| Age | Commit message (Expand) | Author | Files | Lines |
|---|
| 2020-10-11 | Don't skip file systems just because the parent fs is nodev and nosuid. |   millert | 1 | -8/+13 |
| 2020-09-17 | afs, nnpfs, and procfs are no longer supported, |   schwarze | 1 | -3/+3 |
| 2020-09-14 | Do not bother scanning file systems that are both nodev and nosuid | schwarze | 1 | -3/+4 |
| 2016-12-27 | Remove user uucp and group news from base. |   jca | 1 | -3/+2 |
| 2016-10-22 | When checking ownership and modes of files in /var/mail/, | schwarze | 1 | -1/+2 |
| 2015-07-21 | When reading untrusted user files, don't risk blocking, such that | schwarze | 1 | -3/+6 |
| 2015-04-21 | When diff(1) finds differences, it returns an exit status of 1. | schwarze | 1 | -2/+6 |
| 2015-03-27 | In mount(8) output, do not misparse lines where fs_spec ends with the | schwarze | 1 | -2/+2 |
| 2015-03-27 | If /etc/passwd contains incomplete lines ending before the | schwarze | 1 | -3/+12 |
| 2014-12-04 | AnonCVS is designed to work with a user account that has no password and a | schwarze | 1 | -2/+3 |
| 2014-07-14 | The file /etc/exports is now optional and not installed by default, | schwarze | 1 | -1/+2 |
| 2014-06-26 | Do not redirect STDERR of the main security(8) script to /dev/null, | schwarze | 1 | -7/+3 |
| 2014-06-24 | The Perl close() function, when called on pipe file descriptors, | schwarze | 1 | -9/+17 |
| 2014-06-24 | Do not try to pass potentially non-existent array elements into | schwarze | 1 | -8/+10 |
| 2014-04-29 | tedu ~/.klogin |   dcoppa | 1 | -3/+3 |
| 2014-04-21 | check perms on .ssh/id_ed25519; Fritjof Bornebusch |   sthen | 1 | -2/+2 |
| 2014-04-20 | check_hosts_equiv -> check_hosts_lpd |   ajacoutot | 1 | -15/+11 |
| 2014-03-23 | don't check ftpusers in security(8), from gsoares@, ok afresh1@ schwarze@ | sthen | 1 | -16/+1 |
| 2013-03-21 | Correct the last change to untaint $fmt; it caused the final parameter of | sthen | 1 | -3/+3 |
| 2013-03-19 | Untaint a variable used in an sprintf format string by using a regex and back- | sthen | 1 | -2/+2 |
| 2013-03-18 | create an empty %skip even if SUIDSKIP is not set, newer perl complains. | sthen | 1 | -2/+4 |
| 2013-03-18 | Enclose qw()...) literals in parentheses where required; this was historically | sthen | 1 | -8/+8 |
| 2012-07-08 | To detect changes of system files, use SHA-256 rather than MD5, | schwarze | 1 | -24/+25 |
| 2012-05-17 | Also check permissions of .ssh/id_ecdsa. |   pascal | 1 | -2/+3 |
| 2011-07-20 | During mailbox and special file checks, skip all files that can't | schwarze | 1 | -7/+10 |
| 2011-07-20 | In lists of setuid/setgid files and devices, do not pad the last column | schwarze | 1 | -1/+2 |
| 2011-06-20 | Restore changelist(5) wildcard support that we inadvertently killed | schwarze | 1 | -9/+26 |
| 2011-05-25 | Fix two bugs where race conditions might cause stat(2) to fail, | schwarze | 1 | -7/+9 |
| 2011-05-10 | Do not complain about an /etc/group line "+\n" as "wrong number of fields", | schwarze | 1 | -2/+9 |
| 2011-04-23 | When a device or setuid file is owned by a nonexistent user or group, | schwarze | 1 | -8/+8 |
| 2011-04-23 | Very nice bugfix from Andrew Fresh, who writes: | schwarze | 1 | -11/+10 |
| 2011-04-17 | remove a bogus blank line; from Andrew Fresh | schwarze | 1 | -2/+2 |
| 2011-04-17 | Keep the exact format of the message: | schwarze | 1 | -4/+5 |
| 2011-04-10 | Reviewing my version of the code, Andrew Fresh found an elegant way to | schwarze | 1 | -4/+9 |
| 2011-04-09 | implement one last check that Andrew overlooked | schwarze | 1 | -8/+26 |
| 2011-04-09 | implementation of the remaining checks; | schwarze | 1 | -22/+432 |
| 2011-03-30 | style cleanup: | schwarze | 1 | -14/+14 |
| 2011-03-26 | umask and path checks; | schwarze | 1 | -1/+126 |
| 2011-03-25 | home directory checks; | schwarze | 1 | -1/+89 |
| 2011-03-24 | fix "german" typo; from <markus dot lude at gmx dot de> | schwarze | 1 | -2/+2 |
| 2011-03-23 | Work in progress to replace /etc/security, not yet linked to the build. | schwarze | 2 | -0/+262 |
