---
- branch: MAIN
  date: Thu Aug 18 12:45:05 UTC 2011
  files:
  - new: '1.131'
    old: '1.130'
    path: pkgsrc/security/sudo/Makefile
    pathrev: pkgsrc/security/sudo/Makefile@1.131
    type: modified
  - new: '1.73'
    old: '1.72'
    path: pkgsrc/security/sudo/distinfo
    pathrev: pkgsrc/security/sudo/distinfo@1.73
    type: modified
  id: 20110818T124505Z.1c18c3cde003c01f927e207546cb7c8a732a770c
  log: |
    Update sudo pacakge to 1.7.7.  It is maintenance release.

    What's new in Sudo 1.7.7

     * I/O logging is now supported for commands run in background mode
       (using sudo's -b flag).

     * Group ownership of the sudoers file is now only enforced when
       the file mode on sudoers allows group readability or writability.

     * Visudo now checks the contents of an alias and warns about cycles
       when the alias is expanded.

     * If the user specifes a group via sudo's -g option that matches
       the target user's group in the password database, it is now
       allowed even if no groups are present in the Runas_Spec.

     * "sudo -i command" now works correctly with the bash version
       2.0 and higher.  Previously, the .bash_profile would not be
       sourced prior to running the command unless bash was built with
       NON_INTERACTIVE_LOGIN_SHELLS defined.

     * Multi-factor authentication is now supported on AIX.

     * Added support for non-RFC 4517 compliant LDAP servers that require
       that seconds be present in a timestamp, such as Tivoli Directory Server.

     * If the group vector is to be preserved, the PATH search for the
       command is now done with the user's original group vector.

     * For LDAP-based sudoers, the "runas_default" sudoOption now works
       properly in a sudoRole that contains a sudoCommand.

     * Spaces in command line arguments for "sudo -s" and "sudo -i" are
        now escaped with a backslash when checking the sudoers file.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/security/sudo'
  unixtime: '1313671505'
  user: taca