1 sudo (1.7.2-1) unstable; urgency=low
3 * new upstream version, closes: #537103
4 * improve initial sudoers commented-out example, closes: #536220
6 -- Bdale Garbee <bdale@gag.com> Wed, 15 Jul 2009 00:52:27 -0600
8 sudo (1.7.0-1) unstable; urgency=low
10 * new upstream version, closes: #510179, #128268, #520274, #508514
11 * fix ldap config file path for sudo-ldap package, including creating
12 a symlink in postinst and cleaning it up in postrm for the sudo-ldap
13 package, closes: #430826
14 * fix NOPASSWD entry location in default config file for the sudo-ldap
15 instance too, closes: #479616
17 -- Bdale Garbee <bdale@gag.com> Sat, 28 Mar 2009 15:15:01 -0600
19 sudo (1.6.9p17-2) unstable; urgency=high
21 * patch from upstream to fix privilege escalation with certain
22 configurations, CVE-2009-0034
23 * typo in sudoers man page, closes: #507163
25 -- Bdale Garbee <bdale@gag.com> Tue, 27 Jan 2009 11:49:02 -0700
27 sudo (1.6.9p17-1) unstable; urgency=low
29 * new upstream version, closes: #481008
30 * deliver schemas to doc directory in sudo-ldap package, closes: #474331
31 * re-apply patch from Petter Reinholdtsen to improve init.d apparently lost
32 in move from CVS to git for package management, closes: #475821
33 * re-instate the init.d for the sudo-ldap package too... /o\
35 -- Bdale Garbee <bdale@gag.com> Sun, 06 Jul 2008 01:16:31 -0600
37 sudo (1.6.9p15-2) unstable; urgency=low
39 * revert the fix for 388659 such that visudo once again defaults to using
40 /usr/bin/editor. I was always ambivalent about this change, it has caused
41 more confusion and frustration than it cured, and I find Justin's line of
42 reasoning persuasive. Update the man page source to reflect this choice
43 and the related use of --with-env-editor. Closes: #474197.
44 * patch from Petter Reinholdtsen to improve init.d, closes: #475821
46 -- Bdale Garbee <bdale@gag.com> Wed, 16 Apr 2008 00:38:56 -0600
48 sudo (1.6.9p15-1) unstable; urgency=low
50 * new upstream version, closes: #467126, #473337
51 * remove pointless postrm scripts, leaving debhelper do its thing if needed,
52 thanks to Justin Pryzby for pointing this out
53 * reinstate the init.d, since bootclean doesn't quite do what we want. This
54 also means we don't need the preinst scripts any more. Update the lintian
55 overrides since postinst is a Perl script lintian apparently isn't parsing
58 -- Bdale Garbee <bdale@gag.com> Thu, 03 Apr 2008 14:25:56 -0600
60 sudo (1.6.9p12-1) unstable; urgency=low
62 * new upstream version, closes: #464890
64 -- Bdale Garbee <bdale@gag.com> Tue, 19 Feb 2008 11:19:54 +0900
66 sudo (1.6.9p11-3) unstable; urgency=low
68 * patch for configure to fix FTBFS on GNU/kFreeBSD, closes: #465956
70 -- Bdale Garbee <bdale@gag.com> Fri, 15 Feb 2008 10:54:21 -0700
72 sudo (1.6.9p11-2) unstable; urgency=low
74 * update version compared in preinst when removing obsolete init.d,
76 * implement pam session config suggestions from Elizabeth Fong,
77 closes: #452457, #402329
79 -- Bdale Garbee <bdale@gag.com> Mon, 04 Feb 2008 21:26:23 -0700
81 sudo (1.6.9p11-1) unstable; urgency=low
83 * new upstream version
85 -- Bdale Garbee <bdale@gag.com> Fri, 11 Jan 2008 01:54:35 -0700
87 sudo (1.6.9p10-1) unstable; urgency=low
89 * new upstream version
90 * tweak default password prompt as %u doesn't make sense. Accept patch from
91 Patrick Schoenfeld (recommend upstream accept it too) that adds a %p and
92 uses it by default, closes: #454409
93 * accept patch from Martin Pitt that adds a prerm making it difficult to
94 "accidentally" remove sudo when there is no root password set on the
95 system, closes: #451241
97 -- Bdale Garbee <bdale@gag.com> Fri, 28 Dec 2007 11:44:30 -0700
99 sudo (1.6.9p9-1) unstable; urgency=low
101 * new upstream version
102 * debian/rules: configure a more informative default password prompt to
103 reduce confusion when using sudo to invoke commands which also ask for
104 passwords, closes: #343268
105 * auth/pam.c: don't use the PAM prompt if the user explicitly requested
106 a custom prompt, closes: #448628.
