2023-08-07 12:24:04 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Aug 7 09:41:27 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_access backports from upstream:
|
|
|
|
|
- pam_access-doc-IPv6-link-local.patch:
|
|
|
|
|
Document only partial supported IPv6 link local addresses
|
|
|
|
|
- pam_access-hostname-debug.patch:
|
|
|
|
|
Don't print error if we cannot resolve a hostname, does not
|
|
|
|
|
need to be a hostname
|
|
|
|
|
- pam_shells-fix-econf-memory-leak.patch:
|
|
|
|
|
Free econf keys variable
|
|
|
|
|
- disable-examples.patch:
|
|
|
|
|
Don't build examples
|
|
|
|
|
|
2023-04-20 12:12:45 +02:00
|
|
|
-------------------------------------------------------------------
|
Accepting request 1085746 from home:kukuk:cleanup
- Update to final 1.5.3 release:
- configure: added --enable-logind option to use logind instead of utmp
in pam_issue and pam_timestamp.
- pam_modutil_getlogin: changed to use getlogin() from libc instead of
parsing utmp.
- Added libeconf support to pam_env and pam_shells.
- Added vendor directory support to pam_access, pam_env, pam_group,
pam_faillock, pam_limits, pam_namespace, pam_pwhistory, pam_sepermit,
pam_shells, and pam_time.
- pam_limits: changed to not fail on missing config files.
- pam_pwhistory: added conf= option to specify config file location.
- pam_pwhistory: added file= option to specify password history file
location.
- pam_shells: added shells.d support when libeconf and vendordir are enabled.
- Deprecated pam_lastlog: this module is no longer built by default because
it uses utmp, wtmp, btmp and lastlog, but none of them are Y2038 safe,
even on 64bit architectures.
pam_lastlog will be removed in one of the next releases, consider using
pam_lastlog2 (from https://github.com/thkukuk/lastlog2) and/or
pam_wtmpdb (from https://github.com/thkukuk/wtmpdb) instead.
- Deprecated _pam_overwrite(), _pam_overwrite_n(), and _pam_drop_reply()
macros provided by _pam_macros.h; the memory override performed by these
macros can be optimized out by the compiler and therefore can no longer
be relied upon.
OBS-URL: https://build.opensuse.org/request/show/1085746
OBS-URL: https://build.opensuse.org/package/show/Linux-PAM/pam?expand=0&rev=277
2023-05-09 18:04:51 +02:00
|
|
|
Tue May 9 12:14:48 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to final 1.5.3 release:
|
|
|
|
|
- configure: added --enable-logind option to use logind instead of utmp
|
|
|
|
|
in pam_issue and pam_timestamp.
|
|
|
|
|
- pam_modutil_getlogin: changed to use getlogin() from libc instead of
|
|
|
|
|
parsing utmp.
|
|
|
|
|
- Added libeconf support to pam_env and pam_shells.
|
|
|
|
|
- Added vendor directory support to pam_access, pam_env, pam_group,
|
|
|
|
|
pam_faillock, pam_limits, pam_namespace, pam_pwhistory, pam_sepermit,
|
|
|
|
|
pam_shells, and pam_time.
|
|
|
|
|
- pam_limits: changed to not fail on missing config files.
|
|
|
|
|
- pam_pwhistory: added conf= option to specify config file location.
|
|
|
|
|
- pam_pwhistory: added file= option to specify password history file
|
|
|
|
|
location.
|
|
|
|
|
- pam_shells: added shells.d support when libeconf and vendordir are enabled.
|
|
|
|
|
- Deprecated pam_lastlog: this module is no longer built by default because
|
|
|
|
|
it uses utmp, wtmp, btmp and lastlog, but none of them are Y2038 safe,
|
|
|
|
|
even on 64bit architectures.
|
|
|
|
|
pam_lastlog will be removed in one of the next releases, consider using
|
|
|
|
|
pam_lastlog2 (from https://github.com/thkukuk/lastlog2) and/or
|
|
|
|
|
pam_wtmpdb (from https://github.com/thkukuk/wtmpdb) instead.
|
|
|
|
|
- Deprecated _pam_overwrite(), _pam_overwrite_n(), and _pam_drop_reply()
|
|
|
|
|
macros provided by _pam_macros.h; the memory override performed by these
|
|
|
|
|
macros can be optimized out by the compiler and therefore can no longer
|
|
|
|
|
be relied upon.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2023-04-20 12:12:45 +02:00
|
|
|
Thu Apr 20 09:40:50 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam-extra: add split provide
|
|
|
|
|
|
2023-04-12 13:48:48 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Apr 12 11:28:48 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam-userdb: add split provide
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 11 07:53:44 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Drop pam-xauth_ownership.patch, got fixed in sudo itself
|
|
|
|
|
- Drop pam-bsc1177858-dont-free-environment-string.patch, was a
|
|
|
|
|
fix for above patch
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Apr 6 12:11:30 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Use bcond selinux to disable SELinux
|
|
|
|
|
- Remove old pam_unix_* compat symlinks
|
|
|
|
|
- Move pam_userdb to own pam-userdb sub-package
|
|
|
|
|
- pam-extra contains now modules having extended dependencies like
|
|
|
|
|
libsystemd
|
|
|
|
|
- Update to 1.5.3.90 git snapshot
|
|
|
|
|
- Drop merged patches:
|
|
|
|
|
- pam-git.diff
|
|
|
|
|
- docbook5.patch
|
|
|
|
|
- pam_pwhistory-docu.patch
|
|
|
|
|
- pam_xauth_data.3.xml.patch
|
|
|
|
|
- Drop Linux-PAM-1.5.2.90.tar.xz as we have to rebuild all
|
|
|
|
|
documentation anyways and don't use the prebuild versions
|
|
|
|
|
- Move all devel manual pages to pam-manpages, too. Fixes the
|
|
|
|
|
problem that adjusted defaults not shown correct.
|
|
|
|
|
|
2023-03-20 11:36:11 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Mar 20 10:12:41 UTC 2023 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Add common-session-nonlogin and postlogin-* pam.d config files
|
|
|
|
|
for https://github.com/SUSE/pam-config/pull/16, pam_lastlog2
|
|
|
|
|
and upcoming pam_wtmpdb.
|
|
|
|
|
|
2023-03-15 10:05:09 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Mar 10 18:27:09 UTC 2023 - Giuliano Belinassi <giuliano.belinassi@suse.com>
|
|
|
|
|
|
|
|
|
|
- Enable livepatching support on x86_64.
|
|
|
|
|
|
2023-01-25 11:56:16 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jan 24 08:38:04 UTC 2023 - Valentin Lefebvre <valentin.lefebvre@suse.com>
|
|
|
|
|
|
|
|
|
|
- Use rpm macros for pam dist conf dir (/usr/etc/security)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jan 18 09:33:37 UTC 2023 - Stefan Schubert <schubi@suse.com>
|
|
|
|
|
|
|
|
|
|
- Moved following files/dirs in /etc/security to vendor directory:
|
|
|
|
|
access.conf, limits.d, sepermit.conf, time.conf, namespace.conf,
|
|
|
|
|
namespace.d, namespace.init
|
|
|
|
|
|
2022-12-24 14:32:42 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Dec 24 13:31:33 UTC 2022 - Dominique Leuenberger <dleuenberger@suse.com>
|
|
|
|
|
|
|
|
|
|
- Also obsolete pam_unix-32bit to have clean upgrade path.
|
|
|
|
|
|
2022-12-08 15:52:25 +01:00
|
|
|
-------------------------------------------------------------------
|
2022-12-16 10:50:49 +01:00
|
|
|
Fri Dec 16 09:37:15 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Merge pam_unix back into pam, seperate package not needed anymore
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Dec 15 12:47:53 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update pam-git.diff to current upstream
|
|
|
|
|
- pam_env: Use vendor specific pam_env.conf and environment as fallback
|
|
|
|
|
- pam_shells: Use the vendor directory
|
|
|
|
|
obsoletes pam_env_econf.patch
|
|
|
|
|
- Refresh docbook5.patch
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2022-12-08 15:52:25 +01:00
|
|
|
Tue Dec 6 16:43:49 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_pwhistory-docu.patch, docbook5.patch: convert docu to
|
2023-04-11 10:24:03 +02:00
|
|
|
docbook5
|
2022-12-08 15:52:25 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Dec 1 13:51:35 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam-git.diff: update to current git
|
|
|
|
|
- obsoletes pam-hostnames-in-access_conf.patch
|
|
|
|
|
- obsoletes tst-pam_env-retval.c
|
|
|
|
|
- pam_env_econf.patch refresh
|
|
|
|
|
|
2022-11-23 13:21:53 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Nov 22 15:24:12 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Move pam_env config files below /usr/etc
|
|
|
|
|
|
2022-10-12 11:48:57 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Oct 11 14:44:56 UTC 2022 - Stefan Schubert <schubi@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_env: Using libeconf for reading configuration and environment
|
2022-10-13 13:58:41 +02:00
|
|
|
files. (Patch: pam_env_econf.patch; Testcase: tst-pam_env-retval.c)
|
2022-10-12 11:48:57 +02:00
|
|
|
|
2022-06-17 17:30:56 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jun 17 15:26:20 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Keep old directory in filelist for migration
|
|
|
|
|
|
2022-06-01 13:43:49 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jun 1 11:43:22 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Move PAM config files from /usr/etc/pam.d to /usr/lib/pam.d
|
|
|
|
|
|
2022-03-11 12:29:42 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Mar 11 11:25:35 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam-hostnames-in-access_conf.patch: update with upstream
|
|
|
|
|
submission. Fixes several bugs including memory leaks.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Feb 9 14:05:01 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Move group.conf and faillock.conf to /usr/etc/security
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Feb 7 09:46:16 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to current git for enhanced vendordir support (pam-git.diff)
|
|
|
|
|
Obsoletes:
|
|
|
|
|
- 0001-Include-pam_xauth_data.3.xml-in-source-archive-400.patch
|
|
|
|
|
- 0002-Only-include-vendordir-in-manual-page-if-set-401.patch
|
|
|
|
|
- 0003-Use-vendor-specific-limits.conf-as-fallback-402.patch
|
|
|
|
|
|
2021-12-13 14:17:12 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Dec 13 13:06:47 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Drop pam_umask-usergroups-login_defs.patch, does more harm
|
|
|
|
|
than helps. If not explizit specified as module option, we
|
|
|
|
|
use UMASK from login.defs unmodified.
|
|
|
|
|
|
2021-11-29 10:46:08 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 25 10:12:20 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Don't define doc/manpages packages in main build
|
|
|
|
|
|
2021-11-24 15:34:36 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Nov 24 13:45:22 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Add missing recommends and split provides
|
|
|
|
|
|
2021-11-24 14:43:37 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Nov 24 13:39:45 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Use multibuild to build docu with correct paths and available
|
|
|
|
|
features.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Nov 22 13:12:09 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- common-session: move pam_systemd to first position as if the
|
|
|
|
|
file would have been generated with pam-config
|
|
|
|
|
- Add vendordir fixes and enhancements from upstream:
|
Accepting request 933489 from home:kukuk:tiu
- Add missing recommends and split provides
- Use multibuild to build docu with correct paths and available
features.
- common-session: move pam_systemd to first position as if the
file would have been generated with pam-config
- Add vendordir fixes and enhancements from upstream:
- pam_xauth_data.3.xml.patch
- 0001-Include-pam_xauth_data.3.xml-in-source-archive-400.patch
- 0002-Only-include-vendordir-in-manual-page-if-set-401.patch
- 0003-Use-vendor-specific-limits.conf-as-fallback-402.patch
- For buggy bot: Makefile-pam_unix-nis.diff belonged to the other
spec file.
- Update pam-login_defs-check.sh regexp and
login_defs-support-for-pam symbol to version 1.5.2
(new variable HMAC_CRYPTO_ALGO).
- Add /run/pam_timestamp to pam.tmpfiles
- Corrected macro definition of %_pam_moduledir:
%_pam_moduledir %{_libdir}/security
[macros.pam]
- Prepend a slash to the expansion of %{_lib} in macros.pam as
this are defined without a leading slash!
- Rename motd.tmpfiles to pam.tmpfiles
- Add /run/faillock directory
- pam-login_defs-check.sh: adjust for new login.defs variable usages
- Update to 1.5.2
Noteworthy changes in Linux-PAM 1.5.2:
* pam_exec: implemented quiet_log option.
* pam_mkhomedir: added support of HOME_MODE and UMASK from
/etc/login.defs.
* pam_timestamp: changed hmac algorithm to call openssl instead
of the bundled sha1 implementation if selected, added option
to select the hash algorithm to use with HMAC.
* Added pkgconfig files for provided libraries.
* Added --with-systemdunitdir configure option to specify systemd
unit directory.
* Added --with-misc-conv-bufsize configure option to specify the
buffer size in libpam_misc's misc_conv() function, raised the
default value for this parameter from 512 to 4096.
* Multiple minor bug fixes, portability fixes, documentation
improvements, and translation updates.
pam_tally2 has been removed upstream, remove pam_tally2-removal.patch
pam_cracklib has been removed from the upstream sources. This
obsoletes pam-pam_cracklib-add-usersubstr.patch and
pam_cracklib-removal.patch.
The following patches have been accepted upstream and, so,
are obsolete:
- pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch
- pam_securetty-don-t-complain-about-missing-config.patch
- bsc1184358-prevent-LOCAL-from-being-resolved.patch
- revert-check_shadow_expiry.diff
[Linux-PAM-1.5.2-docs.tar.xz, Linux-PAM-1.5.2-docs.tar.xz.asc,
Linux-PAM-1.5.2.tar.xz, Linux-PAM-1.5.2.tar.xz.asc,
pam-pam_cracklib-add-usersubstr.patch, pam_cracklib-removal.patch,
pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch,
pam_securetty-don-t-complain-about-missing-config.patch,
bsc1184358-prevent-LOCAL-from-being-resolved.patch,
revert-check_shadow_expiry.diff]
- pam_umask-usergroups-login_defs.patch: Deprecate pam_umask
explicit "usergroups" option and instead read it from login.def's
"USERGROUP_ENAB" option if umask is only defined there.
[bsc#1189139]
- package man5/motd.5 as a man-pages link to man8/pam_motd.8
[bsc#1188724]
- revert-check_shadow_expiry.diff: revert wrong
CRYPT_SALT_METHOD_LEGACY check.
- Create /run/motd.d
- Remove legacy pre-usrmerge compat code (removed pam-usrmerge.diff)
- Backport patch to not install /usr/etc/securetty (boo#1033626) ie
no distro defaults and don't complain about it missing
(pam_securetty-don-t-complain-about-missing-config.patch)
- add debug bcond to be able to build pam with debug output easily
- add macros file to allow other packages to stop hardcoding
directory names. Compatible with Fedora.
- In the 32-bit compatibility package for 64-bit architectures,
require "systemd-32bit" to be also installed as it contains
pam_systemd.so for 32 bit applications.
[bsc#1185562, baselibs.conf]
- If "LOCAL" is configured in access.conf, and a login attempt from
a remote host is made, pam_access tries to resolve "LOCAL" as
a hostname and logs a failure.
Checking explicitly for "LOCAL" and rejecting access in this case
resolves this issue.
[bsc#1184358, bsc1184358-prevent-LOCAL-from-being-resolved.patch]
- pam_limits: "unlimited" is not a legitimate value for "nofile"
(see setrlimit(2)). So, when "nofile" is set to one of the
"unlimited" values, it is set to the contents of
"/proc/sys/fs/nr_open" instead.
Also changed the manpage of pam_limits to express this.
[bsc#1181443, pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch]
- Add missing conflicts for pam_unix-nis
- Split out pam_unix module and build without NIS support
- Update to 1.5.1
- pam_unix: fixed CVE-2020-27780 - authentication bypass when a user
doesn't exist and root password is blank [bsc#1179166]
- pam_faillock: added nodelay option to not set pam_fail_delay
- pam_wheel: use pam_modutil_user_in_group to check for the group membership
with getgrouplist where it is available
- add macros.pam to abstract directory for pam modules
- Update to 1.5.0
- obsoletes pam-bsc1178727-initialize-daysleft.patch
- Multiple minor bug fixes, portability fixes, and documentation improvements.
- Extended libpam API with pam_modutil_check_user_in_passwd function.
- pam_faillock: changed /run/faillock/$USER permissions from 0600 to 0660.
- pam_motd: read motd files with target user credentials skipping unreadable ones.
- pam_pwhistory: added a SELinux helper executable.
- pam_unix, pam_usertype: implemented avoidance of certain timing attacks.
- pam_wheel: implemented PAM_RUSER fallback for the case when getlogin fails.
- pam_env: Reading of the user environment is deprecated and will be removed
at some point in the future.
- libpam: pam_modutil_drop_priv() now correctly sets the target user's
supplementary groups, allowing pam_motd to filter messages accordingly
- Refresh pam-xauth_ownership.patch
- pam_tally2-removal.patch: Re-add pam_tally2 for deprecated sub-package
- pam_cracklib-removal.patch: Re-add pam_cracklib for deprecated sub-package
- pam_cracklib: added code to check whether the password contains
a substring of of the user's name of at least <N> characters length
in some form.
This is enabled by the new parameter "usersubstr=<N>"
See https://github.com/libpwquality/libpwquality/commit/bfef79dbe6aa525e9557bf4b0a61e6dde12749c4
[jsc#SLE-16719, jsc#SLE-16720, pam-pam_cracklib-add-usersubstr.patch]
- pam_xauth.c: do not free() a string which has been (successfully)
passed to putenv().
[bsc#1177858, pam-bsc1177858-dont-free-environment-string.patch]
- Initialize pam_unix pam_sm_acct_mgmt() local variable "daysleft"
to avoid spurious (and misleading)
Warning: your password will expire in ... days.
fixed upstream with commit db6b293046a
[bsc#1178727, pam-bsc1178727-initialize-daysleft.patch]
- Enable pam_faillock [bnc#1171562]
- prepare usrmerge (boo#1029961, pam-usrmerge.diff)
- /usr/bin/xauth chokes on the old user's $HOME being on an NFS
file system. Run /usr/bin/xauth using the old user's uid/gid
Patch courtesy of Dr. Werner Fink.
[bsc#1174593, pam-xauth_ownership.patch]
- pam-login_defs-check.sh: Fix the regexp to get a real variable
list (boo#1164274).
- Revert the previous change [SR#815713].
The group is not necessary for PAM functionality but used only
during testing. The test system should therefore create this group.
