doas.conf file, doas
will limit the number of places where the executable can be found.
This prevents users from putting malicious executables with the same
name in their custom path.
PR: 222092
Submitted by: jsmith@resonatingmedia.com (maintainer)
MFH: 2017Q3
Notes:
svn path=/head/; revision=449334
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Pull tarball from a GitHub release rather than a commit.
- Update license information. There is code under BSD2CLAUSE and code
under ISCL.
PR: 217176
Submitted by: jsmith@resonatingmedia.com (maintainer)
Approved by: mat, swills (mentor, implicit)
Differential Revision: https://reviews.freebsd.org/D9664
Notes:
svn path=/head/; revision=434585
|
| |
|
|
|
|
|
|
| |
PR: 214414
Submitted by: jsmith@resonatingmedia.com(maintainer)
Notes:
svn path=/head/; revision=428036
|
| |
|
|
|
|
|
|
| |
PR: 212975
Submitted by: maintainer
Notes:
svn path=/head/; revision=423070
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
This update enforces the correct uid and gid when -u switch is used.
PR: 211622
Reported by: telnetuserid@sdf.org
Submitted by: jsmith@resonatingmedia.com (maintainer)
Approved by: koobs, adamw (mentors)
Relnotes: https://github.com/slicer69/doas/releases/tag/v5.9-5
Differential Revision: https://reviews.freebsd.org/D7630
Notes:
svn path=/head/; revision=420802
|
| |
|
|
|
|
|
|
|
|
|
| |
properly when the user authenticates with "nopass" specified in the
doas.conf configuration file.
PR: 210851
Submitted by: jsmith@resonatingmedia.com (maintainer)
Notes:
svn path=/head/; revision=418113
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- fixed a bug where, when the user authenticates successfully as root,
only the user's effective user id (euid) becomes zero (0).
This leads to file permission errors when performing upgrades or
other file-oriented operations.
- introduced gmake as a dependency as it is needed to process upstream's
makefile.
PR: 210596
Submitted by: jsmith@resonatingmedia.com (maintainer)
Notes:
svn path=/head/; revision=417675
|
| |
|
|
|
|
|
|
| |
PR: 210553
Submitted by: t@tobik.me
Notes:
svn path=/head/; revision=417463
|
| |
|
|
|
|
|
| |
Reported by: mat
Notes:
svn path=/head/; revision=417452
|
| |
|
|
|
|
|
| |
Submitted by: @mordin_ on Twitter.
Notes:
svn path=/head/; revision=417446
|
| |
|
|
|
|
|
| |
Reported by: Bryan Steele (@canadianbryan on Twitter)
Notes:
svn path=/head/; revision=417445
|
|
|
The doas program allows users to run commands as another user (usually
root). The doas program was written by the OpenBSD team to provide a
lightweight, simplified (and more secure) alternative to the sudo command.
Original upstream (OpenBSD) source:
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/doas/
FreeBSD version: https://github.com/slicer69/doas
NOTE: I added the two patch files to workaround issues mentioned in the PR
about hardcoding of /usr/local.
PR: 210473
Submitted by: jsmith@resonatingmedia.com
Modified by: jrm@ftfl.ca (see PR) and me (roberto)
Notes:
svn path=/head/; revision=417407
|
