From owner-freebsd-ports@FreeBSD.ORG Fri Jun 16 08:27:12 2006 Return-Path: X-Original-To: ports@FreeBSD.org Delivered-To: freebsd-ports@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9364816A47B; Fri, 16 Jun 2006 08:27:12 +0000 (UTC) (envelope-from tom@tomjudge.com) Received: from kenny.mintel.co.uk (kenny2.mintel.com [217.206.187.68]) by mx1.FreeBSD.org (Postfix) with ESMTP id A049443D46; Fri, 16 Jun 2006 08:27:10 +0000 (GMT) (envelope-from tom@tomjudge.com) Received: from [0.0.0.0] (buffy.mintel.co.uk [10.0.0.37]) by kenny.mintel.co.uk (8.12.8p1/8.12.8) with ESMTP id k5G8R6Om036244; Fri, 16 Jun 2006 09:27:08 +0100 (BST) (envelope-from tom@tomjudge.com) Message-ID: <44926B4E.9050601@tomjudge.com> Date: Fri, 16 Jun 2006 09:26:54 +0100 From: Tom Judge User-Agent: Thunderbird 1.5.0.4 (X11/20060615) MIME-Version: 1.0 To: Michael Haro References: <4489331B.8060907@tomjudge.com> <20060611072703.GB29363@bitsurf.net> In-Reply-To: <20060611072703.GB29363@bitsurf.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Scanned-By: MIMEDefang 2.28 (www . roaringpenguin . com / mimedefang) Cc: ports@FreeBSD.org Subject: Re: FreeBSD Port: sudo-1.6.8.12_1 X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Jun 2006 08:27:12 -0000 Hi Michael, I have contacted the sudo project and they have commited the changes to trunk (in cvs) but did not indicate when the next release would be. Is there any chance that you update the port to either use cvs trunk or include the patch in ports? Thanks Tom J Michael Haro wrote: > This seems like something that would be useful (as an option to configure) > to sudo in general and not specific to FreeBSD. Have you tried contacting > the sudo project? > > Michael > > On Fri, Jun 09, 2006 at 09:36:43AM +0100, Tom Judge wrote: > >> Hi, >> >> Sorry I forgot to attach the patch to the last email. >> >> I have created a small patch for sudo that allows it to do an LDAP sub >> tree search for the sudoers entries, which in turn allows you to >> categorize sudo rights within the LDAP tree. Would it be possible to >> get this added to the sudo port? >> >> Regards >> >> Tom J >> >> >> > > >> --- ldap.c.orig Fri Jun 9 09:14:24 2006 >> +++ ldap.c Fri Jun 9 09:17:55 2006 >> @@ -833,7 +833,7 @@ >> >> /* Parse Default Options */ >> >> - rc=ldap_search_s(ld,ldap_conf.base,LDAP_SCOPE_ONELEVEL, >> + rc=ldap_search_s(ld,ldap_conf.base,LDAP_SCOPE_SUBTREE, >> "cn=defaults",NULL,0,&result); >> if (!rc && (entry=ldap_first_entry(ld,result))){ >> if (ldap_conf.debug) printf("found:%s\n",ldap_get_dn(ld,entry)); >> @@ -871,7 +871,7 @@ >> filt=strdup("sudoUser=+*"); >> } >> if (ldap_conf.debug) printf("ldap search '%s'\n",filt); >> - rc=ldap_search_s(ld,ldap_conf.base,LDAP_SCOPE_ONELEVEL, >> + rc=ldap_search_s(ld,ldap_conf.base,LDAP_SCOPE_SUBTREE, >> filt,NULL,0,&result); >> if (rc) { >> if (ldap_conf.debug) printf("nothing found for '%s'\n",filt); >> > >