[bsc#1171016, pam.spec]
- Add requirement for group "wheel" to spec file.
[bsc#1171016, pam.spec]
- Update to final 1.4.0 release
- includes pam-check-user-home-dir.patch
- obsoletes fix-man-links.dif
- common-password: remove pam_cracklib, as that is deprecated.
- pam_setquota.so:
When setting quota, don't apply any quota if the user's $HOME is
a mountpoint (ie the user has a partition of his/her own).
[bsc#1171721, pam-check-user-home-dir.patch]
- Update to current Linux-PAM snapshot
- pam_tally* and pam_cracklib got deprecated
- Disable pam_faillock and pam_setquota until they are whitelisted
- Adapted patch pam-hostnames-in-access_conf.patch for new version
New version obsoleted patch use-correct-IP-address.patch
[pam-hostnames-in-access_conf.patch,
use-correct-IP-address.patch]
- Update to current Linux-PAM snapshot
- Obsoletes pam_namespace-systemd.diff
- Update to current Linux-PAM snapshot
- Add pam_faillock
- Multiple minor bug fixes and documentation improvements
- Fixed grammar of messages printed via pam_prompt
- Added support for a vendor directory and libeconf
- configure: Allowed disabling documentation through --disable-doc
- pam_get_authtok_verify: Avoid duplicate password verification
- pam_env: Changed the default to not read the user .pam_environment file
- pam_group, pam_time: Fixed logical error with multiple ! operators
- pam_keyinit: In pam_sm_setcred do the same as in pam_sm_open_session
- pam_lastlog: Do not log info about failed login if the session was opened
with PAM_SILENT flag
- pam_lastlog: Limit lastlog file use by LASTLOG_UID_MAX option in login.defs
- pam_lastlog: With 'unlimited' option prevent SIGXFSZ due to reduced 'fsize'
limit
- pam_motd: Export MOTD_SHOWN=pam after showing MOTD
- pam_motd: Support multiple motd paths specified, with filename overrides
- pam_namespace: Added a systemd service, which creates the namespaced
instance parent directories during boot
- pam_namespace: Support for noexec, nosuid and nodev flags for tmpfs mounts
- pam_shells: Recognize /bin/sh as the default shell
- pam_succeed_if: Support lists in group membership checks
- pam_tty_audit: If kernel audit is disabled return PAM_IGNORE
- pam_umask: Added new 'nousergroups' module argument and allowed specifying
the default for usergroups at build-time
- pam_unix: Added 'nullresetok' option to allow resetting blank passwords
- pam_unix: Report unusable hashes found by checksalt to syslog
- pam_unix: Support for (gost-)yescrypt hashing methods
- pam_unix: Use bcrypt b-variant when it bcrypt is chosen
- pam_usertype: New module to tell if uid is in login.defs ranges
- Added new API call pam_start_confdir() for special applications that
cannot use the system-default PAM configuration paths and need to
explicitly specify another path
- pam_namespace-systemd.diff: fix path of pam_namespace.services
- own /usr/lib/motd.d/ so other packages can add files there
- Listed all manual pages seperately as pam_userdb.8 has been moved
to pam-extra.
Also %exclude %{_defaultdocdir}/pam as the docs are in a separate
package.
[pam.spec]
- pam_userdb moved to a new package pam-extra as pam-modules
is obsolete and not part of SLE.
[bsc#1166510, pam.spec]
- Removed pam_userdb from this package and moved to pam-modules.
This removed the requirement for libdb.
Also made "xz" required for all releases.
Remove limits for nproc from /etc/security/limits.conf
[bsc#1164562, bsc#1166510, bsc#1110700, pam.spec]
- Recommend login.defs only (no hard requirement)
- Update to version 1.3.1+git20190923.ea78d67:
* Fixed missing quotes in configure script
* Add support for a vendor directory and libeconf (#136)
* pam_lastlog: document the 'unlimited' option
* pam_lastlog: prevent crash due to reduced 'fsize' limit
* pam_unix_sess.c add uid for opening session
* Fix the man page for "pam_fail_delay()"
* Fix a typo
* Update a function comment
- drop usr-etc-support.patch (accepted upstream)
- Add migration support from /etc to /usr/etc during upgrade
- Update to version 1.3.1+git20190902.9de67ee:
* pwhistory: fix read of uninitialized data and memory leak when modifying opasswd
- Update to version 1.3.1+git20190826.1b087ed:
* libpam/pam_modutil_sanitize.c: optimize the way to close fds
- Replace old $RPM_* shell vars by macros.
- Avoid unnecessary invocation of subshells.
- Shorten recipe for constructing securetty contents on s390.
- usr-etc-support.patch: Add support for /usr/etc/pam.d
- encryption_method_nis.diff: obsolete, NIS clients shouldn't
require DES anymore.
- etc.environment: removed, the sources contain the same
- Update to version 1.3.1+git20190807.e31dd6c:
* pam_tty_audit: Manual page clarification about password logging
* pam_get_authtok_verify: Avoid duplicate password verification
* Mention that ./autogen.sh is needeed to be run if you check out the sources from git
* pam_unix: Correct MAXPASS define name in the previous two commits.
* Restrict password length when changing password
* Trim password at PAM_MAX_RESP_SIZE chars
* pam_succeed_if: Request user data only when needed
* pam_tally2: Remove unnecessary fsync()
* Fixed a grammer mistake
* Fix documentation for pam_wheel
* Fix a typo in the documentation
* pam_lastlog: Improve silent option documentation
* pam_lastlog: Respect PAM_SILENT flag
* Fix regressions from the last commits.
* Replace strndupa with strncpy
* build: ignore pam_lastlog when logwtmp is not available.
* build: ignore pam_rhosts if neither ruserok nor ruserok_af is available.
* pam_motd: Cleanup the code and avoid unnecessary logging
* pam_lastlog: Limit lastlog file use by LASTLOG_UID_MAX option in login.defs.
* Move the duplicated search_key function to pam_modutil.
* pam_unix: Use pam_syslog instead of helper_log_err.
* pam_unix: Report unusable hashes found by checksalt to syslog.
* Revert "pam_unix: Add crypt_default method, if supported."
* pam_unix: Add crypt_default method, if supported.
* Revert part of the commit 4da9febc
* pam_unix: Add support for (gost-)yescrypt hashing methods.
* pam_unix: Fix closing curly brace. (#77)
* pam_unix: Add support for crypt_checksalt, if libcrypt supports it.
* pam_unix: Prefer a gensalt function, that supports auto entropy.
* pam_motd: Fix segmentation fault when no motd_dir specified (#76)
* pam_motd: Support multiple motd paths specified, with filename overrides (#69)
* pam_unix: Use bcrypt b-variant for computing new hashes.
* pam_tally, pam_tally2: fix grammar and spelling (#54)
* Fix grammar of messages printed via pam_prompt
* pam_stress: do not mark messages for translation
* pam_unix: remove obsolete _UNIX_AUTHTOK, _UNIX_OLD_AUTHTOK, and _UNIX_NEW_AUTHTOK macros
* pam_unix: remove obsolete _unix_read_password prototype
- Add virtual symbols for login.defs compatibility (bsc#1121197).
- Add login.defs safety check pam-login_defs-check.sh
(bsc#1121197).
- When comparing an incoming IP address with an entry in
access.conf that only specified a single host (ie no netmask),
the incoming IP address was used rather than the IP address from
access.conf, effectively comparing the incoming address with
itself. (Also fixed a small typo while I was at it)
{bsc#1115640, use-correct-IP-address.patch, CVE-2018-17953]
- Upgrade to 1.3.1
* pam_motd: add support for a motd.d directory
* pam_umask: Fix documentation to align with order of loading umask
* pam_get_user.3: Fix missing word in documentation
* pam_tally2 --reset: avoid creating a missing tallylog file
* pam_mkhomedir: Allow creating parent of homedir under /
* access.conf.5: Add note about spaces around ':'
* pam.8: Workaround formatting problem
* pam_unix: Check return value of malloc used for setcred data
* pam_cracklib: Drop unused prompt macros
* pam_tty_audit: Support matching users by uid range
* pam_access: support parsing files in /etc/security/access.d/*.conf
* pam_localuser: Correct documentation
* pam_issue: Fix no prompting in parse escape codes mode
* Unification and cleanup of syslog log levels
Also: removed nproc limit, referred to systemd instead.
Patch5 (pam-fix-config-order-in-manpage.patch) not needed any more.
[bsc#1112508, pam-fix-config-order-in-manpage.patch]
- Add libdb as build-time dependency to enable pam_userdb module.
This module is useful for implementing virtual user support for
vsftpd and possibly other daemons, too. [bsc#929711, fate#322538]
- Install empty directory /etc/security/namespace.d for
pam_namespace.so iscript.
- pam_umask.8 needed to be patched as well.
[bsc#1089884, pam-fix-config-order-in-manpage.patch]
- Changed order of configuration files to reflect actual code.
[bsc#1089884, pam-fix-config-order-in-manpage.patch]
- Use %license (boo#1082318)
- Prerequire group(shadow), user(root)
- Allow symbolic hostnames in access.conf file.
[pam-hostnames-in-access_conf.patch, boo#1019866]
- Increased nproc limits for non-privileged users to 4069/16384.
Removed limits for "root".
[pam-limit-nproc.patch, bsc#1012494, bsc#1013706]
- pam-limit-nproc.patch: increased process limit to help
Chrome/Chromuim users with really lots of tabs. New limit gets
closer to UserTasksMax parameter in logind.conf
- Add doc directory to filelist.
- Remove obsolete README.pam_tally [bsc#977973]
- Update Linux-PAM to version 1.3.0
- Rediff encryption_method_nis.diff
- Link pam_unix against libtirpc and external libnsl to enable
IPv6 support.
- Add /sbin/unix2_chkpwd (moved from pam-modules)
- Remove (since accepted upstream):
- 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch
- 0002-Remove-enable-static-modules-option-and-support-from.patch
- 0003-fix-nis-checks.patch
- 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch
- 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch
- Add 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch
- Replace IPv4 only functions
- Fix typo in common-account.pamd [bnc#959439]
- Add 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch
- readd PAM_EXTERN for external PAM modules
- Add 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch
- Add 0002-Remove-enable-static-modules-option-and-support-from.patch
- Add 0003-fix-nis-checks.patch
- Add folder /etc/security/limits.d as mentioned in 'man pam_limits'
- Update to version 1.2.1
- security update for CVE-2015-3238
- Update to version 1.2.0
- obsoletes Linux-PAM-git-20150109.diff
- Re-add lost patch encryption_method_nis.diff [bnc#906660]
- Update to current git:
- Linux-PAM-git-20150109.diff replaces Linux-PAM-git-20140127.diff
- obsoletes pam_loginuid-log_write_errors.diff
- obsoletes pam_xauth-sigpipe.diff
- obsoletes bug-870433_pam_timestamp-fix-directory-traversal.patch
- increase process limit to 1200 to help chromium users with many tabs
- limit number of processes to 700 to harden against fork-bombs
Add pam-limit-nproc.patch
- Fix CVE-2014-2583: pam_timestamp path injection (bnc#870433)
bug-870433_pam_timestamp-fix-directory-traversal.patch
- adding sclp_line0/ttysclp0 to /etc/securetty on s390 (bnc#869664)
- Add pam_loginuid-log_write_errors.diff: log significant loginuid
write errors
- pam_xauth-sigpipe.diff: avoid potential SIGPIPE when writing to
xauth process
- Update to current git (Linux-PAM-git-20140127.diff), which
obsoletes pam_loginuid-part1.diff, pam_loginuid-part2.diff and
Linux-PAM-git-20140109.diff.
- Fix gratuitous use of strdup and x_strdup
- pam_xauth: log fatal errors preventing xauth process execution
- pam_loginuid: cleanup loginuid buffer initialization
- libpam_misc: fix an inconsistency in handling memory allocation errors
- pam_limits: fix utmp->ut_user handling
- pam_mkhomedir: check and create home directory for the same user
- pam_limits: detect and ignore stale utmp entries
- Disable pam_userdb (remove db-devel from build requires)
- Add pam_loginuid-part1.diff: Ignore missing /proc/self/loginuid
- Add pam_loginuid-part2.diff: Workaround to run pam_loginuid inside lxc
- Update to current git (Linux-PAM-git-20140109.diff, which
replaces pam_unix.diff and encryption_method_nis.diff)
- pam_access: fix debug level logging
- pam_warn: log flags passed to the module
- pam_securetty: check return value of fgets
- pam_lastlog: fix format string
- pam_loginuid: If the correct loginuid is already set, skip writing it
- common-session.pamd: add missing newline
- Remove libtrpc support to solve dependency/build cycles, plain
glibc is enough for now.
- Add encryption_method_nis.diff:
- implement pam_unix2 functionality to use another hash for
NIS passwords.
- Add pam_unix.diff:
- fix if /etc/login.defs uses DES
- ask always for old password if a NIS password will be changed
- fix manpages links (bnc#842872) [fix-man-links.dif]
- Explicitly add pam_systemd.so to list of modules in
common-session.pamd (bnc#812462)
- Update to official release 1.1.8 (1.1.7 + git-20130916.diff)
- Remove needless pam_tally-deprecated.diff patch
- Replace fix-compiler-warnings.diff with current git snapshot
(git-20130916.diff) for pam_unix.so:
- fix glibc warnings
- fix syntax error in SELinux code
- fix crash at login
- Remove pam_unix-login.defs.diff, not needed anymore
- Update to version 1.1.7 (bugfix release)
- Drop missing-DESTDIR.diff and pam-fix-includes.patch
- fix-compiler-warnings.diff: fix unchecked setuid return code
- adding hvc0-hvc7 to /etc/securetty on s390 (bnc#718516)
- Fix typo in common-password [bnc#821526]
- Added libtool as BuildRequire, and autoreconf -i option to fix
build with new automake
- Update pam_unix-login.defs.diff patch to the final upstream
version.
- Adjust URL
- Add set_permission macro and PreReq
- Read default encryption method from /etc/login.defs
(pam_unix-login.defs.diff)
- Remove deprecated pam_tally.so module, it's too buggy and can
destroy config and log files.
- Sync common-*.pamd config with pam-config (use pam_unix.so as
default).
- Fix building in Factory (add patch missing-DESTDIR.diff)
- Update to Linux-PAM 1.1.6
- Update translations
- pam_cracklib: Add more checks for weak passwords
- pam_lastlog: Never lock out root
- Lot of bug fixes and smaller enhancements
- Include correct headers for getrlimit (add patch pam-fix-includes.patch).
- Update homepage URL in specfile
- Update to new upstream release 1.1.5
* pam_env: Fix CVE-2011-3148: correctly count leading whitespace
when parsing environment file in pam_env
* Fix CVE-2011-3149: when overflowing, exit with PAM_BUF_ERR in
pam_env
* pam_access: Add hostname resolution cache
- pam_tally2: remove invalid options from manpage (bnc#726071)
- fix possible overflow and DOS in pam_env (bnc#724480)
CVE-2011-3148, CVE-2011-3149
- Update to version 1.1.4
* pam_securetty: Honour console= kernel option, add noconsole option
* pam_limits: Add %group syntax, drop change_uid option, add set_all option
* Lot of small bug fixes
* Add support for libtirpc
- Build against libtirpc
- license update: GPL-2.0+ or BSD-3-Clause
Updating to spdx.org/licenses syntax as legal-auto for some reason did
not accept the previous spec file license
- Remove libxcrypt-devel from BuildRequires
- bnc#673826 rework
* manpage is left intact, as it was
* correct parsing of "quiet" option
- fix for bnc#673826 (pam_listfile)
* removed unnecessary logging when listfile is missing and quiet
option is specified
* manpage is also updated, to reflect that all option
require values
- Update to Linux-PAM 1.1.3
- fixes CVE-2010-3853, CVE-2010-3431, CVE-2010-3430
- pam_unix: Add minlen option, change default from 6 to 0
- Update to Linux-PAM 1.1.2
- use %_smp_mflags
- Update to current CVS version (pam_rootok: Add support for
chauthtok and acct_mgmt, [bnc#533249])
- Install correct documentation
- Update to Linux-PAM 1.1.1 (bug fix release)
- add baselibs.conf as a source
- enable parallel building
- Add fixes from CVS
- Update to final version 1.1.0 (spelling fixes)
- Update to version 1.0.92:
* Update translations
* pam_succeed_if: Use provided username
* pam_mkhomedir: Fix handling of options
- Remove cracklib-dict-full and pwdutils BuildRequires again.
- Update to version 1.0.91 aka 1.1 Beta2:
* Changes in the behavior of the password stack. Results of
PRELIM_CHECK are not used for the final run.
* Redefine LOCAL keyword of pam_access configuration file
* Add support for try_first_pass and use_first_pass to
pam_cracklib
* New password quality tests in pam_cracklib
* Add support for passing PAM_AUTHTOK to stdin of helpers from
pam_exec
* New options for pam_lastlog to show last failed login attempt and
to disable lastlog update
* New pam_pwhistory module to store last used passwords
* New pam_tally2 module similar to pam_tally with wordsize independent
tally data format, obsoletes pam_tally
* Make libpam not log missing module if its type is prepended with '-'
* New pam_timestamp module for authentication based on recent successful
login.
* Add blowfish support to pam_unix.
* Add support for user specific environment file to pam_env.
* Add pam_get_authtok to libpam as Linux-PAM extension.
- use sr@latin instead of sr@Latn
- Log failures of setrlimit in pam_limits [bnc#448314]
- Fix using of requisite in password stack [bnc#470337]
- Regenerate documentation [bnc#448314]
- use Obsoletes: -XXbit only for ppc64 to help solver during distupgrade
(bnc#437293)
- obsolete old -XXbit packages (bnc#437293)
- enhance the man page for limits.conf (bnc#448314)
- pam_time: fix parsing if '|' is used [bdo#326407]
- pam_xauth: update last patch
- pam_pwhistory: add missing type option
- pam_xauth: put XAUTHLOCALHOSTNAME into new enviroment
(bnc#441314)
- Add pam_tally2
- Regenerate Documentation
- Enhance pam_lastlog with status output
- Add pam_pwhistory as tech preview
- pam_tally: fix fd leak
- pam_mail: fix "quiet" option
- Update to version 1.0.2 (fix SELinux regression)
- enhance pam_tally [FATE#303753]
- Backport fixes from CVS
- enabled SELinux support [Fate#303662]
- Update to version 1.0.1:
- Fixes regression in pam_set_item().