107 * fix configure's ability to discover that libc has dirfd, closes: #451324
108 * make default editor be /usr/bin/vi instead of /usr/bin/editor, so that
109 the command 'visudo' invokes a vi variant by default as documented,
112 -- Bdale Garbee <bdale@gag.com> Mon, 03 Dec 2007 10:26:51 -0700
114 sudo (1.6.9p6-1) unstable; urgency=low
116 * new upstream version, closes: #442815, #446146, #438699, #435768, #435314
117 closes: #434832, #434608, #430382
118 * eliminate the now-redundant init.d scripts, closes: #397090
119 * fix typo in TROUBLESHOOTING file, closes: #439624
121 -- Bdale Garbee <bdale@gag.com> Wed, 24 Oct 2007 21:13:41 -0600
123 sudo (1.6.8p12-6) unstable; urgency=low
125 * fix typos in visudo.pod relating to env_editor variable, closes: #418886
126 * have init.d touch directories in /var/run/sudo, not just files, as a
128 * fix various typos in sudoers.pod, closes: #419749
129 * don't let Makefile strip binaries, closes: #438073
131 -- Bdale Garbee <bdale@gag.com> Wed, 05 Sep 2007 11:26:58 +0100
133 sudo (1.6.8p12-5) unstable; urgency=low
135 * update debian/copyright to reflect new upstream URL, closes: #368746
136 * add sandwich cartoon URL to the README.Debian
137 * don't remove sudoers on purge. can cause problems when moving between
138 sudo and sudo-ldap. leaving sudoers around on purge seems like the least
139 evil choice for now, closes: #401366
140 * also preserve XAPPLRESDIR, XFILESEARCHPATH, and XUSERFILESEARCHPATH,
142 * accept patch that improves debian/rules from Ted Percival, closes: #382122
143 * no longer build with --with-exempt=sudo, provide an example entry in the
144 default sudoers file instead, closes: #296605
145 * add --with-devel to configure and augment build dependencies so that flex
146 and yacc files get re-generated on every build, closes: #316249
148 -- Bdale Garbee <bdale@gag.com> Tue, 3 Apr 2007 21:48:45 -0600
150 sudo (1.6.8p12-4) unstable; urgency=low
152 * patch from Petter Reinholdtsen for the LSB info block in the init.d
153 script, closes: #361055
154 * deliver sudoers sample again, closes: #361593
156 -- Bdale Garbee <bdale@gag.com> Sat, 15 Apr 2006 01:38:04 -0600
158 sudo (1.6.8p12-3) unstable; urgency=low
160 * force-feed configure knowledge of nroff's path so we get unformatted man
161 pages installed without build-depending on groff-base, closes: #360894
162 * add a reference to OPTIONS in the man page, closes: #186226
164 -- Bdale Garbee <bdale@gag.com> Wed, 5 Apr 2006 17:53:13 -0700
166 sudo (1.6.8p12-2) unstable; urgency=low
168 * fix typos in init scripts, closes: #346325
169 * update to debhelper compat level 5
170 * build depend on autotools-dev to ensure config.sub/guess are fresh
171 * accept patch from Martin Schulze developed for 1.6.8p7-1.4 in stable, and
172 use it here as well. Thanks to Martin and the debian-security team.
