Commit Graph

209 Commits

Author SHA1 Message Date
Tomáš Mráz
4b9fc2208b - add password-auth, fingerprint-auth, and smartcard-auth for applications
which can use them namely gdm (#494874) patch by Ray Strode
2009-04-10 16:06:24 +00:00
Tomáš Mráz
02fa35ccd2 - bump release 2009-03-26 11:26:22 +00:00
Tomáš Mráz
f3a8a94868 - replace also other std descriptors (#491471) 2009-03-26 11:17:16 +00:00
Tomáš Mráz
837a5499fa - replace also other std descriptors (#491471) 2009-03-26 09:28:14 +00:00
Tomáš Mráz
1343a8ed17 - we must replace the stdin when execing the helper (#490644) 2009-03-17 14:13:16 +00:00
Tomáš Mráz
a78e55c069 - do not close stdout/err when execing the helpers (#488147) 2009-03-16 13:47:00 +00:00
Tomáš Mráz
2c482b26a1 - the buildrequires on glibc will make it install a conflicting version 2009-03-09 20:58:38 +00:00
Tomáš Mráz
86ab0d0478 - upgrade to new upstream release 2009-03-09 20:46:07 +00:00
Tomáš Mráz
5774cd5ca3 - upgrade to new upstream release 2009-03-09 20:33:11 +00:00
Tomáš Mráz
3ecbdb09e8 - upgrade to new upstream release 2009-03-09 16:14:30 +00:00
Tomáš Mráz
5b6ef5fcbd - fix parsing of config files containing non-ASCII characters
- fix CVE-2009-0579 (mininimum days for password change ignored) (#487216)
- pam_access: improve handling of hostname resolution
2009-02-27 12:52:52 +00:00
Jesse Keating
32a45d5cc0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild 2009-02-26 09:28:43 +00:00
Tomáš Mráz
64be9b675a - add helper to pam_mkhomedir for proper SELinux confinement (#476784) 2009-01-19 09:18:56 +00:00
Tomáš Mráz
d4ff57cf6f - upgrade to new upstream release
- add --disable-prelude (#466242)
2008-12-16 15:17:16 +00:00
Tomáš Mráz
e30408c5d9 - new password quality checks in pam_cracklib
- report failed logins from btmp in pam_lastlog
- allow larger groups in modutil functions
- fix leaked file descriptor in pam_tally
2008-09-23 14:06:48 +00:00
Tomáš Mráz
8955a466b5 - pam_loginuid: uids are unsigned (#460241)
- new minor upstream release
- use external db4
- drop tests for not pulling in libpthread (as NPTL should be safe)
2008-09-08 11:01:44 +00:00
Tomáš Mráz
7d29dd0246 - update internal db4 2008-07-09 12:27:35 +00:00
Tomáš Mráz
a37d2c7046 - pam_namespace: allow safe creation of directories owned by user (#437116)
- pam_unix: fix multiple error prompts on password change (#443872)
2008-05-21 08:08:39 +00:00
Tomáš Mráz
3be955e71c - fix build with new autoconf 2008-05-20 13:31:17 +00:00
Tomáš Mráz
afb096a17d - pam_selinux: add env_params option which will be used by OpenSSH 2008-05-19 16:55:13 +00:00
Tomáš Mráz
be4deb2d92 - pam_selinux: restore execcon properly (#443667) 2008-04-22 19:48:10 +00:00
Tomáš Mráz
4acfdf0540 - upgrade to new upstream release (one bugfix only)
- fix pam_sepermit use in screensavers
2008-04-18 13:11:14 +00:00
Tomáš Mráz
65a47ccbca - upgrade to new upstream release (one bugfix only)
- fix pam_sepermit use in screensavers
2008-04-18 08:43:42 +00:00
Tomáš Mráz
2613b27a52 - fix regression in pam_set_item 2008-04-07 09:45:21 +00:00
Tomáš Mráz
1fa0a9e893 - upgrade to new upstream release (bugfix only) 2008-04-04 16:00:50 +00:00
Tomáš Mráz