- added baselibs.conf file to build xxbit packages
for multilib support
- Remove devfs lines from securetty [bnc#372241]
- Update to version 1.0.0:
- Official first "stable" release
- bug fixes
- translation updates
- Update to version 0.99.10.0:
- New substack directive in config file syntax
- New module pam_tty_audit.so for enabling and disabling tty
auditing
- New PAM items PAM_XDISPLAY and PAM_XAUTHDATA
- Improved functionality of pam_namespace.so module (method flags,
namespace.d configuration directory, new options).
- Finaly removed deprecated pam_rhosts_auth module.
- Update to version 0.99.9.0:
- misc_conv no longer blocks SIGINT; applications that don't want
user-interruptable prompts should block SIGINT themselves
- Merge fixes from Debian
- Fix parser for pam_group and pam_time
- Update to version 0.99.8.1:
- Fix regression in pam_audit
- Update to version 0.99.8.0:
- Add translations for ar, ca, da, ru, sv and zu.
- Update hungarian translation.
- Add support for limits.d directory to pam_limits.
- Add minclass option to pam_cracklib
- Add new group syntax to pam_access
- move the documentation into a seperate package (pam-doc)
[partly fixes Bug #265733]
- add flex and bison BuildRequires
- add %verify_permissions for /sbin/unix_chkpwd
[#237625]
- Update to Version 0.99.7.1 (security fix)
- Update to Version 0.99.7.0
* Add manual page for pam_unix.so.
* Add pam_faildelay module to set pam_fail_delay() value.
* Fix possible seg.fault in libpam/pam_set_data().
* Cleanup of configure options.
* Update hungarian translation, fix german translation.
- install unix_chkpwd setuid root instead of setgid shadow (#216816)
- pam_unix.so/unix_chkpwd: teach about blowfish [#213929]
- pam_namespace.so: Fix two possible buffer overflow
- link against libxcrypt
- Update hungarian translation [#210091]
- Don't remove pam_unix.so
- Use cracklib again (goes lost with one of the last cleanups)
- Add pam_umask.so to common-session [Fate#3621]
- Update to Linux-PAM 0.99.6.3 (merges all patches)
- Update to Linux-PAM 0.99.6.2 (incorporate last change)
- Add pam_loginuid and fixes from CVS [Fate#300486]
- Fix seg.fault in pam_cracklib if retyped password is empty
- Remove use_first_pass from pam_unix2.so in password section
- Update to Linux-PAM 0.99.6.1 (big documentation update)
- Add missing namespace.init script
- Reenable audit subsystem [Fate#300486]
- Update to Linux-PAM 0.99.5.0 (more manual pages, three new PAM
modules: pam_keyinit, pam_namespace, pam_rhosts)
- Update to current CVS (lot of new manual pages and docu)
- Update to Linux-PAM 0.99.4.0 (merge all patches and translations)
- Fix problems found by Coverity
- Don't strip binaries.
- Fix pam_tally LFS support [#172492]
- Update fr.po and pl.po
- Update km.po
- Remove obsolete pam-laus from the system
- Update translations for pt, pl, fr, fi and cs
- Add translation for uk
- Update hu.po
- Add translation for tr
- Fix order of NULL checks in pam_get_user
- Fix comment in pam_lastlog for translators to be visible in
pot file
- Docu update, remove pam_selinux docu
- Update km translation
- pam_lastlog:
- Initialize correct struct member [SF#1427401]
- Mark strftime fmt string for translation [SF#1428269]
- Update more manual pages
- really disable audit if header file not present
- Update fi.po
- Add km.po
- Update pl.po
- Update with better manual pages
- Add translation for nl, update pt translation
- Move devel manual pages to -devel package
- Mark PAM config files as noreplace
- Mark /etc/securetty as noreplace
- Run ldconfig
- Fix libdb/ndbm compat detection with gdbm
- Adjust german translation
- Add all services to pam_listfile
- converted neededforbuild to BuildRequires
- Update to Linux-PAM 0.99.3.0 release candiate tar balls
(new translations)
- Fix NULL handling for LSB-pam test suite [#141240]
- Fix usage of PAM_AUTHTOK_RECOVER_ERR vs. PAM_AUTHTOK_RECOVERY_ERR
- NULL is allowed as thirs argument for pam_get_item [#141240]
- Add fixes from CVS
- Fix pam_lastlog: don't report error on first login
- Update to 0.99.2.1
- Add /etc/environment to avoid warnings in syslog
- disable SELinux
- Update getlogin() fix to final one
- Fix PAM getlogin() implementation
- Update to official 0.99.2.0 release
- Update to new snapshot
- Enable original pam_wheel module
- Update to current CVS
- Compile libpam_misc with -fno-strict-aliasing
- Update to current CVS
- Fix compiling of pammodutil with -fPIC
- Update to current CVS
- Update to new snapshot (Major version is back to 0)
- Update to Linux-PAM 0.99.0.3 snapshot
- Add pam_umask
- Update to current CVS snapshot
- Update to current CVS snapshot
- Add pam_loginuid
- Update to current CVS snapshot
- Don't reset priority [#81690]
- Fix creating of symlinks
- Update to current CVS snapshot
- Real fix for [#82687] (don't include kernel header files)
- Bug 82687 - pam_client.h redefines __u8 and __u32
- Apply lot of fixes from CVS (including SELinux support)
- Update to final 0.79 release
- Apply patch for pam_xauth to preserve DISPLAY variable [#66885]
- Compile with large file support
- Made patch of latest CVS tree
- Removed patch pam_handler.diff ( included in CVS now )
- moved Linux-PAM-0.78.dif to pam_group_time.diff
- Fix seg.fault, if a PAM config line is incomplete
- Update to final 0.78
- Add pam_env.so to common-auth
- Add pam_limit.so to common-session
- Update to 0.78-Beta1
- Create pam.d/common-{auth,account,password,session} and include
them in pam.d/other
- Update to current CVS version of upcoming 0.78 release
- Update "code cleanup" patch
- Disable reading of /etc/environment in pam_env.so per default
- Reenable a "fixed" version of "code cleanup" patch
- Use pam_wheel from pam-modules package
- Disable "code cleanup" patch (no more comments about security
fixes)
- Apply big "code cleanup" patch [Bug #39673]
- pam_wheel: Use original getlogin again, PAM internal does not
work without application help [Bug #35682]
- We no longer have pam in the buildsystem, so we
need some buildroot magic flags for the dlopen tests.
- Cleanup neededforbuild
- Add manual pages from SLES8
- Fix installing manual pages of modules
- Remove pthread check (db is now linked against pthread)
- Merge with current CVS
- Apply bug fixes from bugtracking system
- Build as normal user
- Compile with noexecstack
- Fix pam_securetty CVS patch
- Sync with current CVS version
- Add patch to implement "include" statement in pamd files
- added ttyS1 (VT220) to securetty on s390* (bug #29239)
- Apply lot of fixes for various problems
- Fix getlogin handling in pam_wheel.so
- added cracklib-devel to neededforbuild
- Update pam_localuser and pam_xauth.
- Update to Linux-PAM 0.77 (minor bug fixes and enhancemants)
- changed neededforbuild <sp> to <opensp>
- changed securetty / use extra file
- 390: standard console (4,64)/ttyS0 ->only ttyS0 in /etc/securetty
- Call password checking helper from pam_unix.so whenever the
passwd field is invalid.
- Don't build ps and pdf documentation
- pam-devel requires pam [Bug #17543]
- Remove explicit requires
- Update to Linux-PAM 0.76
- Remove reentrant patch for original PAM modules (needs to be
rewritten for new PAM version)
- Add docu in PDF format
- Fix build on different partitions
- Fix to not own /usr/shar/man/man3
- Add /usr/include/security to pam-devel filelist
- tar option for bz2 is "j"
- Fix last pam_securetty patch
- Use reentrant getpwnam functions for most modules
- Fix unresolved symbols in pam_access and pam_userdb
- libpam_misc: Don't handle Ctrl-D as error.
- Remove SuSEconfig.pam
- Update pam_localuser and pam_xauth
- Add new READMEs about blowfish and cracklib
- Remove pam_unix.so (is part of pam-modules)
- Move extra PAM modules to separate package
- Require pam-modules package
- Move susehelp config file to susehelp package
- changed neededforbuild <sp_libs> to <sp-devel>
- Fixes wrong symlink handling of pam_homecheck [Bug #3905]
- Sync pam_homecheck and pam_unix2 fixes from 7.2
- Always ask for the old password if it is expired
- Cleanup Patches, make tar archive from extra pam modules
- Use LOG_NOTICE for trace option [Bug #7673]
- Linux-PAM: link pam_access against libnsl
- Add pam.conf for susehelp/pam html docu
- Linux-PAM: Update to version 0.75
- Linux-PAM: link libpam_misc against libpam [Bug #6890]
- Linux-PAM: Fix manual pages (.so reference)
- pam_pwcheck: fix Makefile
- Update for Linux-PAM 0.74
- Drop pwdb subpackage
- pam_unix2: Create temp files with permission 0600
- pam_issue.c: include time.h to make it compile
- Don't print error message about failed initialization from
pam_limits with kernel 2.2 [Bug #5198]
- Adjust docu for pam_limits
- Adjust docu for pam_pwcheck
- Add fix for pam_limits from 0.73
- Add db-devel to need for build
- Don't link PAM modules against old libpam library
- Create new "devel" subpackage
- Add SuSEconfig.pam
- Fix problems with new gcc and glibc 2.2 header files
- Fix problem with passwords longer then PASS_MAX_LEN
- Add missing PAM modules to filelist
- Fix seg.fault in pam_pwcheck [BUG #3894]
- Clean spec file
- Lot of bug fixes in pam_unix2 and pam_pwcheck
- compress postscript docu
- Move docu to /usr/share/doc/pam
- Fix some bugs in pam_unix2 and pam_pwcheck
- Add pam_homecheck Module
- Add devfs devices to /etc/securetty
- Fix handling of changing passwords to empty one
- Set correct attr for unix_chkpwd and pwdb_chkpwd
- Update pam_pwcheck
- Update pam_unix2
- pwdb: Update to 0.61
- Add config files and README for md5 passwords
- Update pam_pwcheck
- Update pam_unix2
- Update pam_unix2
- New: pam_pwcheck
- Update to Linux-PAM 0.72
- pam_pwdb: Add security fixes from RedHat
- Update to Linux-PAM 0.70
- Update to pwdb-0.60
- Fix more pam_unix2 shadow bugs
- Add more PAM fixes
- Implement Password changing request (sp_lstchg == 0)
- ran old prepare_spec on spec file to switch to new prepare_spec.
- Add pam_wheel to file list
- pam_wheel: Minor fixes
- pam_unix2: root is allowed to change passwords with wrong
password aging information
- pam_unix2: Fix typo
- Linux-PAM: Update to version 0.69
- pam_unix2: Root is allowed to use the old password again.
- pam_unix2: Allow root to set an empty password.
- Add HP-UX password aging to pam_unix2.
- Don't install .cvsignore files
- Make sure, /etc/shadow has the correct rights
- Update to Linux-PAM 0.68
- pam_unix2: more bug fixes
- pam_unix2: Fix "inactive" password
- pam_warn: Add missing functions
- other.pamd: Update
- Add more doku
- Add securetty config file
- Fix Debian pam_env patch
- Update to Linux-PAM 0.67
- Add Debian pam_env patch
- pam_ftp malloc (core dump) fix
- pam_unix2 fixes
- First PAM package: pam 0.66, pwdb 0.57 and pam_unix2
OBS-URL: https://build.opensuse.org/request/show/933489
OBS-URL: https://build.opensuse.org/package/show/Linux-PAM/pam?expand=0&rev=256
2021-11-24 16:07:30 +01:00
|
|
|
- pam_xauth_data.3.xml.patch
|
2021-11-24 14:43:37 +01:00
|
|
|
- 0001-Include-pam_xauth_data.3.xml-in-source-archive-400.patch
|
|
|
|
|
- 0002-Only-include-vendordir-in-manual-page-if-set-401.patch
|
|
|
|
|
- 0003-Use-vendor-specific-limits.conf-as-fallback-402.patch
|
2023-04-11 10:24:03 +02:00
|
|
|
- For buggy bot: Makefile-pam_unix-nis.diff belonged to the other
|
Accepting request 933489 from home:kukuk:tiu
- Add missing recommends and split provides
- Use multibuild to build docu with correct paths and available
features.
- common-session: move pam_systemd to first position as if the
file would have been generated with pam-config
- Add vendordir fixes and enhancements from upstream:
- pam_xauth_data.3.xml.patch
- 0001-Include-pam_xauth_data.3.xml-in-source-archive-400.patch
- 0002-Only-include-vendordir-in-manual-page-if-set-401.patch
- 0003-Use-vendor-specific-limits.conf-as-fallback-402.patch
- For buggy bot: Makefile-pam_unix-nis.diff belonged to the other
spec file.
- Update pam-login_defs-check.sh regexp and
login_defs-support-for-pam symbol to version 1.5.2
(new variable HMAC_CRYPTO_ALGO).
- Add /run/pam_timestamp to pam.tmpfiles
- Corrected macro definition of %_pam_moduledir:
%_pam_moduledir %{_libdir}/security
[macros.pam]
- Prepend a slash to the expansion of %{_lib} in macros.pam as
this are defined without a leading slash!
- Rename motd.tmpfiles to pam.tmpfiles
- Add /run/faillock directory
- pam-login_defs-check.sh: adjust for new login.defs variable usages
- Update to 1.5.2
Noteworthy changes in Linux-PAM 1.5.2:
* pam_exec: implemented quiet_log option.
* pam_mkhomedir: added support of HOME_MODE and UMASK from
/etc/login.defs.
* pam_timestamp: changed hmac algorithm to call openssl instead
of the bundled sha1 implementation if selected, added option
to select the hash algorithm to use with HMAC.
* Added pkgconfig files for provided libraries.
* Added --with-systemdunitdir configure option to specify systemd
unit directory.
* Added --with-misc-conv-bufsize configure option to specify the
buffer size in libpam_misc's misc_conv() function, raised the
default value for this parameter from 512 to 4096.
* Multiple minor bug fixes, portability fixes, documentation
improvements, and translation updates.
pam_tally2 has been removed upstream, remove pam_tally2-removal.patch
pam_cracklib has been removed from the upstream sources. This
obsoletes pam-pam_cracklib-add-usersubstr.patch and
pam_cracklib-removal.patch.
The following patches have been accepted upstream and, so,
are obsolete:
- pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch
- pam_securetty-don-t-complain-about-missing-config.patch
- bsc1184358-prevent-LOCAL-from-being-resolved.patch
- revert-check_shadow_expiry.diff
[Linux-PAM-1.5.2-docs.tar.xz, Linux-PAM-1.5.2-docs.tar.xz.asc,
Linux-PAM-1.5.2.tar.xz, Linux-PAM-1.5.2.tar.xz.asc,
pam-pam_cracklib-add-usersubstr.patch, pam_cracklib-removal.patch,
pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch,
pam_securetty-don-t-complain-about-missing-config.patch,
bsc1184358-prevent-LOCAL-from-being-resolved.patch,
revert-check_shadow_expiry.diff]
- pam_umask-usergroups-login_defs.patch: Deprecate pam_umask
explicit "usergroups" option and instead read it from login.def's
"USERGROUP_ENAB" option if umask is only defined there.
[bsc#1189139]
- package man5/motd.5 as a man-pages link to man8/pam_motd.8
[bsc#1188724]
- revert-check_shadow_expiry.diff: revert wrong
CRYPT_SALT_METHOD_LEGACY check.
- Create /run/motd.d
- Remove legacy pre-usrmerge compat code (removed pam-usrmerge.diff)
- Backport patch to not install /usr/etc/securetty (boo#1033626) ie
no distro defaults and don't complain about it missing
(pam_securetty-don-t-complain-about-missing-config.patch)
- add debug bcond to be able to build pam with debug output easily
- add macros file to allow other packages to stop hardcoding
directory names. Compatible with Fedora.
- In the 32-bit compatibility package for 64-bit architectures,
require "systemd-32bit" to be also installed as it contains
pam_systemd.so for 32 bit applications.
[bsc#1185562, baselibs.conf]
- If "LOCAL" is configured in access.conf, and a login attempt from
a remote host is made, pam_access tries to resolve "LOCAL" as
a hostname and logs a failure.
Checking explicitly for "LOCAL" and rejecting access in this case
resolves this issue.
[bsc#1184358, bsc1184358-prevent-LOCAL-from-being-resolved.patch]
- pam_limits: "unlimited" is not a legitimate value for "nofile"
(see setrlimit(2)). So, when "nofile" is set to one of the
"unlimited" values, it is set to the contents of
"/proc/sys/fs/nr_open" instead.
Also changed the manpage of pam_limits to express this.
[bsc#1181443, pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch]
- Add missing conflicts for pam_unix-nis
- Split out pam_unix module and build without NIS support
- Update to 1.5.1
- pam_unix: fixed CVE-2020-27780 - authentication bypass when a user
doesn't exist and root password is blank [bsc#1179166]
- pam_faillock: added nodelay option to not set pam_fail_delay
- pam_wheel: use pam_modutil_user_in_group to check for the group membership
with getgrouplist where it is available
- add macros.pam to abstract directory for pam modules
- Update to 1.5.0
- obsoletes pam-bsc1178727-initialize-daysleft.patch
- Multiple minor bug fixes, portability fixes, and documentation improvements.
- Extended libpam API with pam_modutil_check_user_in_passwd function.
- pam_faillock: changed /run/faillock/$USER permissions from 0600 to 0660.
- pam_motd: read motd files with target user credentials skipping unreadable ones.
- pam_pwhistory: added a SELinux helper executable.
- pam_unix, pam_usertype: implemented avoidance of certain timing attacks.
- pam_wheel: implemented PAM_RUSER fallback for the case when getlogin fails.
- pam_env: Reading of the user environment is deprecated and will be removed
at some point in the future.
- libpam: pam_modutil_drop_priv() now correctly sets the target user's
supplementary groups, allowing pam_motd to filter messages accordingly
- Refresh pam-xauth_ownership.patch
- pam_tally2-removal.patch: Re-add pam_tally2 for deprecated sub-package
- pam_cracklib-removal.patch: Re-add pam_cracklib for deprecated sub-package
- pam_cracklib: added code to check whether the password contains
a substring of of the user's name of at least <N> characters length
in some form.
This is enabled by the new parameter "usersubstr=<N>"
See https://github.com/libpwquality/libpwquality/commit/bfef79dbe6aa525e9557bf4b0a61e6dde12749c4
[jsc#SLE-16719, jsc#SLE-16720, pam-pam_cracklib-add-usersubstr.patch]
- pam_xauth.c: do not free() a string which has been (successfully)
passed to putenv().
