remctl 3.9 released
Russ Allbery
eagle at eyrie.org
Thu Jul 3 00:18:13 EDT 2014
I'm pleased to announce release 3.9 of remctl.
remctl is a client/server application that supports remote execution of
specific commands, using Kerberos GSS-API for authentication.
Authorization is controlled by a configuration file and ACL files and can
be set separately for each command, unlike with rsh. remctl is like a
Kerberos-authenticated simple CGI server, or a combination of Kerberos rsh
and sudo without most of the features and complexity of either.
Changes from previous release:
Add a new server ACL type, localgroup, which converts the principal to
a local username with krb5_aname_to_localname and then checks whether
it is a member of a given local group. Based on work by Remi Ferrand.
Use calloc in preference to calculating a malloc size with
multiplication everywhere, and reallocarray in preference to
calculating a realloc size. In most places this caution was probably
not necessary, but uniformity is easier to audit and no one will ever
notice the speed difference between malloc and calloc. Add explicit
overflow checks before every remaining malloc call with a calculated
size.
Fix incorrect handling of interruptions of network writes by signals
in the server. Previous versions of remctld did not correctly handle
EINTR returns from select, read, and write and might abort the
connection instead of retrying the system call.
Reset the SIGPIPE signal handler before running a command. The server
sets SIGPIPE to SIG_IGN, which unlike all other signal handlers is
inherited across an exec. Reset the handler to SIG_DFL so that
commands get default SIGPIPE handling.
Add version and compatibility information to all manual pages.
Command-line and configuration options, ACL methods, environment
variables, client library APIs, and other major features are now
annotated with the version of remctl in which they were added.
Update to rra-c-util 5.5:
* Use Lancaster Consensus environment variables to control tests.
* Work around perltidy bug that leaves behind stray log files.
* Use calloc or reallocarray for protection against integer overflows.
* Suppress warnings from Kerberos headers in non-system paths.
Update to C TAP Harness 3.1:
* Add breallocarray API for error-checked reallocarray in tests.
* Check for integer overflow on memory allocations.
You can download it from:
<http://www.eyrie.org/~eagle/software/remctl/>
This package is maintained using Git; see the instructions on the above
page to access the Git repository.
Debian packages have been uploaded to Debian unstable.
Please let me know of any problems or feature requests not already listed
in the TODO file.
--
Russ Allbery (eagle at eyrie.org) <http://www.eyrie.org/~eagle/>
More information about the Kerberos
mailing list