173 closes: #349196, #349549, #349587, #349729, #349129, #350776, #349085
174 closes: #315115, #315718, #203874
175 * Non-maintainer upload by the Security Team
176 * Reworked the former patch to limit environment variables from being
177 passed through, set env_reset as default instead [sudo.c, env.c,
178 sudoers.pod, Bug#342948, CVE-2005-4158]
179 * env_reset is now set by default
180 * env_reset will preserve only HOME, LOGNAME, PATH, SHELL, TERM,
181 DISPLAY, XAUTHORITY, XAUTHORIZATION, LANG, LANGUAGE, LC_*, and USER
182 (in addition to the SUDO_* variables)
183 * Rebuild sudoers.man.in from the POD file
184 * Added README.Debian
185 * patch from Alexander Zangerl to fix duplicated PATH issue, closes: #354431
186 * simplify rules file by using more of Makefile, despite having to override
187 default directories with more arguments to configure, closes: #292833
188 * update sudo man page to reflect use of SECURE_PATH, closes: #228551
189 * inconsistencies in sudoers man page resolved, closes: #220808, #161012
190 * patch from Jeroen van Wolffelaar to improve behavior when FQDNs are
191 unresolveable (requires adding bison as build dep), closes: #314949
193 -- Bdale Garbee <bdale@gag.com> Sun, 2 Apr 2006 14:26:20 -0700
195 sudo (1.6.8p12-1) unstable; urgency=low
197 * new upstream version, closes: #342948 (CVE-2005-4158)
198 * add env_reset to the sudoers file we create if none already exists,
199 as a further precaution in response to discussion about CVS-2005-4158
200 * split ldap support into a new sudo-ldap package. I was trying to avoid
201 doing this, but the impact of going from 4 to 17 linked shlibs on the
202 autobuilder chroots is sufficient motivation for me.
205 -- Bdale Garbee <bdale@gag.com> Wed, 28 Dec 2005 13:49:10 -0700
207 sudo (1.6.8p9-4) unstable; urgency=low
209 * enable ldap support, deliver README.LDAP and sudoers2ldif, closes: #283231
210 * merge patch from Martin Pitt / Ubuntu to be more robust about resetting
211 timestamps in the init.d script, closes: #330868
212 * add dependency header to init.d script, closes: #332849
214 -- Bdale Garbee <bdale@gag.com> Sat, 10 Dec 2005 07:47:07 -0800
216 sudo (1.6.8p9-3) unstable; urgency=high
218 * update debhelper compatibility level from 2 to 4
219 * add man page symlink for sudoedit
220 * Clean SHELLOPTS and PS4 from the environment before executing programs
221 with sudo permissions [env.c, CAN-2005-2959]
222 * fix typo in manpage pointed out by Moray Allen, closes: #285995
223 * fix paths in sample complex sudoers file, closes: #303542
224 * fix type in sudoers man page, closes: #311244
226 -- Bdale Garbee <bdale@gag.com> Wed, 28 Sep 2005 01:18:04 -0600
228 sudo (1.6.8p9-2) unstable; urgency=high
230 * merge the NMU fix for sudoedit symlink problem that was in 1.6.8p7-1.1,
233 -- Bdale Garbee <bdale@gag.com> Tue, 28 Jun 2005 16:18:47 -0400
235 sudo (1.6.8p9-1) unstable; urgency=high
237 * new upstream version, fixes a race condition in sudo's pathname
238 validation, which is a security issue (CAN-2005-1993),
239 closes: #315115, #315718
241 -- Bdale Garbee <bdale@gag.com> Tue, 28 Jun 2005 15:33:11 -0400
243 sudo (1.6.8p7-1) unstable; urgency=low
245 * new upstream version, closes: #299585
246 * update lintian overrides to squelch the postinst warning
247 * change sudoedit from a hard to a soft link, closes: #296896
248 * fix regex doc in sudoers man page, closes: #300361