[bsc#1177858, pam-bsc1177858-dont-free-environment-string.patch]
- Initialize pam_unix pam_sm_acct_mgmt() local variable "daysleft"
to avoid spurious (and misleading)
Warning: your password will expire in ... days.
fixed upstream with commit db6b293046a
[bsc#1178727, pam-bsc1178727-initialize-daysleft.patch]
- Enable pam_faillock [bnc#1171562]
- prepare usrmerge (boo#1029961, pam-usrmerge.diff)
- /usr/bin/xauth chokes on the old user's $HOME being on an NFS
file system. Run /usr/bin/xauth using the old user's uid/gid
Patch courtesy of Dr. Werner Fink.
[bsc#1174593, pam-xauth_ownership.patch]
- pam-login_defs-check.sh: Fix the regexp to get a real variable
list (boo#1164274).
- Revert the previous change [SR#815713].
The group is not necessary for PAM functionality but used only
during testing. The test system should therefore create this group.
[bsc#1171016, pam.spec]
- Add requirement for group "wheel" to spec file.
[bsc#1171016, pam.spec]
- Update to final 1.4.0 release
- includes pam-check-user-home-dir.patch
- obsoletes fix-man-links.dif
- common-password: remove pam_cracklib, as that is deprecated.
- pam_setquota.so:
When setting quota, don't apply any quota if the user's $HOME is
a mountpoint (ie the user has a partition of his/her own).
[bsc#1171721, pam-check-user-home-dir.patch]
- Update to current Linux-PAM snapshot
- pam_tally* and pam_cracklib got deprecated
- Disable pam_faillock and pam_setquota until they are whitelisted
- Adapted patch pam-hostnames-in-access_conf.patch for new version
New version obsoleted patch use-correct-IP-address.patch
[pam-hostnames-in-access_conf.patch,
use-correct-IP-address.patch]
- Update to current Linux-PAM snapshot
- Obsoletes pam_namespace-systemd.diff
- Update to current Linux-PAM snapshot
- Add pam_faillock
- Multiple minor bug fixes and documentation improvements
- Fixed grammar of messages printed via pam_prompt
- Added support for a vendor directory and libeconf
- configure: Allowed disabling documentation through --disable-doc
- pam_get_authtok_verify: Avoid duplicate password verification
- pam_env: Changed the default to not read the user .pam_environment file
- pam_group, pam_time: Fixed logical error with multiple ! operators
- pam_keyinit: In pam_sm_setcred do the same as in pam_sm_open_session
- pam_lastlog: Do not log info about failed login if the session was opened
with PAM_SILENT flag
- pam_lastlog: Limit lastlog file use by LASTLOG_UID_MAX option in login.defs
- pam_lastlog: With 'unlimited' option prevent SIGXFSZ due to reduced 'fsize'
limit
- pam_motd: Export MOTD_SHOWN=pam after showing MOTD
- pam_motd: Support multiple motd paths specified, with filename overrides
- pam_namespace: Added a systemd service, which creates the namespaced
instance parent directories during boot
- pam_namespace: Support for noexec, nosuid and nodev flags for tmpfs mounts
- pam_shells: Recognize /bin/sh as the default shell
- pam_succeed_if: Support lists in group membership checks
- pam_tty_audit: If kernel audit is disabled return PAM_IGNORE
- pam_umask: Added new 'nousergroups' module argument and allowed specifying
the default for usergroups at build-time
- pam_unix: Added 'nullresetok' option to allow resetting blank passwords
- pam_unix: Report unusable hashes found by checksalt to syslog
- pam_unix: Support for (gost-)yescrypt hashing methods
- pam_unix: Use bcrypt b-variant when it bcrypt is chosen
- pam_usertype: New module to tell if uid is in login.defs ranges
- Added new API call pam_start_confdir() for special applications that
cannot use the system-default PAM configuration paths and need to
explicitly specify another path
- pam_namespace-systemd.diff: fix path of pam_namespace.services
- own /usr/lib/motd.d/ so other packages can add files there
- Listed all manual pages seperately as pam_userdb.8 has been moved
to pam-extra.
Also %exclude %{_defaultdocdir}/pam as the docs are in a separate
package.
[pam.spec]
- pam_userdb moved to a new package pam-extra as pam-modules
is obsolete and not part of SLE.
[bsc#1166510, pam.spec]
- Removed pam_userdb from this package and moved to pam-modules.
This removed the requirement for libdb.
Also made "xz" required for all releases.
Remove limits for nproc from /etc/security/limits.conf
[bsc#1164562, bsc#1166510, bsc#1110700, pam.spec]
- Recommend login.defs only (no hard requirement)
- Update to version 1.3.1+git20190923.ea78d67:
* Fixed missing quotes in configure script
* Add support for a vendor directory and libeconf (#136)
* pam_lastlog: document the 'unlimited' option
* pam_lastlog: prevent crash due to reduced 'fsize' limit
* pam_unix_sess.c add uid for opening session
* Fix the man page for "pam_fail_delay()"
* Fix a typo
* Update a function comment
- drop usr-etc-support.patch (accepted upstream)
- Add migration support from /etc to /usr/etc during upgrade
- Update to version 1.3.1+git20190902.9de67ee:
* pwhistory: fix read of uninitialized data and memory leak when modifying opasswd
- Update to version 1.3.1+git20190826.1b087ed:
* libpam/pam_modutil_sanitize.c: optimize the way to close fds
- Replace old $RPM_* shell vars by macros.
- Avoid unnecessary invocation of subshells.
- Shorten recipe for constructing securetty contents on s390.
- usr-etc-support.patch: Add support for /usr/etc/pam.d
- encryption_method_nis.diff: obsolete, NIS clients shouldn't
require DES anymore.
- etc.environment: removed, the sources contain the same
- Update to version 1.3.1+git20190807.e31dd6c:
* pam_tty_audit: Manual page clarification about password logging
* pam_get_authtok_verify: Avoid duplicate password verification
* Mention that ./autogen.sh is needeed to be run if you check out the sources from git
* pam_unix: Correct MAXPASS define name in the previous two commits.
* Restrict password length when changing password
* Trim password at PAM_MAX_RESP_SIZE chars
* pam_succeed_if: Request user data only when needed
* pam_tally2: Remove unnecessary fsync()
* Fixed a grammer mistake
* Fix documentation for pam_wheel
* Fix a typo in the documentation
* pam_lastlog: Improve silent option documentation
* pam_lastlog: Respect PAM_SILENT flag
* Fix regressions from the last commits.
* Replace strndupa with strncpy
* build: ignore pam_lastlog when logwtmp is not available.
* build: ignore pam_rhosts if neither ruserok nor ruserok_af is available.
* pam_motd: Cleanup the code and avoid unnecessary logging
* pam_lastlog: Limit lastlog file use by LASTLOG_UID_MAX option in login.defs.
* Move the duplicated search_key function to pam_modutil.
* pam_unix: Use pam_syslog instead of helper_log_err.
* pam_unix: Report unusable hashes found by checksalt to syslog.
* Revert "pam_unix: Add crypt_default method, if supported."
* pam_unix: Add crypt_default method, if supported.
* Revert part of the commit 4da9febc
* pam_unix: Add support for (gost-)yescrypt hashing methods.
* pam_unix: Fix closing curly brace. (#77)
* pam_unix: Add support for crypt_checksalt, if libcrypt supports it.
* pam_unix: Prefer a gensalt function, that supports auto entropy.
* pam_motd: Fix segmentation fault when no motd_dir specified (#76)
* pam_motd: Support multiple motd paths specified, with filename overrides (#69)
* pam_unix: Use bcrypt b-variant for computing new hashes.
* pam_tally, pam_tally2: fix grammar and spelling (#54)
* Fix grammar of messages printed via pam_prompt
* pam_stress: do not mark messages for translation
* pam_unix: remove obsolete _UNIX_AUTHTOK, _UNIX_OLD_AUTHTOK, and _UNIX_NEW_AUTHTOK macros
* pam_unix: remove obsolete _unix_read_password prototype
- Add virtual symbols for login.defs compatibility (bsc#1121197).
- Add login.defs safety check pam-login_defs-check.sh
(bsc#1121197).
- When comparing an incoming IP address with an entry in
access.conf that only specified a single host (ie no netmask),
the incoming IP address was used rather than the IP address from
access.conf, effectively comparing the incoming address with
itself. (Also fixed a small typo while I was at it)
{bsc#1115640, use-correct-IP-address.patch, CVE-2018-17953]
- Upgrade to 1.3.1
* pam_motd: add support for a motd.d directory
* pam_umask: Fix documentation to align with order of loading umask
* pam_get_user.3: Fix missing word in documentation
* pam_tally2 --reset: avoid creating a missing tallylog file
* pam_mkhomedir: Allow creating parent of homedir under /
* access.conf.5: Add note about spaces around ':'
* pam.8: Workaround formatting problem
* pam_unix: Check return value of malloc used for setcred data
* pam_cracklib: Drop unused prompt macros
* pam_tty_audit: Support matching users by uid range
* pam_access: support parsing files in /etc/security/access.d/*.conf
* pam_localuser: Correct documentation
* pam_issue: Fix no prompting in parse escape codes mode
* Unification and cleanup of syslog log levels
Also: removed nproc limit, referred to systemd instead.
Patch5 (pam-fix-config-order-in-manpage.patch) not needed any more.
[bsc#1112508, pam-fix-config-order-in-manpage.patch]
- Add libdb as build-time dependency to enable pam_userdb module.
This module is useful for implementing virtual user support for
vsftpd and possibly other daemons, too. [bsc#929711, fate#322538]
- Install empty directory /etc/security/namespace.d for
pam_namespace.so iscript.
- pam_umask.8 needed to be patched as well.
[bsc#1089884, pam-fix-config-order-in-manpage.patch]
- Changed order of configuration files to reflect actual code.
[bsc#1089884, pam-fix-config-order-in-manpage.patch]
- Use %license (boo#1082318)
- Prerequire group(shadow), user(root)
- Allow symbolic hostnames in access.conf file.
[pam-hostnames-in-access_conf.patch, boo#1019866]
- Increased nproc limits for non-privileged users to 4069/16384.
Removed limits for "root".
[pam-limit-nproc.patch, bsc#1012494, bsc#1013706]
- pam-limit-nproc.patch: increased process limit to help
Chrome/Chromuim users with really lots of tabs. New limit gets
closer to UserTasksMax parameter in logind.conf
- Add doc directory to filelist.
- Remove obsolete README.pam_tally [bsc#977973]
- Update Linux-PAM to version 1.3.0
- Rediff encryption_method_nis.diff
- Link pam_unix against libtirpc and external libnsl to enable
IPv6 support.
- Add /sbin/unix2_chkpwd (moved from pam-modules)
- Remove (since accepted upstream):
- 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch
- 0002-Remove-enable-static-modules-option-and-support-from.patch
- 0003-fix-nis-checks.patch
- 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch
- 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch
- Add 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch
- Replace IPv4 only functions
- Fix typo in common-account.pamd [bnc#959439]
- Add 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch
- readd PAM_EXTERN for external PAM modules
- Add 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch
- Add 0002-Remove-enable-static-modules-option-and-support-from.patch
- Add 0003-fix-nis-checks.patch
- Add folder /etc/security/limits.d as mentioned in 'man pam_limits'
- Update to version 1.2.1
- security update for CVE-2015-3238
- Update to version 1.2.0
- obsoletes Linux-PAM-git-20150109.diff
- Re-add lost patch encryption_method_nis.diff [bnc#906660]
- Update to current git:
- Linux-PAM-git-20150109.diff replaces Linux-PAM-git-20140127.diff
- obsoletes pam_loginuid-log_write_errors.diff
- obsoletes pam_xauth-sigpipe.diff
- obsoletes bug-870433_pam_timestamp-fix-directory-traversal.patch
- increase process limit to 1200 to help chromium users with many tabs
- limit number of processes to 700 to harden against fork-bombs
Add pam-limit-nproc.patch
- Fix CVE-2014-2583: pam_timestamp path injection (bnc#870433)
bug-870433_pam_timestamp-fix-directory-traversal.patch
- adding sclp_line0/ttysclp0 to /etc/securetty on s390 (bnc#869664)
- Add pam_loginuid-log_write_errors.diff: log significant loginuid
write errors
- pam_xauth-sigpipe.diff: avoid potential SIGPIPE when writing to
xauth process
- Update to current git (Linux-PAM-git-20140127.diff), which
obsoletes pam_loginuid-part1.diff, pam_loginuid-part2.diff and
Linux-PAM-git-20140109.diff.
- Fix gratuitous use of strdup and x_strdup
- pam_xauth: log fatal errors preventing xauth process execution
- pam_loginuid: cleanup loginuid buffer initialization
- libpam_misc: fix an inconsistency in handling memory allocation errors
- pam_limits: fix utmp->ut_user handling
- pam_mkhomedir: check and create home directory for the same user
- pam_limits: detect and ignore stale utmp entries
- Disable pam_userdb (remove db-devel from build requires)
- Add pam_loginuid-part1.diff: Ignore missing /proc/self/loginuid
- Add pam_loginuid-part2.diff: Workaround to run pam_loginuid inside lxc
- Update to current git (Linux-PAM-git-20140109.diff, which
replaces pam_unix.diff and encryption_method_nis.diff)
- pam_access: fix debug level logging
- pam_warn: log flags passed to the module
- pam_securetty: check return value of fgets
- pam_lastlog: fix format string
- pam_loginuid: If the correct loginuid is already set, skip writing it
- common-session.pamd: add missing newline
- Remove libtrpc support to solve dependency/build cycles, plain
glibc is enough for now.
- Add encryption_method_nis.diff:
- implement pam_unix2 functionality to use another hash for
NIS passwords.
- Add pam_unix.diff:
- fix if /etc/login.defs uses DES
- ask always for old password if a NIS password will be changed
- fix manpages links (bnc#842872) [fix-man-links.dif]
- Explicitly add pam_systemd.so to list of modules in
common-session.pamd (bnc#812462)
- Update to official release 1.1.8 (1.1.7 + git-20130916.diff)
- Remove needless pam_tally-deprecated.diff patch
- Replace fix-compiler-warnings.diff with current git snapshot
(git-20130916.diff) for pam_unix.so:
- fix glibc warnings
- fix syntax error in SELinux code
- fix crash at login
- Remove pam_unix-login.defs.diff, not needed anymore
- Update to version 1.1.7 (bugfix release)
- Drop missing-DESTDIR.diff and pam-fix-includes.patch
- fix-compiler-warnings.diff: fix unchecked setuid return code
- adding hvc0-hvc7 to /etc/securetty on s390 (bnc#718516)
- Fix typo in common-password [bnc#821526]
- Added libtool as BuildRequire, and autoreconf -i option to fix
build with new automake
- Update pam_unix-login.defs.diff patch to the final upstream
version.
- Adjust URL
- Add set_permission macro and PreReq
- Read default encryption method from /etc/login.defs
(pam_unix-login.defs.diff)
- Remove deprecated pam_tally.so module, it's too buggy and can
destroy config and log files.
- Sync common-*.pamd config with pam-config (use pam_unix.so as
default).
- Fix building in Factory (add patch missing-DESTDIR.diff)
- Update to Linux-PAM 1.1.6
- Update translations
- pam_cracklib: Add more checks for weak passwords
- pam_lastlog: Never lock out root
- Lot of bug fixes and smaller enhancements
- Include correct headers for getrlimit (add patch pam-fix-includes.patch).
- Update homepage URL in specfile
- Update to new upstream release 1.1.5
* pam_env: Fix CVE-2011-3148: correctly count leading whitespace
when parsing environment file in pam_env
* Fix CVE-2011-3149: when overflowing, exit with PAM_BUF_ERR in
pam_env
* pam_access: Add hostname resolution cache
- pam_tally2: remove invalid options from manpage (bnc#726071)
- fix possible overflow and DOS in pam_env (bnc#724480)
CVE-2011-3148, CVE-2011-3149
- Update to version 1.1.4
* pam_securetty: Honour console= kernel option, add noconsole option
* pam_limits: Add %group syntax, drop change_uid option, add set_all option
* Lot of small bug fixes
* Add support for libtirpc
- Build against libtirpc
- license update: GPL-2.0+ or BSD-3-Clause
Updating to spdx.org/licenses syntax as legal-auto for some reason did
not accept the previous spec file license
- Remove libxcrypt-devel from BuildRequires
- bnc#673826 rework
* manpage is left intact, as it was
* correct parsing of "quiet" option
- fix for bnc#673826 (pam_listfile)
* removed unnecessary logging when listfile is missing and quiet
option is specified
* manpage is also updated, to reflect that all option
require values
- Update to Linux-PAM 1.1.3
- fixes CVE-2010-3853, CVE-2010-3431, CVE-2010-3430
- pam_unix: Add minlen option, change default from 6 to 0
- Update to Linux-PAM 1.1.2
- use %_smp_mflags
- Update to current CVS version (pam_rootok: Add support for
chauthtok and acct_mgmt, [bnc#533249])
- Install correct documentation
- Update to Linux-PAM 1.1.1 (bug fix release)
- add baselibs.conf as a source
- enable parallel building
- Add fixes from CVS
- Update to final version 1.1.0 (spelling fixes)
- Update to version 1.0.92:
* Update translations
* pam_succeed_if: Use provided username
* pam_mkhomedir: Fix handling of options
- Remove cracklib-dict-full and pwdutils BuildRequires again.
- Update to version 1.0.91 aka 1.1 Beta2:
* Changes in the behavior of the password stack. Results of
PRELIM_CHECK are not used for the final run.
* Redefine LOCAL keyword of pam_access configuration file
* Add support for try_first_pass and use_first_pass to
pam_cracklib
* New password quality tests in pam_cracklib
* Add support for passing PAM_AUTHTOK to stdin of helpers from
pam_exec
* New options for pam_lastlog to show last failed login attempt and
to disable lastlog update
* New pam_pwhistory module to store last used passwords
* New pam_tally2 module similar to pam_tally with wordsize independent
tally data format, obsoletes pam_tally
* Make libpam not log missing module if its type is prepended with '-'
* New pam_timestamp module for authentication based on recent successful
login.
* Add blowfish support to pam_unix.
* Add support for user specific environment file to pam_env.
* Add pam_get_authtok to libpam as Linux-PAM extension.