6aa700f64a - pam_namespace: fix problem with level polyinst (#438264)
- pam_namespace: improve override checking for umount
- pam_selinux: fix syslogging a context after free() (#438338)
2008-03-20 16:50:13 +00:00
Tomáš Mráz
1ba40631bf - update pam-redhat module tarball
- update internal db4
2008-02-28 22:44:06 +00:00
Tomáš Mráz
8938fa9767 - if shadow is readable for an user do not prevent him from authenticating
any user with unix_chkpwd (#433459)
- call audit from unix_chkpwd when appropriate
2008-02-22 15:49:55 +00:00
Tomáš Mráz
0533865ad8 - new upstream release
- add default soft limit for nproc of 1024 to prevent accidental fork bombs
    (#432903)
2008-02-15 17:27:28 +00:00
Tomáš Mráz
717cfde74b - allow the package to build without SELinux and audit support (#431415)
- macro usage cleanup
2008-02-04 13:06:18 +00:00
Tomáš Mráz
b6b1e29706 - test for setkeycreatecon correctly
- add exclusive login mode of operation to pam_selinux_permit (original
    patch by Dan Walsh)
2008-01-28 17:59:35 +00:00
Tomáš Mráz
de90b38383 - libpam.so is in libdir 2008-01-23 07:43:33 +00:00
Tomáš Mráz
2badd4f116 - add auditing to pam_access, pam_limits, and pam_time
- moved sanity testing code to check script
2008-01-22 21:52:13 +00:00
Tomáš Mráz
392622e8de - merge review fixes (#226228) 2008-01-14 12:49:56 +00:00
Tomáš Mráz
c5d3ee3a3f - support for sha256 and sha512 password hashes
- account expiry checks moved to unix_chkpwd helper
2008-01-08 18:56:11 +00:00
Tomáš Mráz
b99939ffb4 - wildcard match support in pam_tty_audit (by Miloslav Trmač) 2008-01-02 10:42:27 +00:00
Tomáš Mráz
a36aa37b04 - add pam_tty_audit module (#244352) - written by Miloslav Trmač 2007-11-29 13:20:28 +00:00
Tomáš Mráz
9ae80944c1 - add substack support 2007-11-07 11:41:49 +00:00
Bill Nottingham
c735fd6aa6 makefile update to properly grab makefile.common 2007-10-15 19:12:34 +00:00
Tomáš Mráz
991484aaf4 - apply db4 patch correctly 2007-09-25 20:26:29 +00:00
Tomáš Mráz
00939f1c06 - update db4 to 4.6.19 (#274661) 2007-09-25 20:15:45 +00:00
Tomáš Mráz
36d9a1c73d - do not preserve contexts when copying skel and other namespace.init fixes
(#298941)
- do not free memory sent to putenv (#231698)
2007-09-21 14:08:14 +00:00
Tomáš Mráz
790525d4ab - review
- don't free/malloc when unnecessary
2007-09-19 19:25:24 +00:00
Tomáš Mráz
43c3a5a46e - add pam_selinux_permit module
- pam_succeed_if: fix in operator (#295151)
2007-09-19 18:11:42 +00:00
Tomáš Mráz
ac8e934c7b - when SELinux enabled always run the helper binary instead of direct
shadow access (#293181)
2007-09-18 20:23:57 +00:00
Tomáš Mráz
66eb83163f - wrong orig code 2007-08-24 13:35:26 +00:00
Tomáš Mráz
9e1a698edf - do not ask for blank password when SELinux confined (#254044)
- initialize homedirs in namespace init script (original patch by dwalsh)
2007-08-24 13:15:01 +00:00
Tomáš Mráz
a47d5ca5e4 - multifunction scanner device support (#251468) 2007-08-22 19:30:39 +00:00
Tomáš Mráz
73ea19b4f7 - most devices are now handled by HAL and not pam_console (patch by davidz)
- license tag fix
2007-08-22 18:03:12 +00:00
Tomáš Mráz
81e34ba414 - fix auth regression when uid != 0 from previous build (#251804) 2007-08-13 09:05:04 +00:00