250 -- Bdale Garbee <bdale@gag.com> Sat, 26 Mar 2005 22:18:34 -0700
252 sudo (1.6.8p5-1) unstable; urgency=high
254 * new upstream version
255 * restores ability to use config tuples without a value, which was causing
256 problems on upgrade closes: #283306
257 * deliver sudoedit, closes: #283078
258 * marking urgency high since 283306 is a serious upgrade incompatibility
260 -- Bdale Garbee <bdale@gag.com> Fri, 3 Dec 2004 10:11:16 -0700
262 sudo (1.6.8p3-2) unstable; urgency=high
264 * update pam.d deliverable so ldap works again, closes: #282191
266 -- Bdale Garbee <bdale@gag.com> Mon, 22 Nov 2004 11:44:46 -0700
268 sudo (1.6.8p3-1) unstable; urgency=high
270 * new upstream version, fixes a flaw in sudo's environment sanitizing that
271 could allow a malicious user with permission to run a shell script that
272 utilized the bash shell to run arbitrary commands, closes: #281665
273 * patch the sample sudoers to have the proper path for kill on Debian
274 systems, closes: #263486
275 * patch the sudo manpage to reflect Debian's choice of exempt_group
276 default setting, closes: #236465
277 * patch the sudo manpage to reflect Debian's choice of no timeout on the
278 password prompt, closes: #271194
280 -- Bdale Garbee <bdale@gag.com> Tue, 16 Nov 2004 23:23:41 -0700
282 sudo (1.6.7p5-2) unstable; urgency=low
284 * Jeff Bailey reports that seteuid works on current sparc systems, so we
285 no longer need the "grosshack" stuff in the sudo rules file
286 * add a postrm that removes /etc/sudoers on purge. don't do this with the
287 normal conffile mechanism since it would generate noise on every upgrade,
290 -- Bdale Garbee <bdale@gag.com> Tue, 20 Jul 2004 12:29:48 -0400
292 sudo (1.6.7p5-1) unstable; urgency=low
294 * new upstream version, closes: #190265, #193222, #197244
295 * change from '.' to ':' in postinst chown call, closes: #208369
297 -- Bdale Garbee <bdale@gag.com> Tue, 2 Sep 2003 21:27:06 -0600
299 sudo (1.6.7p3-2) unstable; urgency=low
301 * add --disable-setresuid to configure call since 2.2 kernels don't support
302 setresgid, closes: #189044
303 * cosmetic cleanups to debian/rules as long as I'm there
305 -- Bdale Garbee <bdale@gag.com> Tue, 15 Apr 2003 16:04:48 -0600
307 sudo (1.6.7p3-1) unstable; urgency=low
309 * new upstream version
310 * add overrides to quiet lintian about things it doesn't understand,
311 except the source one that can't be overridden until 129510 is fixed
313 -- Bdale Garbee <bdale@gag.com> Mon, 7 Apr 2003 17:34:05 -0600
315 sudo (1.6.6-3) unstable; urgency=low
317 * add code to rules file to update config.sub/guess, closes: #164501
319 -- Bdale Garbee <bdale@gag.com> Sat, 12 Oct 2002 15:35:22 -0600
321 sudo (1.6.6-2) unstable; urgency=low
323 * adopt suggestion from Marcus Brinkmann to feed --with-sendmail option to
324 configure, and lose the build dependency on mail-transport-agent
325 * incorporate changes from LaMont's NMU, closes: #144665, #144737
326 * update init.d to not try and set time on nonexistent timestamp files,
328 * build with --with-all-insults, admin must edit sudoers to turn insults
329 on at runtime if desired, closes: #135374
330 * stop setting /usr/doc symlink in postinst
332 -- Bdale Garbee <bdale@gag.com> Sat, 12 Oct 2002 01:54:24 -0600
334 sudo (1.6.6-1.1) unstable; urgency=high
336 * NMU - patch from Colin Watson <cjwatson@debian.org>, in bts.
337 * Revert patch to auth/pam.c that left pass uninitialized, causing a
338 segfault (Closes: #144665).