- use sr@latin instead of sr@Latn
- Log failures of setrlimit in pam_limits [bnc#448314]
- Fix using of requisite in password stack [bnc#470337]
- Regenerate documentation [bnc#448314]
- use Obsoletes: -XXbit only for ppc64 to help solver during distupgrade
(bnc#437293)
- obsolete old -XXbit packages (bnc#437293)
- enhance the man page for limits.conf (bnc#448314)
- pam_time: fix parsing if '|' is used [bdo#326407]
- pam_xauth: update last patch
- pam_pwhistory: add missing type option
- pam_xauth: put XAUTHLOCALHOSTNAME into new enviroment
(bnc#441314)
- Add pam_tally2
- Regenerate Documentation
- Enhance pam_lastlog with status output
- Add pam_pwhistory as tech preview
- pam_tally: fix fd leak
- pam_mail: fix "quiet" option
- Update to version 1.0.2 (fix SELinux regression)
- enhance pam_tally [FATE#303753]
- Backport fixes from CVS
- enabled SELinux support [Fate#303662]
- Update to version 1.0.1:
- Fixes regression in pam_set_item().
- added baselibs.conf file to build xxbit packages
for multilib support
- Remove devfs lines from securetty [bnc#372241]
- Update to version 1.0.0:
- Official first "stable" release
- bug fixes
- translation updates
- Update to version 0.99.10.0:
- New substack directive in config file syntax
- New module pam_tty_audit.so for enabling and disabling tty
auditing
- New PAM items PAM_XDISPLAY and PAM_XAUTHDATA
- Improved functionality of pam_namespace.so module (method flags,
namespace.d configuration directory, new options).
- Finaly removed deprecated pam_rhosts_auth module.
- Update to version 0.99.9.0:
- misc_conv no longer blocks SIGINT; applications that don't want
user-interruptable prompts should block SIGINT themselves
- Merge fixes from Debian
- Fix parser for pam_group and pam_time
- Update to version 0.99.8.1:
- Fix regression in pam_audit
- Update to version 0.99.8.0:
- Add translations for ar, ca, da, ru, sv and zu.
- Update hungarian translation.
- Add support for limits.d directory to pam_limits.
- Add minclass option to pam_cracklib
- Add new group syntax to pam_access
- move the documentation into a seperate package (pam-doc)
[partly fixes Bug #265733]
- add flex and bison BuildRequires
- add %verify_permissions for /sbin/unix_chkpwd
[#237625]
- Update to Version 0.99.7.1 (security fix)
- Update to Version 0.99.7.0
* Add manual page for pam_unix.so.
* Add pam_faildelay module to set pam_fail_delay() value.
* Fix possible seg.fault in libpam/pam_set_data().
* Cleanup of configure options.
* Update hungarian translation, fix german translation.
- install unix_chkpwd setuid root instead of setgid shadow (#216816)
- pam_unix.so/unix_chkpwd: teach about blowfish [#213929]
- pam_namespace.so: Fix two possible buffer overflow
- link against libxcrypt
- Update hungarian translation [#210091]
- Don't remove pam_unix.so
- Use cracklib again (goes lost with one of the last cleanups)
- Add pam_umask.so to common-session [Fate#3621]
- Update to Linux-PAM 0.99.6.3 (merges all patches)
- Update to Linux-PAM 0.99.6.2 (incorporate last change)
- Add pam_loginuid and fixes from CVS [Fate#300486]
- Fix seg.fault in pam_cracklib if retyped password is empty
- Remove use_first_pass from pam_unix2.so in password section
- Update to Linux-PAM 0.99.6.1 (big documentation update)
- Add missing namespace.init script
- Reenable audit subsystem [Fate#300486]
- Update to Linux-PAM 0.99.5.0 (more manual pages, three new PAM
modules: pam_keyinit, pam_namespace, pam_rhosts)
- Update to current CVS (lot of new manual pages and docu)
- Update to Linux-PAM 0.99.4.0 (merge all patches and translations)
- Fix problems found by Coverity
- Don't strip binaries.
- Fix pam_tally LFS support [#172492]
- Update fr.po and pl.po
- Update km.po
- Remove obsolete pam-laus from the system
- Update translations for pt, pl, fr, fi and cs
- Add translation for uk
- Update hu.po
- Add translation for tr
- Fix order of NULL checks in pam_get_user
- Fix comment in pam_lastlog for translators to be visible in
pot file
- Docu update, remove pam_selinux docu
- Update km translation
- pam_lastlog:
- Initialize correct struct member [SF#1427401]
- Mark strftime fmt string for translation [SF#1428269]
- Update more manual pages
- really disable audit if header file not present
- Update fi.po
- Add km.po
- Update pl.po
- Update with better manual pages
- Add translation for nl, update pt translation
- Move devel manual pages to -devel package
- Mark PAM config files as noreplace
- Mark /etc/securetty as noreplace
- Run ldconfig
- Fix libdb/ndbm compat detection with gdbm
- Adjust german translation
- Add all services to pam_listfile
- converted neededforbuild to BuildRequires
- Update to Linux-PAM 0.99.3.0 release candiate tar balls
(new translations)
- Fix NULL handling for LSB-pam test suite [#141240]
- Fix usage of PAM_AUTHTOK_RECOVER_ERR vs. PAM_AUTHTOK_RECOVERY_ERR
- NULL is allowed as thirs argument for pam_get_item [#141240]
- Add fixes from CVS
- Fix pam_lastlog: don't report error on first login
- Update to 0.99.2.1
- Add /etc/environment to avoid warnings in syslog
- disable SELinux
- Update getlogin() fix to final one
- Fix PAM getlogin() implementation
- Update to official 0.99.2.0 release
- Update to new snapshot
- Enable original pam_wheel module
- Update to current CVS
- Compile libpam_misc with -fno-strict-aliasing
- Update to current CVS
- Fix compiling of pammodutil with -fPIC
- Update to current CVS
- Update to new snapshot (Major version is back to 0)
- Update to Linux-PAM 0.99.0.3 snapshot
- Add pam_umask
- Update to current CVS snapshot
- Update to current CVS snapshot
- Add pam_loginuid
- Update to current CVS snapshot
- Don't reset priority [#81690]
- Fix creating of symlinks
- Update to current CVS snapshot
- Real fix for [#82687] (don't include kernel header files)
- Bug 82687 - pam_client.h redefines __u8 and __u32
- Apply lot of fixes from CVS (including SELinux support)
- Update to final 0.79 release
- Apply patch for pam_xauth to preserve DISPLAY variable [#66885]
- Compile with large file support
- Made patch of latest CVS tree
- Removed patch pam_handler.diff ( included in CVS now )
- moved Linux-PAM-0.78.dif to pam_group_time.diff
- Fix seg.fault, if a PAM config line is incomplete
- Update to final 0.78
- Add pam_env.so to common-auth
- Add pam_limit.so to common-session
- Update to 0.78-Beta1
- Create pam.d/common-{auth,account,password,session} and include
them in pam.d/other
- Update to current CVS version of upcoming 0.78 release
- Update "code cleanup" patch
- Disable reading of /etc/environment in pam_env.so per default
- Reenable a "fixed" version of "code cleanup" patch
- Use pam_wheel from pam-modules package
- Disable "code cleanup" patch (no more comments about security
fixes)
- Apply big "code cleanup" patch [Bug #39673]
- pam_wheel: Use original getlogin again, PAM internal does not
work without application help [Bug #35682]
- We no longer have pam in the buildsystem, so we
need some buildroot magic flags for the dlopen tests.
- Cleanup neededforbuild
- Add manual pages from SLES8
- Fix installing manual pages of modules
- Remove pthread check (db is now linked against pthread)
- Merge with current CVS
- Apply bug fixes from bugtracking system
- Build as normal user
- Compile with noexecstack
- Fix pam_securetty CVS patch
- Sync with current CVS version
- Add patch to implement "include" statement in pamd files
- added ttyS1 (VT220) to securetty on s390* (bug #29239)
- Apply lot of fixes for various problems
- Fix getlogin handling in pam_wheel.so
- added cracklib-devel to neededforbuild
- Update pam_localuser and pam_xauth.
- Update to Linux-PAM 0.77 (minor bug fixes and enhancemants)
- changed neededforbuild <sp> to <opensp>
- changed securetty / use extra file
- 390: standard console (4,64)/ttyS0 ->only ttyS0 in /etc/securetty
- Call password checking helper from pam_unix.so whenever the
passwd field is invalid.
- Don't build ps and pdf documentation
- pam-devel requires pam [Bug #17543]
- Remove explicit requires
- Update to Linux-PAM 0.76
- Remove reentrant patch for original PAM modules (needs to be
rewritten for new PAM version)
- Add docu in PDF format
- Fix build on different partitions
- Fix to not own /usr/shar/man/man3
- Add /usr/include/security to pam-devel filelist
- tar option for bz2 is "j"
- Fix last pam_securetty patch
- Use reentrant getpwnam functions for most modules
- Fix unresolved symbols in pam_access and pam_userdb
- libpam_misc: Don't handle Ctrl-D as error.
- Remove SuSEconfig.pam
- Update pam_localuser and pam_xauth
- Add new READMEs about blowfish and cracklib
- Remove pam_unix.so (is part of pam-modules)
- Move extra PAM modules to separate package
- Require pam-modules package
- Move susehelp config file to susehelp package
- changed neededforbuild <sp_libs> to <sp-devel>
- Fixes wrong symlink handling of pam_homecheck [Bug #3905]
- Sync pam_homecheck and pam_unix2 fixes from 7.2
- Always ask for the old password if it is expired
- Cleanup Patches, make tar archive from extra pam modules
- Use LOG_NOTICE for trace option [Bug #7673]
- Linux-PAM: link pam_access against libnsl
- Add pam.conf for susehelp/pam html docu
- Linux-PAM: Update to version 0.75
- Linux-PAM: link libpam_misc against libpam [Bug #6890]
- Linux-PAM: Fix manual pages (.so reference)
- pam_pwcheck: fix Makefile
- Update for Linux-PAM 0.74
- Drop pwdb subpackage
- pam_unix2: Create temp files with permission 0600
- pam_issue.c: include time.h to make it compile
- Don't print error message about failed initialization from
pam_limits with kernel 2.2 [Bug #5198]
- Adjust docu for pam_limits
- Adjust docu for pam_pwcheck
- Add fix for pam_limits from 0.73
- Add db-devel to need for build
- Don't link PAM modules against old libpam library
- Create new "devel" subpackage
- Add SuSEconfig.pam
- Fix problems with new gcc and glibc 2.2 header files
- Fix problem with passwords longer then PASS_MAX_LEN
- Add missing PAM modules to filelist
- Fix seg.fault in pam_pwcheck [BUG #3894]
- Clean spec file
- Lot of bug fixes in pam_unix2 and pam_pwcheck
- compress postscript docu
- Move docu to /usr/share/doc/pam
- Fix some bugs in pam_unix2 and pam_pwcheck
- Add pam_homecheck Module
- Add devfs devices to /etc/securetty
- Fix handling of changing passwords to empty one
- Set correct attr for unix_chkpwd and pwdb_chkpwd
- Update pam_pwcheck
- Update pam_unix2
- pwdb: Update to 0.61
- Add config files and README for md5 passwords
- Update pam_pwcheck
- Update pam_unix2
- Update pam_unix2
- New: pam_pwcheck
- Update to Linux-PAM 0.72
- pam_pwdb: Add security fixes from RedHat
- Update to Linux-PAM 0.70
- Update to pwdb-0.60
- Fix more pam_unix2 shadow bugs
- Add more PAM fixes
- Implement Password changing request (sp_lstchg == 0)
- ran old prepare_spec on spec file to switch to new prepare_spec.
- Add pam_wheel to file list
- pam_wheel: Minor fixes
- pam_unix2: root is allowed to change passwords with wrong
password aging information
- pam_unix2: Fix typo
- Linux-PAM: Update to version 0.69
- pam_unix2: Root is allowed to use the old password again.
- pam_unix2: Allow root to set an empty password.
- Add HP-UX password aging to pam_unix2.
- Don't install .cvsignore files
- Make sure, /etc/shadow has the correct rights
- Update to Linux-PAM 0.68
- pam_unix2: more bug fixes
- pam_unix2: Fix "inactive" password
- pam_warn: Add missing functions
- other.pamd: Update
- Add more doku
- Add securetty config file
- Fix Debian pam_env patch
- Update to Linux-PAM 0.67
- Add Debian pam_env patch
- pam_ftp malloc (core dump) fix
- pam_unix2 fixes
- First PAM package: pam 0.66, pwdb 0.57 and pam_unix2
OBS-URL: https://build.opensuse.org/request/show/933489
OBS-URL: https://build.opensuse.org/package/show/Linux-PAM/pam?expand=0&rev=256
2021-11-24 16:07:30 +01:00
|
|
|
spec file.
|
2021-11-24 14:43:37 +01:00
|
|
|
|
2021-11-18 15:13:26 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Nov 17 04:14:18 UTC 2021 - Stanislav Brabec <sbrabec@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update pam-login_defs-check.sh regexp and
|
|
|
|
|
login_defs-support-for-pam symbol to version 1.5.2
|
|
|
|
|
(new variable HMAC_CRYPTO_ALGO).
|
|
|
|
|
|
2021-11-03 08:33:24 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Nov 2 20:32:04 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
|
|
|
|
|
|
|
|
|
|
- Add /run/pam_timestamp to pam.tmpfiles
|
|
|
|
|
|
2021-10-18 09:41:15 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Oct 12 13:49:53 UTC 2021 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Corrected macro definition of %_pam_moduledir:
|
|
|
|
|
%_pam_moduledir %{_libdir}/security
|
|
|
|
|
[macros.pam]
|
|
|
|
|
|
2021-10-11 08:28:05 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Oct 6 09:14:11 UTC 2021 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Prepend a slash to the expansion of %{_lib} in macros.pam as
|
|
|
|
|
this are defined without a leading slash!
|
|
|
|
|
|
2021-09-15 15:55:27 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Sep 15 13:34:52 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Rename motd.tmpfiles to pam.tmpfiles
|
|
|
|
|
- Add /run/faillock directory
|
|
|
|
|
|
2021-09-10 12:28:05 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Sep 10 10:08:28 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam-login_defs-check.sh: adjust for new login.defs variable usages
|
|
|
|
|
|
2021-09-10 11:48:01 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Sep 6 11:51:30 UTC 2021 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to 1.5.2
|
|
|
|
|
Noteworthy changes in Linux-PAM 1.5.2:
|
|
|
|
|
|
|
|
|
|
* pam_exec: implemented quiet_log option.
|
|
|
|
|
* pam_mkhomedir: added support of HOME_MODE and UMASK from
|
|
|
|
|
/etc/login.defs.
|
|
|
|
|
* pam_timestamp: changed hmac algorithm to call openssl instead
|
|
|
|
|
of the bundled sha1 implementation if selected, added option
|
|
|
|
|
to select the hash algorithm to use with HMAC.
|
|
|
|
|
* Added pkgconfig files for provided libraries.
|
|
|
|
|
* Added --with-systemdunitdir configure option to specify systemd
|
|
|
|
|
unit directory.
|
|
|
|
|
* Added --with-misc-conv-bufsize configure option to specify the
|
|
|
|
|
buffer size in libpam_misc's misc_conv() function, raised the
|
|
|
|
|
default value for this parameter from 512 to 4096.
|
|
|
|
|
* Multiple minor bug fixes, portability fixes, documentation
|
|
|
|
|
improvements, and translation updates.
|
|
|
|
|
|
2021-09-10 12:28:05 +02:00
|
|
|
pam_tally2 has been removed upstream, remove pam_tally2-removal.patch
|
|
|
|
|
|
2021-09-10 11:48:01 +02:00
|
|
|
pam_cracklib has been removed from the upstream sources. This
|
|
|
|
|
obsoletes pam-pam_cracklib-add-usersubstr.patch and
|
|
|
|
|
pam_cracklib-removal.patch.
|
|
|
|
|
The following patches have been accepted upstream and, so,
|
|
|
|
|
are obsolete:
|
|
|
|
|
- pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch
|
|
|
|
|
- pam_securetty-don-t-complain-about-missing-config.patch
|
|
|
|
|
- bsc1184358-prevent-LOCAL-from-being-resolved.patch
|
|
|
|
|
- revert-check_shadow_expiry.diff
|
|
|
|
|
|
|
|
|
|
[Linux-PAM-1.5.2-docs.tar.xz, Linux-PAM-1.5.2-docs.tar.xz.asc,
|
|
|
|
|
Linux-PAM-1.5.2.tar.xz, Linux-PAM-1.5.2.tar.xz.asc,
|
|
|
|
|
pam-pam_cracklib-add-usersubstr.patch, pam_cracklib-removal.patch,
|
|
|
|
|
pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch,
|
|
|
|
|
pam_securetty-don-t-complain-about-missing-config.patch,
|
|
|
|
|
bsc1184358-prevent-LOCAL-from-being-resolved.patch,
|
|
|
|
|
revert-check_shadow_expiry.diff]
|
|
|
|
|
|
2021-08-09 10:32:39 +02:00
|
|
|
-------------------------------------------------------------------
|
2021-08-12 16:45:10 +02:00
|
|
|
Thu Aug 12 14:42:54 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_umask-usergroups-login_defs.patch: Deprecate pam_umask
|
|
|
|
|
explicit "usergroups" option and instead read it from login.def's
|
|
|
|
|
"USERGROUP_ENAB" option if umask is only defined there.
|
|
|
|
|
[bsc#1189139]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2021-08-09 10:32:39 +02:00
|
|
|
Tue Aug 3 09:26:00 UTC 2021 - pgajdos@suse.com
|
|
|
|
|
|
|
|
|
|
- package man5/motd.5 as a man-pages link to man8/pam_motd.8
|
|
|
|
|
[bsc#1188724]
|
|
|
|
|
|
2021-07-13 15:43:07 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jul 13 13:40:00 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- revert-check_shadow_expiry.diff: revert wrong
|
|
|
|
|
CRYPT_SALT_METHOD_LEGACY check.
|
|
|
|
|
|
2021-06-25 11:44:49 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jun 25 08:07:04 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
|
|
|
|
|
|
|
|
|
|
- Create /run/motd.d
|
|
|
|
|
|
2021-07-09 14:12:20 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jun 9 14:01:19 UTC 2021 - Ludwig Nussel <lnussel@suse.de>
|
|
|
|
|
|
|
|
|
|
- Remove legacy pre-usrmerge compat code (removed pam-usrmerge.diff)
|
|
|
|
|
- Backport patch to not install /usr/etc/securetty (boo#1033626) ie
|
|
|
|
|
no distro defaults and don't complain about it missing
|
|
|
|
|
(pam_securetty-don-t-complain-about-missing-config.patch)
|
|
|
|
|
- add debug bcond to be able to build pam with debug output easily
|
|
|
|
|
- add macros file to allow other packages to stop hardcoding
|
|
|
|
|
directory names. Compatible with Fedora.
