| Age | Commit message (Expand) | Author | Files | Lines |
|---|
| 2021-01-27 | Promote nrules/maxrules to size_t and make sure they can't overflow. |   millert | 3 | -13/+14 |
| 2021-01-21 | Revert r1.87 "Pledge before authentication when possible" |   kn | 1 | -9/+5 |
| 2021-01-20 | Pledge before authentication when possible | kn | 1 | -5/+9 |
| 2021-01-16 | s/authorization/authentication/g |   martijn | 2 | -7/+7 |
| 2021-01-15 | Be more explicit by stating that the -n flag is linked to the nopass option | martijn | 1 | -5/+5 |
| 2021-01-13 | Pledge the "-C" code path | kn | 1 | -1/+5 |
| 2020-10-09 | fix SEE ALSO; |   jmc | 1 | -2/+2 |
| 2020-10-09 | Add nolog option to avoid syslog(3) | kn | 4 | -8/+20 |
| 2020-10-09 | Improve error message on missing permission | kn | 1 | -2/+2 |
| 2020-05-16 | list example files in FILES with a short description: generally, "Example | jmc | 1 | -4/+4 |
| 2020-02-10 | briefly mention /etc/examples/ in the FILES section of all the |   schwarze | 1 | -4/+7 |
| 2019-10-18 | add some checks to avoid UID_MAX (-1) here. this is not problematic with |   tedu | 1 | -3/+7 |
| 2019-09-14 | correct some unveil(2) violations due to "login.conf.db" access (the .db version |   semarie | 1 | -2/+3 |
| 2019-07-07 | fix one last edge case regarding PATH, allows simpler config. | tedu | 2 | -5/+8 |
| 2019-07-04 | note that authentication is required, unless otherwise configured. | tedu | 1 | -2/+5 |
| 2019-07-03 | snprintf/vsnprintf return < 0 on error, rather than -1. |   deraadt | 1 | -2/+2 |
| 2019-06-29 | fix some more fallout from setting path in setusercontext. restore | tedu | 1 | -2/+5 |
| 2019-06-24 | add an example hint that shows how original path can be retained | tedu | 1 | -4/+5 |
| 2019-06-21 | tweak wording a bit. always talk about creating a new environment. | tedu | 2 | -20/+13 |
| 2019-06-19 | more precisely describe what happens to the environment without keepenv; | schwarze | 1 | -6/+6 |
| 2019-06-19 | mention that doas(1) resets the umask(2); | schwarze | 1 | -2/+4 |
| 2019-06-17 | setusercontext resets PATH (which we want). but then it becomes | tedu | 3 | -5/+19 |
| 2019-06-17 | mention environment resetting here as well. ok millert | tedu | 1 | -2/+19 |
| 2019-06-17 | always reset the "su" variables, which is more consistent and predictable. | tedu | 2 | -16/+22 |
| 2019-06-16 | redo the environment inheritance to not inherit. it was intended to make | tedu | 4 | -27/+51 |
| 2019-06-12 | a few cleanups and simplifications possible now that static pw is gone. | tedu | 1 | -12/+11 |
| 2019-06-10 | use getpwuid_r to avoid problems with hidden static storage. | tedu | 1 | -12/+14 |
| 2019-01-17 | clear the password even after a mismatch | tedu | 1 | -1/+2 |
| 2018-08-08 | After authentication is complete, unveil login.conf "r" (to discover | deraadt | 1 | -5/+49 |
| 2018-07-11 | Do for most running out of memory err() what was done for most running |   krw | 1 | -2/+2 |
| 2018-02-07 | lowercase doas ee cummings style | tedu | 1 | -2/+2 |
| 2018-02-07 | not necessarily the same name, but the indicated name | tedu | 1 | -3/+3 |
| 2017-07-13 | man pages with pseudo synopses which list filenames end up creating | jmc | 1 | -4/+7 |
| 2017-07-03 | no need to generate y.tab.h if nothing uses it, set YFLAGS to nothing |   espie | 1 | -1/+2 |
| 2017-05-27 | for password failure, print Authorization failed instead of EPERM. | tedu | 1 | -2/+2 |
| 2017-04-06 | a little const here and there to prevent rules from changing | tedu | 1 | -4/+4 |
| 2017-04-06 | prepenv can take a const rule | tedu | 2 | -5/+5 |
| 2017-03-20 | simplify example. list of ports variables was non-exahustive, which means | tedu | 1 | -12/+6 |
| 2017-03-09 | exit test for -L was reversed. spotted by Michael Forney | tedu | 1 | -2/+2 |
| 2017-01-14 | add a geteuid check to make sure we're root before plowing into setauth. | tedu | 1 | -1/+4 |
| 2017-01-02 | envlist and arglist are both string lists; simplify | tedu | 1 | -26/+15 |
| 2016-12-29 | it has been six months and two days... remove keepenv { obsolete } syntax | tedu | 1 | -9/+1 |
| 2016-12-05 | Be more explicit about the "args" syntax. | schwarze | 1 | -4/+4 |
| 2016-11-10 | missing semicolon at end of rule. yacc doesn't seem to mind, though. | tedu | 1 | -2/+2 |
| 2016-10-05 | Add back the call to yyparse() that was accidentally dropped in the |   tb | 1 | -1/+2 |
| 2016-10-05 | move yyparse decl next to yyfp | tedu | 2 | -5/+3 |
| 2016-10-05 | as a result of the env rework, arraylen() is only used in parse.y. | tedu | 3 | -17/+15 |
| 2016-09-15 | use static in the right places to seperate modules better | deraadt | 4 | -13/+31 |
| 2016-09-04 | -L means no command | tedu | 1 | -3/+4 |
| 2016-09-04 | don't allow combining nopass and persist in a single rule | tedu | 1 | -1/+5 |