340 -- LaMont Jones <lamont@debian.org> Fri, 26 Apr 2002 22:36:04 -0600
342 sudo (1.6.6-1) unstable; urgency=high
344 * new upstream version, fixes security problem with crafty prompts,
347 -- Bdale Garbee <bdale@gag.com> Thu, 25 Apr 2002 12:45:49 -0600
349 sudo (1.6.5p1-4) unstable; urgency=high
351 * apply patch for auth/pam.c to fix yet another way to make sudo segfault
352 if ctrl/C'ed at password prompt, closes: #131235
354 -- Bdale Garbee <bdale@gag.com> Sun, 3 Mar 2002 23:18:56 -0700
356 sudo (1.6.5p1-3) unstable; urgency=high
358 * ugly hack to add --disable-saved-ids when building on sparc in response
359 to 131592, which will be reassigned to glibc for a real fix
360 * urgency high since the sudo currently in testing for sparc is worthless
362 -- Bdale Garbee <bdale@gag.com> Sun, 17 Feb 2002 22:42:10 -0700
364 sudo (1.6.5p1-2) unstable; urgency=high
366 * patch from upstream to fix seg faults caused by versions of pam that
367 follow a NULL pointer, closes: #129512
369 -- Bdale Garbee <bdale@gag.com> Tue, 22 Jan 2002 01:50:13 -0700
371 sudo (1.6.5p1-1) unstable; urgency=high
373 * new upstream version
374 * add --disable-root-mailer option supported by new version to configure
375 call in rules file, closes: #129648
377 -- Bdale Garbee <bdale@gag.com> Fri, 18 Jan 2002 11:29:37 -0700
379 sudo (1.6.4p1-1) unstable; urgency=high
381 * new upstream version, with fix for segfaulting problem in 1.6.4
383 -- Bdale Garbee <bdale@gag.com> Mon, 14 Jan 2002 20:09:46 -0700
385 sudo (1.6.4-1) unstable; urgency=high
387 * new upstream version, includes an important security fix, closes: #127576
389 -- Bdale Garbee <bdale@gag.com> Mon, 14 Jan 2002 09:35:48 -0700
391 sudo (1.6.3p7-5) unstable; urgency=low
393 * only touch /var/run/sudo/* if /var/run/sudo is there, closes: #126872
394 * fix spelling error in init.d, closes: #126847
396 -- Bdale Garbee <bdale@gag.com> Sat, 29 Dec 2001 11:21:43 -0700
398 sudo (1.6.3p7-4) unstable; urgency=medium
400 * use touch to set status files to an ancient date instead of removing them
401 outright on reboot. this achieves the desired effect of keeping elevated
402 privs from living across reboots, without forcing everyone to see the
403 new-sudo-user lecture after every reboot. pick a time that's 'old enough'
404 for systems with good clocks, and 'recent enough' that broken PC hardware
405 setting the clock to commonly-seen bogus dates trips over the "don't trust
406 future timestamps" rule. closes: #76529, #123559
407 * apply patch from Steve Langasek to fix seg faults due to interaction with
408 PAM code. upstream confirms the problem, and says they're fixing this
409 differently for their next release... but this should be useful in the
410 meantime, and would be good to get into woody. closes: #119147
411 * only run the init.d at boot, not on each runlevel change... and don't run
412 it during package configure. closes: #125935
413 * add DEB_BUILD_OPTIONS support to rules file, closes: #94952
415 -- Bdale Garbee <bdale@gag.com> Wed, 26 Dec 2001 12:40:44 -0700
417 sudo (1.6.3p7-3) unstable; urgency=low
419 * apply patch from Fumitoshi UKAI that fixes segfaults when hostname not
420 resolvable, closes: #86062, #69430, #77852, #82744, #55716, #56718,
421 * fix a typo in the manpage, closes: #97368