|
|
|
|
|
|
2021-05-17 08:51:34 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon May 10 14:22:01 UTC 2021 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- In the 32-bit compatibility package for 64-bit architectures,
|
|
|
|
|
require "systemd-32bit" to be also installed as it contains
|
|
|
|
|
pam_systemd.so for 32 bit applications.
|
|
|
|
|
[bsc#1185562, baselibs.conf]
|
|
|
|
|
|
2021-04-07 15:01:25 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Apr 7 12:20:40 UTC 2021 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- If "LOCAL" is configured in access.conf, and a login attempt from
|
|
|
|
|
a remote host is made, pam_access tries to resolve "LOCAL" as
|
|
|
|
|
a hostname and logs a failure.
|
|
|
|
|
Checking explicitly for "LOCAL" and rejecting access in this case
|
|
|
|
|
resolves this issue.
|
|
|
|
|
[bsc#1184358, bsc1184358-prevent-LOCAL-from-being-resolved.patch]
|
|
|
|
|
|
2021-04-01 10:02:50 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Mar 31 11:43:17 UTC 2021 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_limits: "unlimited" is not a legitimate value for "nofile"
|
|
|
|
|
(see setrlimit(2)). So, when "nofile" is set to one of the
|
|
|
|
|
"unlimited" values, it is set to the contents of
|
|
|
|
|
"/proc/sys/fs/nr_open" instead.
|
|
|
|
|
Also changed the manpage of pam_limits to express this.
|
|
|
|
|
[bsc#1181443, pam-bsc1181443-make-nofile-unlimited-mean-nr_open.patch]
|
|
|
|
|
|
2021-02-18 23:17:30 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Feb 18 22:16:43 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Add missing conflicts for pam_unix-nis
|
|
|
|
|
|
2021-02-16 11:28:19 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Feb 16 10:27:04 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Split out pam_unix module and build without NIS support
|
|
|
|
|
|
2020-11-27 10:37:31 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Nov 27 09:10:28 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to 1.5.1
|
|
|
|
|
- pam_unix: fixed CVE-2020-27780 - authentication bypass when a user
|
|
|
|
|
doesn't exist and root password is blank [bsc#1179166]
|
|
|
|
|
- pam_faillock: added nodelay option to not set pam_fail_delay
|
|
|
|
|
- pam_wheel: use pam_modutil_user_in_group to check for the group membership
|
|
|
|
|
with getgrouplist where it is available
|
|
|
|
|
|
2020-12-03 14:58:29 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 26 13:31:52 UTC 2020 - Ludwig Nussel <lnussel@suse.de>
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- add macros.pam to abstract directory for pam modules
|
2020-12-03 14:58:29 +01:00
|
|
|
|
2020-11-19 16:52:27 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 19 15:43:33 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to 1.5.0
|
|
|
|
|
- obsoletes pam-bsc1178727-initialize-daysleft.patch
|
|
|
|
|
- Multiple minor bug fixes, portability fixes, and documentation improvements.
|
|
|
|
|
- Extended libpam API with pam_modutil_check_user_in_passwd function.
|
|
|
|
|
- pam_faillock: changed /run/faillock/$USER permissions from 0600 to 0660.
|
|
|
|
|
- pam_motd: read motd files with target user credentials skipping unreadable ones.
|
|
|
|
|
- pam_pwhistory: added a SELinux helper executable.
|
|
|
|
|
- pam_unix, pam_usertype: implemented avoidance of certain timing attacks.
|
|
|
|
|
- pam_wheel: implemented PAM_RUSER fallback for the case when getlogin fails.
|
|
|
|
|
- pam_env: Reading of the user environment is deprecated and will be removed
|
|
|
|
|
at some point in the future.
|
|
|
|
|
- libpam: pam_modutil_drop_priv() now correctly sets the target user's
|
|
|
|
|
supplementary groups, allowing pam_motd to filter messages accordingly
|
|
|
|
|
- Refresh pam-xauth_ownership.patch
|
|
|
|
|
- pam_tally2-removal.patch: Re-add pam_tally2 for deprecated sub-package
|
|
|
|
|
- pam_cracklib-removal.patch: Re-add pam_cracklib for deprecated sub-package
|
|
|
|
|
|
2020-11-19 12:13:17 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Nov 18 13:02:15 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_cracklib: added code to check whether the password contains
|
|
|
|
|
a substring of of the user's name of at least <N> characters length
|
|
|
|
|
in some form.
|
|
|
|
|
This is enabled by the new parameter "usersubstr=<N>"
|
|
|
|
|
See https://github.com/libpwquality/libpwquality/commit/bfef79dbe6aa525e9557bf4b0a61e6dde12749c4
|
|
|
|
|
[jsc#SLE-16719, jsc#SLE-16720, pam-pam_cracklib-add-usersubstr.patch]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Nov 18 10:02:32 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_xauth.c: do not free() a string which has been (successfully)
|
|
|
|
|
passed to putenv().
|
|
|
|
|
[bsc#1177858, pam-bsc1177858-dont-free-environment-string.patch]
|
|
|
|
|
|
2020-11-16 15:19:30 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Nov 13 09:13:18 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Initialize pam_unix pam_sm_acct_mgmt() local variable "daysleft"
|
|
|
|
|
to avoid spurious (and misleading)
|
|
|
|
|
Warning: your password will expire in ... days.
|
|
|
|
|
fixed upstream with commit db6b293046a
|
|
|
|
|
[bsc#1178727, pam-bsc1178727-initialize-daysleft.patch]
|
|
|
|
|
|
2020-11-10 13:23:49 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Nov 10 11:09:39 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Enable pam_faillock [bnc#1171562]
|
|
|
|
|
|
2020-12-03 14:58:29 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Oct 29 10:10:23 UTC 2020 - Ludwig Nussel <lnussel@suse.de>
|
|
|
|
|
|
|
|
|
|
- prepare usrmerge (boo#1029961, pam-usrmerge.diff)
|
|
|
|
|
|
2020-10-08 11:10:15 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Oct 8 13:31:39 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- /usr/bin/xauth chokes on the old user's $HOME being on an NFS
|
|
|
|
|
file system. Run /usr/bin/xauth using the old user's uid/gid
|
|
|
|
|
Patch courtesy of Dr. Werner Fink.
|
|
|
|
|
[bsc#1174593, pam-xauth_ownership.patch]
|
|
|
|
|
|
2020-10-08 10:51:25 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Oct 8 02:33:16 UTC 2020 - Stanislav Brabec <sbrabec@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam-login_defs-check.sh: Fix the regexp to get a real variable
|
|
|
|
|
list (boo#1164274).
|
|
|
|
|
|
2020-06-29 16:11:14 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jun 24 13:06:33 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Revert the previous change [SR#815713].
|
|
|
|
|
The group is not necessary for PAM functionality but used only
|
|
|
|
|
during testing. The test system should therefore create this group.
|
|
|
|
|
[bsc#1171016, pam.spec]
|
|
|
|
|
|
2020-06-22 15:29:55 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 15 15:05:18 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Add requirement for group "wheel" to spec file.
|
|
|
|
|
[bsc#1171016, pam.spec]
|
|
|
|
|
|
2020-06-08 15:50:31 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 8 13:19:12 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to final 1.4.0 release
|
|
|
|
|
- includes pam-check-user-home-dir.patch
|
|
|
|
|
- obsoletes fix-man-links.dif
|
|
|
|
|
|
2020-06-08 10:00:42 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 8 07:59:58 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- common-password: remove pam_cracklib, as that is deprecated.
|
|
|
|
|
|
2020-06-08 08:48:10 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu May 28 12:36:33 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_setquota.so:
|
|
|
|
|
When setting quota, don't apply any quota if the user's $HOME is
|
|
|
|
|
a mountpoint (ie the user has a partition of his/her own).
|
|
|
|
|
[bsc#1171721, pam-check-user-home-dir.patch]
|
|
|
|
|
|
2020-05-27 11:48:06 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed May 27 09:27:32 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to current Linux-PAM snapshot
|
|
|
|
|
- pam_tally* and pam_cracklib got deprecated
|
|
|
|
|
- Disable pam_faillock and pam_setquota until they are whitelisted
|
|
|
|
|
|
2020-05-12 14:19:16 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue May 12 11:44:19 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Adapted patch pam-hostnames-in-access_conf.patch for new version
|
|
|
|
|
New version obsoleted patch use-correct-IP-address.patch
|
|
|
|
|
[pam-hostnames-in-access_conf.patch,
|
|
|
|
|
use-correct-IP-address.patch]
|
|
|
|
|
|
2020-05-12 13:32:07 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue May 12 11:30:27 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to current Linux-PAM snapshot
|
|
|
|
|
- Obsoletes pam_namespace-systemd.diff
|
|
|
|
|
|
2020-05-12 11:30:59 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue May 12 09:24:46 UTC 2020 - Thorsten Kukuk <kukuk@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to current Linux-PAM snapshot
|
2020-05-12 14:36:23 +02:00
|
|
|
- Add pam_faillock
|
2020-05-12 11:30:59 +02:00
|
|
|
- Multiple minor bug fixes and documentation improvements
|
|
|
|
|
- Fixed grammar of messages printed via pam_prompt
|
|
|
|
|
- Added support for a vendor directory and libeconf
|
|
|
|
|
- configure: Allowed disabling documentation through --disable-doc
|
|
|
|
|
- pam_get_authtok_verify: Avoid duplicate password verification
|
|
|
|
|
- pam_env: Changed the default to not read the user .pam_environment file
|
|
|
|
|
- pam_group, pam_time: Fixed logical error with multiple ! operators
|
|
|
|
|
- pam_keyinit: In pam_sm_setcred do the same as in pam_sm_open_session
|
|
|
|
|
- pam_lastlog: Do not log info about failed login if the session was opened
|
|
|
|
|
with PAM_SILENT flag
|
|
|
|
|
- pam_lastlog: Limit lastlog file use by LASTLOG_UID_MAX option in login.defs
|
|
|
|
|
- pam_lastlog: With 'unlimited' option prevent SIGXFSZ due to reduced 'fsize'
|
|
|
|
|
limit
|
|
|
|
|
- pam_motd: Export MOTD_SHOWN=pam after showing MOTD
|
|
|
|
|
- pam_motd: Support multiple motd paths specified, with filename overrides
|
|
|
|
|
- pam_namespace: Added a systemd service, which creates the namespaced
|
|
|
|
|
instance parent directories during boot
|
|
|
|
|
- pam_namespace: Support for noexec, nosuid and nodev flags for tmpfs mounts
|
|
|
|
|
- pam_shells: Recognize /bin/sh as the default shell
|
|
|
|
|
- pam_succeed_if: Support lists in group membership checks
|
|
|
|
|
- pam_tty_audit: If kernel audit is disabled return PAM_IGNORE
|
|
|
|
|
- pam_umask: Added new 'nousergroups' module argument and allowed specifying
|
|
|
|
|
the default for usergroups at build-time
|
|
|
|
|
- pam_unix: Added 'nullresetok' option to allow resetting blank passwords
|
|
|
|
|
- pam_unix: Report unusable hashes found by checksalt to syslog
|
|
|
|
|
- pam_unix: Support for (gost-)yescrypt hashing methods
|
|
|
|
|
- pam_unix: Use bcrypt b-variant when it bcrypt is chosen
|
|
|
|
|
- pam_usertype: New module to tell if uid is in login.defs ranges
|
|
|
|
|
- Added new API call pam_start_confdir() for special applications that
|
|
|
|
|
cannot use the system-default PAM configuration paths and need to
|
|
|
|
|
explicitly specify another path
|
|
|
|
|
- pam_namespace-systemd.diff: fix path of pam_namespace.services
|
|
|
|
|
|
2020-04-03 08:26:25 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Apr 2 09:51:31 UTC 2020 - Ludwig Nussel <lnussel@suse.de>
|
|
|
|
|
|
|
|
|
|
- own /usr/lib/motd.d/ so other packages can add files there
|
|
|
|
|
|
2020-03-26 11:22:45 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Mar 24 07:09:55 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Listed all manual pages seperately as pam_userdb.8 has been moved
|
|
|
|
|
to pam-extra.
|
|
|
|
|
Also %exclude %{_defaultdocdir}/pam as the docs are in a separate
|
|
|
|
|
package.
|
|
|
|
|
[pam.spec]
|
|
|
|
|
|
2020-03-21 16:44:00 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Mar 16 13:26:27 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- pam_userdb moved to a new package pam-extra as pam-modules
|
|
|
|
|
is obsolete and not part of SLE.
|
|
|
|
|
[bsc#1166510, pam.spec]
|
|
|
|
|
|
2020-03-12 18:33:26 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Mar 12 16:01:46 UTC 2020 - Josef Möllers <josef.moellers@suse.com>
|
|
|
|
|
|
|
|
|
|
- Removed pam_userdb from this package and moved to pam-modules.
|
|
|
|
|
This removed the requirement for libdb.
|
|
|
|
|
Also made "xz" required for all releases.
|
2020-03-13 11:05:34 +01:00
|
|
|
Remove limits for nproc from /etc/security/limits.conf
|
|
|
|
|
[bsc#1164562, bsc#1166510, bsc#1110700, pam.spec]
|
2020-03-12 18:33:26 +01:00
|
|
|
|
2020-02-27 15:49:37 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Feb 19 10:04:09 CET 2020 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Recommend login.defs only (no hard requirement)
|
|
|
|
|
|
2019-09-25 12:16:25 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Sep 24 11:15:19 UTC 2019 - kukuk@suse.com
|
|
|
|
|
|
|
|
|
|
- Update to version 1.3.1+git20190923.ea78d67:
|
|
|
|
|
* Fixed missing quotes in configure script
|
|
|
|
|
* Add support for a vendor directory and libeconf (#136)
|
|
|
|
|
* pam_lastlog: document the 'unlimited' option
|
|
|
|
|
* pam_lastlog: prevent crash due to reduced 'fsize' limit
|
|
|
|
|
* pam_unix_sess.c add uid for opening session
|
|
|
|
|
* Fix the man page for "pam_fail_delay()"
|
|
|
|
|
* Fix a typo
|
|
|
|
|
* Update a function comment
|
|
|
|
|
- drop usr-etc-support.patch (accepted upstream)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Sep 5 10:09:05 CEST 2019 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add migration support from /etc to /usr/etc during upgrade
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Sep 04 19:06:01 UTC 2019 - kukuk@suse.com
|
|
|
|
|
|
|
|
|
|
- Update to version 1.3.1+git20190902.9de67ee:
|
|
|
|
|
* pwhistory: fix read of uninitialized data and memory leak when modifying opasswd
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Aug 27 18:41:10 UTC 2019 - kukuk@suse.com
|
|
|
|
|
|
|
|
|
|
- Update to version 1.3.1+git20190826.1b087ed:
|
|
|
|
|
* libpam/pam_modutil_sanitize.c: optimize the way to close fds
|
|
|
|
|
|
2019-08-23 14:39:21 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Aug 22 20:29:24 UTC 2019 - Jan Engelhardt <jengelh@inai.de>
|
|
|
|
|
|
|
|
|
|
- Replace old $RPM_* shell vars by macros.
|
|
|
|
|
- Avoid unnecessary invocation of subshells.
|
|
|
|
|
- Shorten recipe for constructing securetty contents on s390.
|
|
|
|
|
|
2019-08-21 13:20:26 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Aug 19 14:45:43 CEST 2019 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- usr-etc-support.patch: Add support for /usr/etc/pam.d
|
|
|
|
|
|
2019-08-19 14:43:33 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Aug 19 13:33:49 CEST 2019 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- encryption_method_nis.diff: obsolete, NIS clients shouldn't
|
|
|
|
|
require DES anymore.
|
|
|
|
|
- etc.environment: removed, the sources contain the same
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Aug 19 11:28:31 UTC 2019 - kukuk@suse.com
|
|
|
|
|
|
|
|
|
|
- Update to version 1.3.1+git20190807.e31dd6c:
|
|
|
|
|
* pam_tty_audit: Manual page clarification about password logging
|
|
|
|
|
* pam_get_authtok_verify: Avoid duplicate password verification
|
|
|
|
|
* Mention that ./autogen.sh is needeed to be run if you check out the sources from git
|
|
|
|
|
* pam_unix: Correct MAXPASS define name in the previous two commits.
|
|
|
|
|
* Restrict password length when changing password
|
|
|
|
|
* Trim password at PAM_MAX_RESP_SIZE chars
|
|
|
|
|
* pam_succeed_if: Request user data only when needed
|
|
|
|
|
* pam_tally2: Remove unnecessary fsync()
|
|
|
|
|
* Fixed a grammer mistake
|
|
|
|
|
* Fix documentation for pam_wheel
|
|
|
|
|
* Fix a typo in the documentation
|
|
|
|
|
* pam_lastlog: Improve silent option documentation
|
|
|
|
|
* pam_lastlog: Respect PAM_SILENT flag
|
|
|
|
|
* Fix regressions from the last commits.
|
|
|
|
|
* Replace strndupa with strncpy
|
|
|
|
|
* build: ignore pam_lastlog when logwtmp is not available.
|
|
|
|
|
* build: ignore pam_rhosts if neither ruserok nor ruserok_af is available.
|
|
|
|
|
* pam_motd: Cleanup the code and avoid unnecessary logging
|
|
|
|
|
* pam_lastlog: Limit lastlog file use by LASTLOG_UID_MAX option in login.defs.
|
|
|
|
|
* Move the duplicated search_key function to pam_modutil.
|
|
|
|
|
* pam_unix: Use pam_syslog instead of helper_log_err.
|
|
|
|
|
* pam_unix: Report unusable hashes found by checksalt to syslog.
|
|
|
|
|
* Revert "pam_unix: Add crypt_default method, if supported."
|
|
|
|
|
* pam_unix: Add crypt_default method, if supported.
|
|
|
|
|
* Revert part of the commit 4da9febc
|
|
|
|
|
* pam_unix: Add support for (gost-)yescrypt hashing methods.
|
|
|
|
|
* pam_unix: Fix closing curly brace. (#77)
|
|
|
|
|
* pam_unix: Add support for crypt_checksalt, if libcrypt supports it.