422 * apply patch to configure.in and run autoconf to fix problem building on
423 the hurd, closes: #96325
424 * add an init.d to clean out /var/run/sudo at boot, so privs are guaranteed
425 to not last across reboots, closes: #76529
426 * clean up lintian-noticed cosmetic packaging issues
428 -- Bdale Garbee <bdale@gag.com> Sat, 1 Dec 2001 02:59:52 -0700
430 sudo (1.6.3p7-2) unstable; urgency=low
432 * update config.sub/guess for hppa support
434 -- Bdale Garbee <bdale@gag.com> Sun, 22 Apr 2001 23:23:42 -0600
436 sudo (1.6.3p7-1) unstable; urgency=low
438 * new upstream version
439 * add build dependency on mail-transport-agent, closes: #90685
441 -- Bdale Garbee <bdale@gag.com> Thu, 12 Apr 2001 17:02:42 -0600
443 sudo (1.6.3p6-1) unstable; urgency=high
445 * new upstream version, fixes buffer overflow problem,
446 closes: #87259, #87278, #87263
447 * revert to using --with-secure-path option at build time, since the option
448 available in sudoers is parsed too late to be useful, and upstream says
449 it won't get fixed quickly. This reopens 85123, which I will mark as
450 forwarded. Closes: #86199, #86117, #85676
452 -- Bdale Garbee <bdale@gag.com> Mon, 26 Feb 2001 11:02:51 -0700
454 sudo (1.6.3p5-2) unstable; urgency=low
456 * lose the dh_suidregister call since it's obsolete
457 * stop using the --with-secure-path option at build time, and instead show
458 how to set it in sudoers. Closes: #85123
459 * freshen config.sub and config.guess for ia64 and hppa
460 * update sudoers man page to indicate exempt_group is on by default,
463 -- Bdale Garbee <bdale@gag.com> Sat, 10 Feb 2001 02:05:17 -0700
465 sudo (1.6.3p5-1) unstable; urgency=low
467 * new upstream version, closes: #63940, #59175, #61817, #64652, #65743
468 * this version restores core dumps before the exec, while leaving them
469 disabled during sudo's internal execution, closes: #58289
470 * update debhelper calls in rules file
472 -- Bdale Garbee <bdale@gag.com> Wed, 16 Aug 2000 00:13:15 -0600
474 sudo (1.6.2p2-1) frozen unstable; urgency=medium
476 * new upstream source resulting from direct collaboration with the upstream
477 author to fix ugly pam-related problems on Debian in 1.6.1 and later.
478 Closes: #56129, #55978, #55979, #56550, #56772
479 * include more upstream documentation, closes: #55054
480 * pam.d fragment update, closes: #56129
482 -- Bdale Garbee <bdale@gag.com> Sun, 27 Feb 2000 11:48:48 -0700
484 sudo (1.6.1-1) unstable; urgency=low
486 * new upstream source, closes: #52750
488 -- Bdale Garbee <bdale@gag.com> Fri, 7 Jan 2000 21:01:42 -0700
490 sudo (1.6-2) unstable; urgency=low
492 * drop suidregister support for this package. The sudo executable is
493 essentially worthless unless it is setuid root, and making suidregister
494 work involves shipping a non-setuid executable in the .deb and setting the
495 perms in the postinst. On a long upgrade run, this can leave the sudo
496 executable 'broken' for a long time, which is unacceptable. With this
497 version, we ship the executable setuid root in the .deb. Closes: #51742
499 -- Bdale Garbee <bdale@gag.com> Wed, 1 Dec 1999 19:59:44 -0700
501 sudo (1.6-1) unstable; urgency=low
503 * new upstream version, many options previously set at compile-time are now
504 configurable at runtime.
505 Closes: #39255, #20996, #29812, #50705, #49148, #48435, #47190, #45639
508 -- Bdale Garbee <bdale@gag.com> Tue, 23 Nov 1999 16:51:22 -0700
510 sudo (1.5.9p4-1) unstable; urgency=low
512 * new upstream version, closes: #43464
513 * empty password handling was fixed in 1.5.8, closes: #31863
515 -- Bdale Garbee <bdale@gag.com> Thu, 26 Aug 1999 00:00:57 -0600
517 sudo (1.5.9p1-1) unstable; urgency=low
519 * new upstream version
521 -- Bdale Garbee <bdale@gag.com> Thu, 15 Apr 1999 22:43:29 -0600
523 sudo (1.5.8p1-1) unstable; urgency=medium
525 * new upstream version, closes 33690
526 * add dependency on libpam-modules, closes 34215, 33432
528 -- Bdale Garbee <bdale@gag.com> Mon, 8 Mar 1999 10:27:42 -0700
530 sudo (1.5.7p4-2) unstable; urgency=medium
532 * update the pam fragment provided so that sudo works with latest pam bits,
535 -- Bdale Garbee <bdale@gag.com> Sun, 21 Feb 1999 00:22:44 -0700
537 sudo (1.5.7p4-1) unstable; urgency=low
539 * new upstream release
541 -- Bdale Garbee <bdale@gag.com> Sun, 27 Dec 1998 16:13:53 -0700
543 sudo (1.5.6p5-1) unstable; urgency=low
545 * new upstream patch release
546 * add PAM support, closes 28594
548 -- Bdale Garbee <bdale@gag.com> Mon, 2 Nov 1998 00:00:24 -0700
550 sudo (1.5.6p2-2) unstable; urgency=low
552 * update copyright file, closes 24136
553 * review and close forwarded bugs believed fixed in this upstream version,
556 -- Bdale Garbee <bdale@gag.com> Mon, 5 Oct 1998 22:30:43 -0600
558 sudo (1.5.6p2-1) unstable; urgency=low
560 * new upstream release
562 -- Bdale Garbee <bdale@gag.com> Mon, 5 Oct 1998 22:30:43 -0600
564 sudo (1.5.4-4) frozen unstable; urgency=low
566 * update postinst to use groupadd, closes 21403
567 * move the suidregister stuff earlier in postinst to ensure it always runs
569 -- Bdale Garbee <bdale@gag.com> Sun, 19 Apr 1998 22:07:45 -0600
571 sudo (1.5.4-3) frozen unstable; urgency=low
573 * change /etc/sudoers from a conffile to being handled in postinst,
575 * add suidmanager support, closes 15711
576 * add '-Wno-comment' to quiet warnings from gcc upstream maintainer is
577 unlikely to ever fix, and which just don't matter. closes 17146
578 * fix FSF address in copyright file, and submit exception for lintian
579 warning about sudo being setuid root
581 -- Bdale Garbee <bdale@gag.com> Thu, 9 Apr 1998 23:59:11 -0600
583 sudo (1.5.4-2) unstable; urgency=high
585 * patch from upstream author correcting/improving security fix
587 -- Bdale Garbee <bdale@gag.com> Tue, 13 Jan 1998 10:39:35 -0700
589 sudo (1.5.4-1) unstable; urgency=high
591 * new upstream version, includes a security fix
592 * change default editor from /bin/ae to /usr/bin/editor
594 -- Bdale Garbee <bdale@gag.com> Mon, 12 Jan 1998 23:36:41 -0700
596 sudo (1.5.3-1) unstable; urgency=medium
598 * new upstream version, closes bug 15911.
599 * rules file reworked to use debhelper
600 * implement a really gross hack to force use of the sudo-provided
601 lsearch(), since the one in libc6 is broken! This closes bugs
602 12552, 12557, 14881, 15259, 15916.
604 -- Bdale Garbee <bdale@gag.com> Sat, 3 Jan 1998 20:39:23 -0700
606 sudo (1.5.2-6) unstable; urgency=LOW
608 * don't install INSTALL in the doc directory, closes bug 13195.
610 -- Bdale Garbee <bdale@gag.com> Sun, 21 Sep 1997 17:10:40 -0600
612 sudo (1.5.2-5) unstable; urgency=LOW
616 -- Bdale Garbee <bdale@gag.com> Fri, 5 Sep 1997 00:06:22 -0600
618 sudo (1.5.2-4) unstable; urgency=LOW
620 * change TIMEOUT (how long before you have to type your password again)
621 to 15 mins, disable PASSWORD_TIMEOUT. This makes building large Debian
622 packages on slower machines much more tolerable. Closes bug 9076.
623 * touch debian/suid before debstd. Closes bug 8709.