|
|
|
|
|
* pam_unix: Prefer a gensalt function, that supports auto entropy.
|
|
|
|
|
* pam_motd: Fix segmentation fault when no motd_dir specified (#76)
|
|
|
|
|
* pam_motd: Support multiple motd paths specified, with filename overrides (#69)
|
|
|
|
|
* pam_unix: Use bcrypt b-variant for computing new hashes.
|
|
|
|
|
* pam_tally, pam_tally2: fix grammar and spelling (#54)
|
|
|
|
|
* Fix grammar of messages printed via pam_prompt
|
|
|
|
|
* pam_stress: do not mark messages for translation
|
|
|
|
|
* pam_unix: remove obsolete _UNIX_AUTHTOK, _UNIX_OLD_AUTHTOK, and _UNIX_NEW_AUTHTOK macros
|
|
|
|
|
* pam_unix: remove obsolete _unix_read_password prototype
|
|
|
|
|
|
2019-05-06 09:09:44 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu May 2 23:55:30 CEST 2019 - sbrabec@suse.com
|
|
|
|
|
|
|
|
|
|
- Add virtual symbols for login.defs compatibility (bsc#1121197).
|
|
|
|
|
- Add login.defs safety check pam-login_defs-check.sh
|
|
|
|
|
(bsc#1121197).
|
|
|
|
|
|
2018-11-16 18:08:18 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 15 15:41:08 UTC 2018 - josef.moellers@suse.com
|
|
|
|
|
|
|
|
|
|
- When comparing an incoming IP address with an entry in
|
|
|
|
|
access.conf that only specified a single host (ie no netmask),
|
|
|
|
|
the incoming IP address was used rather than the IP address from
|
|
|
|
|
access.conf, effectively comparing the incoming address with
|
|
|
|
|
itself. (Also fixed a small typo while I was at it)
|
2018-11-23 08:09:55 +01:00
|
|
|
{bsc#1115640, use-correct-IP-address.patch, CVE-2018-17953]
|
2018-11-16 18:08:18 +01:00
|
|
|
|
2018-10-22 14:46:59 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Oct 22 07:42:19 UTC 2018 - josef.moellers@suse.com
|
|
|
|
|
|
|
|
|
|
- Upgrade to 1.3.1
|
|
|
|
|
* pam_motd: add support for a motd.d directory
|
|
|
|
|
* pam_umask: Fix documentation to align with order of loading umask
|
|
|
|
|
* pam_get_user.3: Fix missing word in documentation
|
|
|
|
|
* pam_tally2 --reset: avoid creating a missing tallylog file
|
|
|
|
|
* pam_mkhomedir: Allow creating parent of homedir under /
|
|
|
|
|
* access.conf.5: Add note about spaces around ':'
|
|
|
|
|
* pam.8: Workaround formatting problem
|
|
|
|
|
* pam_unix: Check return value of malloc used for setcred data
|
|
|
|
|
* pam_cracklib: Drop unused prompt macros
|
|
|
|
|
* pam_tty_audit: Support matching users by uid range
|
|
|
|
|
* pam_access: support parsing files in /etc/security/access.d/*.conf
|
|
|
|
|
* pam_localuser: Correct documentation
|
|
|
|
|
* pam_issue: Fix no prompting in parse escape codes mode
|
|
|
|
|
* Unification and cleanup of syslog log levels
|
|
|
|
|
Also: removed nproc limit, referred to systemd instead.
|
|
|
|
|
Patch5 (pam-fix-config-order-in-manpage.patch) not needed any more.
|
|
|
|
|
[bsc#1112508, pam-fix-config-order-in-manpage.patch]
|
|
|
|
|
|
2018-08-24 16:33:21 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Aug 24 09:35:18 UTC 2018 - psimons@suse.com
|
|
|
|
|
|
|
|
|
|
- Add libdb as build-time dependency to enable pam_userdb module.
|
|
|
|
|
This module is useful for implementing virtual user support for
|
|
|
|
|
vsftpd and possibly other daemons, too. [bsc#929711, fate#322538]
|
|
|
|
|
|
2018-07-13 17:28:53 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jul 13 15:48:58 CEST 2018 - sbrabec@suse.com
|
|
|
|
|
|
|
|
|
|
- Install empty directory /etc/security/namespace.d for
|
|
|
|
|
pam_namespace.so iscript.
|
|
|
|
|
|
2018-05-03 09:51:52 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu May 3 07:08:50 UTC 2018 - josef.moellers@suse.com
|
|
|
|
|
|
|
|
|
|
- pam_umask.8 needed to be patched as well.
|
|
|
|
|
[bsc#1089884, pam-fix-config-order-in-manpage.patch]
|
|
|
|
|
|
2018-05-02 16:44:06 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed May 2 12:32:40 UTC 2018 - josef.moellers@suse.com
|
|
|
|
|
|
|
|
|
|
- Changed order of configuration files to reflect actual code.
|
|
|
|
|
[bsc#1089884, pam-fix-config-order-in-manpage.patch]
|
|
|
|
|
|
2018-03-06 13:55:08 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Feb 22 15:10:42 UTC 2018 - fvogt@suse.com
|
|
|
|
|
|
|
|
|
|
- Use %license (boo#1082318)
|
|
|
|
|
|
2017-11-06 16:05:24 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Oct 12 08:55:29 UTC 2017 - schwab@suse.de
|
|
|
|
|
|
|
|
|
|
- Prerequire group(shadow), user(root)
|
|
|
|
|
|
2017-03-03 20:50:43 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 27 10:35:29 UTC 2017 - josef.moellers@suse.com
|
|
|
|
|
|
|
|
|
|
- Allow symbolic hostnames in access.conf file.
|
|
|
|
|
[pam-hostnames-in-access_conf.patch, boo#1019866]
|
|
|
|
|
|
2016-12-15 10:44:44 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Dec 8 12:41:05 UTC 2016 - josef.moellers@suse.com
|
|
|
|
|
|
|
|
|
|
- Increased nproc limits for non-privileged users to 4069/16384.
|
|
|
|
|
Removed limits for "root".
|
|
|
|
|
[pam-limit-nproc.patch, bsc#1012494, bsc#1013706]
|
|
|
|
|
|
2016-08-30 16:33:48 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sun Jul 31 11:08:19 UTC 2016 - develop7@develop7.info
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam-limit-nproc.patch: increased process limit to help
|
|
|
|
|
Chrome/Chromuim users with really lots of tabs. New limit gets
|
2016-08-30 16:33:48 +02:00
|
|
|
closer to UserTasksMax parameter in logind.conf
|
|
|
|
|
|
2016-07-28 14:29:55 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jul 28 14:29:09 CEST 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add doc directory to filelist.
|
|
|
|
|
|
2016-05-02 10:45:43 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon May 2 10:44:38 CEST 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove obsolete README.pam_tally [bsc#977973]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Apr 28 13:51:59 CEST 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update Linux-PAM to version 1.3.0
|
|
|
|
|
- Rediff encryption_method_nis.diff
|
2016-05-02 10:46:48 +02:00
|
|
|
- Link pam_unix against libtirpc and external libnsl to enable
|
|
|
|
|
IPv6 support.
|
2016-05-02 10:45:43 +02:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Apr 14 14:06:18 CEST 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add /sbin/unix2_chkpwd (moved from pam-modules)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Apr 11 15:09:04 CEST 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove (since accepted upstream):
|
|
|
|
|
- 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch
|
|
|
|
|
- 0002-Remove-enable-static-modules-option-and-support-from.patch
|
|
|
|
|
- 0003-fix-nis-checks.patch
|
|
|
|
|
- 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch
|
|
|
|
|
- 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch
|
|
|
|
|
|
2016-04-01 15:33:36 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Apr 1 15:32:37 CEST 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add 0005-Use-TI-RPC-functions-if-we-compile-and-link-against-.patch
|
|
|
|
|
- Replace IPv4 only functions
|
|
|
|
|
|
2016-04-01 10:39:02 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Apr 1 10:37:58 CEST 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix typo in common-account.pamd [bnc#959439]
|
|
|
|
|
|
2016-03-23 11:21:53 +01:00
|
|
|
-------------------------------------------------------------------
|
2016-03-29 14:25:43 +02:00
|
|
|
Tue Mar 29 14:25:02 CEST 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add 0004-PAM_EXTERN-isn-t-needed-anymore-but-don-t-remove-it-.patch
|
|
|
|
|
- readd PAM_EXTERN for external PAM modules
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2016-03-23 11:21:53 +01:00
|
|
|
Wed Mar 23 11:21:16 CET 2016 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add 0001-Remove-YP-dependencies-from-pam_access-they-were-nev.patch
|
2016-03-23 15:37:11 +01:00
|
|
|
- Add 0002-Remove-enable-static-modules-option-and-support-from.patch
|
|
|
|
|
- Add 0003-fix-nis-checks.patch
|
2016-03-23 11:21:53 +01:00
|
|
|
|
2015-07-25 19:48:00 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Jul 25 16:03:33 UTC 2015 - joschibrauchle@gmx.de
|
|
|
|
|
|
|
|
|
|
- Add folder /etc/security/limits.d as mentioned in 'man pam_limits'
|
|
|
|
|
|
2015-06-26 09:43:40 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jun 26 09:39:42 CEST 2015 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 1.2.1
|
|
|
|
|
- security update for CVE-2015-3238
|
|
|
|
|
|
2015-04-27 17:17:47 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Apr 27 17:14:40 CEST 2015 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 1.2.0
|
|
|
|
|
- obsoletes Linux-PAM-git-20150109.diff
|
|
|
|
|
|
2015-01-09 15:38:05 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 9 15:37:28 CET 2015 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Re-add lost patch encryption_method_nis.diff [bnc#906660]
|
|
|
|
|
|
2015-01-09 15:23:58 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 9 14:53:50 CET 2015 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current git:
|
|
|
|
|
- Linux-PAM-git-20150109.diff replaces Linux-PAM-git-20140127.diff
|
|
|
|
|
- obsoletes pam_loginuid-log_write_errors.diff
|
|
|
|
|
- obsoletes pam_xauth-sigpipe.diff
|
|
|
|
|
- obsoletes bug-870433_pam_timestamp-fix-directory-traversal.patch
|
|
|
|
|
|
2015-01-28 11:08:14 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 9 11:10:45 UTC 2015 - bwiedemann@suse.com
|
|
|
|
|
|
|
|
|
|
- increase process limit to 1200 to help chromium users with many tabs
|
|
|
|
|
|
2014-12-25 18:01:00 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue May 6 14:31:36 UTC 2014 - bwiedemann@suse.com
|
|
|
|
|
|
|
|
|
|
- limit number of processes to 700 to harden against fork-bombs
|
|
|
|
|
Add pam-limit-nproc.patch
|
|
|
|
|
|
2014-04-09 18:56:48 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Apr 9 16:02:17 UTC 2014 - ckornacker@suse.com
|
|
|
|
|
|
|
|
|
|
- Fix CVE-2014-2583: pam_timestamp path injection (bnc#870433)
|
|
|
|
|
bug-870433_pam_timestamp-fix-directory-traversal.patch
|
|
|
|
|
|
2014-04-01 17:39:24 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 1 15:35:56 UTC 2014 - ckornacker@suse.com
|
|
|
|
|
|
|
|
|
|
- adding sclp_line0/ttysclp0 to /etc/securetty on s390 (bnc#869664)
|
|
|
|
|
|
2014-01-27 17:10:16 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jan 27 17:05:11 CET 2014 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add pam_loginuid-log_write_errors.diff: log significant loginuid
|
|
|
|
|
write errors
|
|
|
|
|
- pam_xauth-sigpipe.diff: avoid potential SIGPIPE when writing to
|
|
|
|
|
xauth process
|
|
|
|
|
|
2014-01-27 15:48:02 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jan 27 15:14:34 CET 2014 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Update to current git (Linux-PAM-git-20140127.diff), which
|
2014-01-27 15:48:02 +01:00
|
|
|
obsoletes pam_loginuid-part1.diff, pam_loginuid-part2.diff and
|
|
|
|
|
Linux-PAM-git-20140109.diff.
|
|
|
|
|
- Fix gratuitous use of strdup and x_strdup
|
|
|
|
|
- pam_xauth: log fatal errors preventing xauth process execution
|
|
|
|
|
- pam_loginuid: cleanup loginuid buffer initialization
|
|
|
|
|
- libpam_misc: fix an inconsistency in handling memory allocation errors
|
|
|
|
|
- pam_limits: fix utmp->ut_user handling
|
|
|
|
|
- pam_mkhomedir: check and create home directory for the same user
|
|
|
|
|
- pam_limits: detect and ignore stale utmp entries
|
|
|
|
|
- Disable pam_userdb (remove db-devel from build requires)
|
|
|
|
|
|
2014-01-10 11:58:11 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 10 10:56:24 UTC 2014 - kukuk@suse.com
|
|
|
|
|
|
|
|
|
|
- Add pam_loginuid-part1.diff: Ignore missing /proc/self/loginuid
|
|
|
|
|
- Add pam_loginuid-part2.diff: Workaround to run pam_loginuid inside lxc
|
|
|
|
|
|
2014-01-09 17:43:05 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jan 9 17:31:27 CET 2014 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current git (Linux-PAM-git-20140109.diff, which
|
|
|
|
|
replaces pam_unix.diff and encryption_method_nis.diff)
|
|
|
|
|
- pam_access: fix debug level logging
|
|
|
|
|
- pam_warn: log flags passed to the module
|
|
|
|
|
- pam_securetty: check return value of fgets
|
|
|
|
|
- pam_lastlog: fix format string
|
|
|
|
|
- pam_loginuid: If the correct loginuid is already set, skip writing it
|
|
|
|
|
|
2013-11-28 12:01:38 +01:00
|
|
|
-------------------------------------------------------------------
|
2013-12-18 12:09:26 +01:00
|
|
|
Fri Nov 29 20:25:32 UTC 2013 - schwab@linux-m68k.org
|
|
|
|
|
|
|
|
|
|
- common-session.pamd: add missing newline
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2013-11-28 12:01:38 +01:00
|
|
|
Thu Nov 28 12:00:09 CET 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove libtrpc support to solve dependency/build cycles, plain
|
|
|
|
|
glibc is enough for now.
|
|
|
|
|
|
2013-11-12 13:46:50 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Nov 12 13:08:44 CET 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add encryption_method_nis.diff:
|
|
|
|
|
- implement pam_unix2 functionality to use another hash for
|
|
|
|
|
NIS passwords.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Nov 8 16:01:35 CET 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add pam_unix.diff:
|
|
|
|
|
- fix if /etc/login.defs uses DES
|
|
|
|
|
- ask always for old password if a NIS password will be changed
|
|
|
|
|
|
2013-09-28 11:29:22 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Sep 28 09:26:21 UTC 2013 - mc@suse.com
|
|
|
|
|
|
|
|
|
|
- fix manpages links (bnc#842872) [fix-man-links.dif]
|
|
|
|
|
|
2013-09-26 15:04:12 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Sep 20 21:42:54 UTC 2013 - hrvoje.senjan@gmail.com
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Explicitly add pam_systemd.so to list of modules in
|
2013-09-26 15:04:12 +02:00
|
|
|
common-session.pamd (bnc#812462)
|
|
|
|
|
|
2013-09-20 09:47:31 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Sep 20 09:43:38 CEST 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to official release 1.1.8 (1.1.7 + git-20130916.diff)
|
|
|
|
|
- Remove needless pam_tally-deprecated.diff patch
|
|
|
|
|
|
2013-09-16 11:59:31 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Sep 16 11:54:15 CEST 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Replace fix-compiler-warnings.diff with current git snapshot
|
|
|
|
|
(git-20130916.diff) for pam_unix.so:
|
|
|
|
|
- fix glibc warnings
|
|
|
|
|
- fix syntax error in SELinux code
|
|
|
|
|
- fix crash at login
|
|
|
|
|
|
2013-08-06 10:36:19 +02:00
|
|
|
-------------------------------------------------------------------
|
2013-09-12 10:06:49 +02:00
|
|
|
Thu Sep 12 10:05:53 CEST 2013 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Remove pam_unix-login.defs.diff, not needed anymore
|
2013-09-12 10:06:49 +02:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Sep 12 09:47:52 CEST 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 1.1.7 (bugfix release)
|
|
|
|
|
- Drop missing-DESTDIR.diff and pam-fix-includes.patch
|
|
|
|
|
- fix-compiler-warnings.diff: fix unchecked setuid return code
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2013-08-06 10:36:19 +02:00
|
|
|
Tue Aug 6 10:30:13 CEST 2013 - mc@suse.de
|
|
|
|
|
|
|
|
|
|
- adding hvc0-hvc7 to /etc/securetty on s390 (bnc#718516)
|
|
|
|
|
|
2013-06-03 17:25:22 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon May 27 12:26:53 CEST 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix typo in common-password [bnc#821526]
|
|
|
|
|
|
2013-04-28 16:35:39 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Apr 26 10:25:06 UTC 2013 - mmeister@suse.com
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Added libtool as BuildRequire, and autoreconf -i option to fix
|
2013-04-28 16:35:39 +02:00
|
|
|
build with new automake
|
|
|
|
|
|
2013-02-05 17:28:46 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Feb 5 17:28:25 CET 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update pam_unix-login.defs.diff patch to the final upstream
|
|
|
|
|
version.
|
|
|
|
|
|
2013-02-05 14:10:24 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Feb 5 14:09:06 CET 2013 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Adjust URL
|
|
|
|
|
- Add set_permission macro and PreReq
|
|
|
|
|
- Read default encryption method from /etc/login.defs
|
|
|
|
|
(pam_unix-login.defs.diff)
|
|
|
|
|
|
2013-01-25 14:50:35 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 25 13:49:36 UTC 2013 - kukuk@suse.com
|
|
|
|
|
|
|
|
|
|
- Remove deprecated pam_tally.so module, it's too buggy and can
|
|
|
|
|
destroy config and log files.
|
|
|
|
|
|
2012-11-12 14:43:46 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Nov 12 14:42:53 CET 2012 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Sync common-*.pamd config with pam-config (use pam_unix.so as
|
|
|
|
|
default).