625 -- Bdale Garbee <bdale@gag.com> Sat, 26 Apr 1997 00:48:01 -0600
627 sudo (1.5.2-3) frozen unstable; urgency=LOW
629 * patch from upstream maintainer to close Bug 6828
630 * add a debian/suid file to get debstd to leave my perl postinst alone
632 -- Bdale Garbee <bdale@gag.com> Fri, 11 Apr 1997 23:09:55 -0600
634 sudo (1.5.2-2) frozen unstable; urgency=LOW
636 * change rules to use -O2 -Wall as per standards
638 -- Bdale Garbee <bdale@gag.com> Sun, 6 Apr 1997 12:48:53 -0600
640 sudo (1.5.2-1) unstable; urgency=LOW
642 * new upstream version
643 * cosmetic changes to debian package control files
645 -- Bdale Garbee <bdale@gag.com> Wed, 30 Oct 1996 09:50:00 -0700
647 sudo (1.5-2) unstable; urgency=LOW
649 * add /usr/X11R6/bin to the end of the secure path... this makes it
650 much easier to run xmkmf, etc., during package builds. To the extent
651 that /usr/local/sbin and /usr/local/bin were already included, I see
652 no security reasons not to add this.
654 -- Bdale Garbee <bdale@gag.com> Wed, 30 Oct 1996 09:44:58 -0700
656 sudo (1.5-1) unstable; urgency=LOW
658 * New upstream version
660 * New packaging format
662 -- Bdale Garbee <bdale@gag.com> Thu, 29 Aug 1996 11:44:22 +0200
664 Tue Mar 5 09:36:41 MET 1996 Michael Meskes <meskes@informatik.rwth-aachen.de>
668 * hard code SECURE_PATH to:
669 "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
673 * enabled EXEMPTGROUP "sudo"
675 * moved timestamp dir to /var/log/sudo
677 * changed parser to check for long and short filenames (Bug#1162)
679 Wed Apr 17 13:03:31 MET DST 1996 Michael Meskes <meskes@informatik.rwth-aachen.de>
683 * New upstream source
685 * Fixed postinst script
686 (thanks to Peter Tobis <tobias@et-inf.fho-emden.de>)
688 * Removed special shadow binary. This version works with and without
689 shadow password file.
691 Mon May 20 09:35:22 MET DST 1996 Michael Meskes <meskes@debian.org>
695 * Corrected editor path to /bin/ae (Bug#3062)
697 * Set file permission to 4755 for sudo and 755 for visudo (Bug#3063)
699 Mon Jun 17 12:06:41 MET DST 1996 Michael Meskes <meskes@debian.org>
703 * New upstream version
705 * Changed sudoers permission to 440 (owner root, group root) to make
708 Wed Jun 19 10:56:54 MET DST 1996 Michael Meskes <meskes@debian.org>
712 * Applied upstream patch 1
714 Thu Jun 20 09:02:57 MET DST 1996 Michael Meskes <meskes@debian.org>
718 * Applied upstream patch 2
720 Fri Jun 28 12:49:40 MET DST 1996 Michael Meskes <meskes@debian.org>
724 * Applied upstream patch 3 (fixes problems with an NFS-mounted
728 Sun Jun 30 13:02:44 MET DST 1996 Michael Meskes <meskes@debian.org>
732 * Corrected postinst to use /usr/bin/perl instead of /bin/perl
733 [Reported by jdassen@wi.leidenuniv.nl (J.H.M.Dassen)]
735 Wed Jul 10 12:44:33 MET DST 1996 Michael Meskes <meskes@debian.org>
739 * Applied upstream patch 4 (fixes several bugs)
741 * Changed priority to optional
743 Thu Jul 11 19:23:52 MET DST 1996 Michael Meskes <meskes@debian.org>
747 * Corrected postinst to create correct permission for /etc/sudoers
750 Fri Aug 2 10:50:53 MET DST 1996 Michael Meskes <meskes@debian.org>
754 * New upstream version
757 sudo (1.4.4-2) admin; urgency=HIGH
759 * Fixed major security bug reported by Peter Tobias
760 <tobias@et-inf.fho-emden.de>
761 * Added dchanges support to debian.rules
763 sudo (1.4.5-1) admin; urgency=LOW
765 * New upstream version
766 * Minor changes to debian.rules