|
|
|
|
|
|
2012-09-19 14:21:10 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Sep 19 14:20:54 CEST 2012 - kukuk@suse.de
|
|
|
|
|
|
2012-09-25 14:12:12 +02:00
|
|
|
- Fix building in Factory (add patch missing-DESTDIR.diff)
|
2012-09-19 14:21:10 +02:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Sep 14 10:55:31 CEST 2012 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 1.1.6
|
|
|
|
|
- Update translations
|
|
|
|
|
- pam_cracklib: Add more checks for weak passwords
|
|
|
|
|
- pam_lastlog: Never lock out root
|
|
|
|
|
- Lot of bug fixes and smaller enhancements
|
|
|
|
|
|
2012-05-10 05:15:08 +02:00
|
|
|
-------------------------------------------------------------------
|
2012-06-22 09:40:29 +02:00
|
|
|
Thu Jun 21 11:59:52 UTC 2012 - aj@suse.de
|
|
|
|
|
|
2012-09-25 10:56:56 +02:00
|
|
|
- Include correct headers for getrlimit (add patch pam-fix-includes.patch).
|
2012-06-22 09:40:29 +02:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2012-05-10 05:15:08 +02:00
|
|
|
Mon Apr 23 15:30:02 UTC 2012 - jengelh@medozas.de
|
|
|
|
|
|
|
|
|
|
- Update homepage URL in specfile
|
|
|
|
|
|
2012-03-19 13:00:58 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Mar 3 15:16:42 UTC 2012 - jengelh@medozas.de
|
|
|
|
|
|
|
|
|
|
- Update to new upstream release 1.1.5
|
|
|
|
|
* pam_env: Fix CVE-2011-3148: correctly count leading whitespace
|
|
|
|
|
when parsing environment file in pam_env
|
|
|
|
|
* Fix CVE-2011-3149: when overflowing, exit with PAM_BUF_ERR in
|
|
|
|
|
pam_env
|
|
|
|
|
* pam_access: Add hostname resolution cache
|
|
|
|
|
|
2011-10-25 14:29:41 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Oct 25 14:24:27 CEST 2011 - mc@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_tally2: remove invalid options from manpage (bnc#726071)
|
|
|
|
|
- fix possible overflow and DOS in pam_env (bnc#724480)
|
|
|
|
|
CVE-2011-3148, CVE-2011-3149
|
|
|
|
|
|
2011-06-27 15:45:48 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 27 15:29:11 CEST 2011 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 1.1.4
|
|
|
|
|
* pam_securetty: Honour console= kernel option, add noconsole option
|
|
|
|
|
* pam_limits: Add %group syntax, drop change_uid option, add set_all option
|
|
|
|
|
* Lot of small bug fixes
|
|
|
|
|
* Add support for libtirpc
|
|
|
|
|
- Build against libtirpc
|
|
|
|
|
|
2011-05-26 11:48:17 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu May 26 09:37:34 UTC 2011 - cfarrell@novell.com
|
|
|
|
|
|
|
|
|
|
- license update: GPL-2.0+ or BSD-3-Clause
|
|
|
|
|
Updating to spdx.org/licenses syntax as legal-auto for some reason did
|
|
|
|
|
not accept the previous spec file license
|
|
|
|
|
|
2011-05-25 16:16:00 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed May 25 16:15:30 CEST 2011 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove libxcrypt-devel from BuildRequires
|
|
|
|
|
|
2011-02-24 13:18:28 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Feb 23 12:45:03 UTC 2011 - vcizek@novell.com
|
|
|
|
|
|
|
|
|
|
- bnc#673826 rework
|
2023-04-11 10:24:03 +02:00
|
|
|
* manpage is left intact, as it was
|
2011-02-24 13:18:28 +01:00
|
|
|
* correct parsing of "quiet" option
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
Wed Feb 23 10:00:22 UTC 2011 - vcizek@novell.com
|
|
|
|
|
|
|
|
|
|
- fix for bnc#673826 (pam_listfile)
|
|
|
|
|
* removed unnecessary logging when listfile is missing and quiet
|
|
|
|
|
option is specified
|
|
|
|
|
* manpage is also updated, to reflect that all option
|
|
|
|
|
require values
|
|
|
|
|
|
2010-10-28 16:27:30 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Oct 28 16:23:49 CEST 2010 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 1.1.3
|
|
|
|
|
- fixes CVE-2010-3853, CVE-2010-3431, CVE-2010-3430
|
|
|
|
|
- pam_unix: Add minlen option, change default from 6 to 0
|
|
|
|
|
|
2010-09-03 12:51:24 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Aug 31 13:38:23 CEST 2010 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 1.1.2
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 28 06:38:35 UTC 2010 - jengelh@medozas.de
|
|
|
|
|
|
|
|
|
|
- use %_smp_mflags
|
|
|
|
|
|
2010-05-12 16:12:43 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon May 10 14:22:18 CEST 2010 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Update to current CVS version (pam_rootok: Add support for
|
2010-05-12 16:12:43 +02:00
|
|
|
chauthtok and acct_mgmt, [bnc#533249])
|
|
|
|
|
|
2009-12-18 12:34:28 +01:00
|
|
|
-------------------------------------------------------------------
|
2010-03-12 17:36:09 +01:00
|
|
|
Thu Mar 11 13:25:46 CET 2010 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Install correct documentation
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2009-12-18 12:34:28 +01:00
|
|
|
Wed Dec 16 15:22:39 CET 2009 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 1.1.1 (bug fix release)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Dec 12 18:36:43 CET 2009 - jengelh@medozas.de
|
|
|
|
|
|
|
|
|
|
- add baselibs.conf as a source
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Dec 9 10:50:22 CET 2009 - jengelh@medozas.de
|
|
|
|
|
|
|
|
|
|
- enable parallel building
|
|
|
|
|
|
2009-07-03 16:56:58 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jun 26 14:46:21 CEST 2009 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add fixes from CVS
|
|
|
|
|
|
2009-06-29 14:50:11 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jun 24 09:52:29 CEST 2009 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to final version 1.1.0 (spelling fixes)
|
|
|
|
|
|
2009-04-23 20:32:12 +02:00
|
|
|
-------------------------------------------------------------------
|
2009-05-06 18:50:00 +02:00
|
|
|
Tue May 5 16:07:00 CEST 2009 - kukuk@suse.de
|
|
|
|
|
|
2009-06-29 14:50:11 +02:00
|
|
|
- Update to version 1.0.92:
|
2009-05-06 18:50:00 +02:00
|
|
|
* Update translations
|
|
|
|
|
* pam_succeed_if: Use provided username
|
|
|
|
|
* pam_mkhomedir: Fix handling of options
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2009-04-23 20:32:12 +02:00
|
|
|
Fri Apr 3 21:43:48 CEST 2009 - rguenther@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove cracklib-dict-full and pwdutils BuildRequires again.
|
|
|
|
|
|
2009-04-02 17:28:15 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Mar 27 11:41:23 CET 2009 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 1.0.91 aka 1.1 Beta2:
|
2023-04-11 10:24:03 +02:00
|
|
|
* Changes in the behavior of the password stack. Results of
|
2009-04-02 17:28:15 +02:00
|
|
|
PRELIM_CHECK are not used for the final run.
|
|
|
|
|
* Redefine LOCAL keyword of pam_access configuration file
|
2023-04-11 10:24:03 +02:00
|
|
|
* Add support for try_first_pass and use_first_pass to
|
2009-04-02 17:28:15 +02:00
|
|
|
pam_cracklib
|
|
|
|
|
* New password quality tests in pam_cracklib
|
2023-04-11 10:24:03 +02:00
|
|
|
* Add support for passing PAM_AUTHTOK to stdin of helpers from
|
2009-04-02 17:28:15 +02:00
|
|
|
pam_exec
|
|
|
|
|
* New options for pam_lastlog to show last failed login attempt and
|
|
|
|
|
to disable lastlog update
|
|
|
|
|
* New pam_pwhistory module to store last used passwords
|
|
|
|
|
* New pam_tally2 module similar to pam_tally with wordsize independent
|
|
|
|
|
tally data format, obsoletes pam_tally
|
|
|
|
|
* Make libpam not log missing module if its type is prepended with '-'
|
|
|
|
|
* New pam_timestamp module for authentication based on recent successful
|
|
|
|
|
login.
|
|
|
|
|
* Add blowfish support to pam_unix.
|
|
|
|
|
* Add support for user specific environment file to pam_env.
|
|
|
|
|
* Add pam_get_authtok to libpam as Linux-PAM extension.
|
|
|
|
|
|
2009-02-12 22:19:25 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Feb 11 01:20:15 CET 2009 - ro@suse.de
|
|
|
|
|
|
|
|
|
|
- use sr@latin instead of sr@Latn
|
|
|
|
|
|
2009-02-06 16:59:38 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Feb 5 17:01:56 CET 2009 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Log failures of setrlimit in pam_limits [bnc#448314]
|
|
|
|
|
- Fix using of requisite in password stack [bnc#470337]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jan 20 12:21:08 CET 2009 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Regenerate documentation [bnc#448314]
|
|
|
|
|
|
2008-12-15 13:07:20 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Dec 10 12:34:56 CET 2008 - olh@suse.de
|
|
|
|
|
|
|
|
|
|
- use Obsoletes: -XXbit only for ppc64 to help solver during distupgrade
|
|
|
|
|
(bnc#437293)
|
|
|
|
|
|
2008-12-05 15:53:33 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Dec 4 12:34:56 CET 2008 - olh@suse.de
|
|
|
|
|
|
|
|
|
|
- obsolete old -XXbit packages (bnc#437293)
|
|
|
|
|
|
2008-11-28 15:44:50 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 27 15:56:51 CET 2008 - mc@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- enhance the man page for limits.conf (bnc#448314)
|
2008-11-28 15:44:50 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Nov 24 17:21:19 CET 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_time: fix parsing if '|' is used [bdo#326407]
|
|
|
|
|
|
2008-11-20 16:45:35 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Nov 19 11:13:31 CET 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_xauth: update last patch
|
|
|
|
|
- pam_pwhistory: add missing type option
|
|
|
|
|
|
2008-11-07 15:38:48 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Nov 4 13:42:03 CET 2008 - mc@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_xauth: put XAUTHLOCALHOSTNAME into new enviroment
|
2023-04-11 10:24:03 +02:00
|
|
|
(bnc#441314)
|
2008-11-07 15:38:48 +01:00
|
|
|
|
2008-10-22 18:33:56 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Oct 17 14:02:31 CEST 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add pam_tally2
|
|
|
|
|
- Regenerate Documentation
|
|
|
|
|
|
2008-10-12 00:27:19 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Oct 11 17:06:49 CEST 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Enhance pam_lastlog with status output
|
|
|
|
|
- Add pam_pwhistory as tech preview
|
|
|
|
|
|
2008-09-26 15:07:06 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Sep 26 13:44:21 CEST 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_tally: fix fd leak
|
|
|
|
|
- pam_mail: fix "quiet" option
|
|
|
|
|
|
2008-08-30 01:16:13 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Aug 29 15:17:50 CEST 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 1.0.2 (fix SELinux regression)
|
|
|
|
|
- enhance pam_tally [FATE#303753]
|
|
|
|
|
- Backport fixes from CVS
|
|
|
|
|
|
2008-08-21 18:47:18 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Aug 20 14:59:30 CEST 2008 - prusnak@suse.cz
|
|
|
|
|
|
|
|
|
|
- enabled SELinux support [Fate#303662]
|
|
|
|
|
|
2008-04-25 15:20:44 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Apr 16 13:24:22 CEST 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 1.0.1:
|
|
|
|
|
- Fixes regression in pam_set_item().
|
|
|
|
|
|
2008-04-10 15:20:08 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Apr 10 12:54:45 CEST 2008 - ro@suse.de
|
|
|
|
|
|
|
|
|
|
- added baselibs.conf file to build xxbit packages
|
|
|
|
|
for multilib support
|
|
|
|
|
|
2008-04-06 03:54:16 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Apr 4 14:41:44 CEST 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove devfs lines from securetty [bnc#372241]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Apr 3 15:18:11 CEST 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 1.0.0:
|
|
|
|
|
- Official first "stable" release
|
|
|
|
|
- bug fixes
|
|
|
|
|
- translation updates
|
|
|
|
|
|
2008-02-16 08:33:36 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Feb 15 10:55:26 CET 2008 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 0.99.10.0:
|
|
|
|
|
- New substack directive in config file syntax
|
|
|
|
|
- New module pam_tty_audit.so for enabling and disabling tty
|
|
|
|
|
auditing
|
|
|
|
|
- New PAM items PAM_XDISPLAY and PAM_XAUTHDATA
|
|
|
|
|
- Improved functionality of pam_namespace.so module (method flags,
|
|
|
|
|
namespace.d configuration directory, new options).
|
|
|
|
|
- Finaly removed deprecated pam_rhosts_auth module.
|
|
|
|
|
|
2007-10-11 22:08:44 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Oct 10 15:13:33 CEST 2007 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 0.99.9.0:
|
|
|
|
|
- misc_conv no longer blocks SIGINT; applications that don't want
|
|
|
|
|
user-interruptable prompts should block SIGINT themselves
|
|
|
|
|
- Merge fixes from Debian
|
|
|
|
|
- Fix parser for pam_group and pam_time
|
|
|
|
|
|
2007-07-18 22:57:48 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jul 18 12:00:07 CEST 2007 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 0.99.8.1:
|
|
|
|
|
- Fix regression in pam_audit
|
|
|
|
|
|
2007-07-10 13:34:21 +02:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jul 6 11:38:42 CEST 2007 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to version 0.99.8.0:
|
|
|
|
|
- Add translations for ar, ca, da, ru, sv and zu.
|
|
|
|
|
- Update hungarian translation.
|
|
|
|
|
- Add support for limits.d directory to pam_limits.
|
|
|
|
|
- Add minclass option to pam_cracklib
|
|
|
|
|
- Add new group syntax to pam_access
|
|
|
|
|
|
2007-03-29 00:57:30 +02:00
|
|
|
-------------------------------------------------------------------
|
2007-04-19 22:09:31 +02:00
|
|
|
Thu Apr 19 15:30:46 CEST 2007 - mc@suse.de
|
|
|
|
|
|
|
|
|
|
- move the documentation into a seperate package (pam-doc)
|
|
|
|
|
[partly fixes Bug #265733]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2007-03-29 00:57:30 +02:00
|
|
|
Mon Mar 26 15:48:13 CEST 2007 - rguenther@suse.de
|
|
|
|
|
|
|
|
|
|
- add flex and bison BuildRequires
|
|
|
|
|
|
2007-01-26 17:44:38 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jan 24 11:27:16 CET 2007 - mc@suse.de
|
|
|
|
|
|
|
|
|
|
- add %verify_permissions for /sbin/unix_chkpwd
|
2023-04-11 10:24:03 +02:00
|
|
|
[#237625]
|
2007-01-26 17:44:38 +01:00
|
|
|
|
2007-01-23 15:23:12 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jan 23 13:19:51 CET 2007 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Version 0.99.7.1 (security fix)
|
|
|
|
|
|
2007-01-18 16:42:07 +01:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jan 17 14:13:14 CET 2007 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Version 0.99.7.0
|
|
|
|
|
* Add manual page for pam_unix.so.
|
|
|
|
|
* Add pam_faildelay module to set pam_fail_delay() value.
|
|
|
|
|
* Fix possible seg.fault in libpam/pam_set_data().
|
|
|
|
|
* Cleanup of configure options.
|
|
|
|
|
* Update hungarian translation, fix german translation.
|
|
|
|
|
|
2006-12-19 00:17:21 +01:00
|
|
|
-------------------------------------------------------------------
|
2007-01-18 01:38:13 +01:00
|
|
|
Wed Jan 17 14:00:03 CET 2007 - lnussel@suse.de
|
|
|
|
|
|
|
|
|
|
- install unix_chkpwd setuid root instead of setgid shadow (#216816)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2006-12-19 00:17:21 +01:00
|
|
|
Tue Oct 24 14:26:51 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_unix.so/unix_chkpwd: teach about blowfish [#213929]
|
|
|
|
|
- pam_namespace.so: Fix two possible buffer overflow
|
|
|
|
|
- link against libxcrypt
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Oct 7 11:46:56 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update hungarian translation [#210091]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Sep 19 18:25:25 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Don't remove pam_unix.so
|
|
|
|
|
- Use cracklib again (goes lost with one of the last cleanups)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Sep 14 16:11:36 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add pam_umask.so to common-session [Fate#3621]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Sep 6 16:37:33 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.99.6.3 (merges all patches)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Aug 30 17:14:22 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.99.6.2 (incorporate last change)
|
|
|
|
|
- Add pam_loginuid and fixes from CVS [Fate#300486]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Aug 23 19:11:41 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix seg.fault in pam_cracklib if retyped password is empty
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Aug 22 21:53:40 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove use_first_pass from pam_unix2.so in password section
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Aug 11 03:26:56 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.99.6.1 (big documentation update)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jul 28 11:30:28 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add missing namespace.init script
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jul 27 17:12:24 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Reenable audit subsystem [Fate#300486]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jun 28 13:07:15 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.99.5.0 (more manual pages, three new PAM
|
|
|
|
|
modules: pam_keyinit, pam_namespace, pam_rhosts)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 12 11:49:20 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current CVS (lot of new manual pages and docu)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue May 30 15:28:21 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.99.4.0 (merge all patches and translations)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed May 24 10:54:25 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix problems found by Coverity
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed May 17 14:46:04 CEST 2006 - schwab@suse.de
|
|
|
|
|
|
|
|
|
|
- Don't strip binaries.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri May 5 15:16:29 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix pam_tally LFS support [#172492]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Apr 21 13:48:17 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update fr.po and pl.po
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 11 14:56:37 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update km.po
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 4 14:24:11 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove obsolete pam-laus from the system
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Mar 27 14:20:56 CEST 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update translations for pt, pl, fr, fi and cs
|
|
|
|
|
- Add translation for uk
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Mar 21 14:06:00 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update hu.po
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Mar 21 12:40:11 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add translation for tr
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Mar 13 11:47:07 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix order of NULL checks in pam_get_user
|
|
|
|
|
- Fix comment in pam_lastlog for translators to be visible in
|
|
|
|
|
pot file
|
|
|
|
|
- Docu update, remove pam_selinux docu
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Mar 2 16:49:10 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update km translation
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Feb 23 13:21:22 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam_lastlog:
|
2006-12-19 00:17:21 +01:00
|
|
|
- Initialize correct struct member [SF#1427401]
|
|
|
|
|
- Mark strftime fmt string for translation [SF#1428269]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sun Feb 19 09:15:42 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update more manual pages
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Feb 18 12:45:19 CET 2006 - ro@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- really disable audit if header file not present
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Feb 14 13:29:42 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update fi.po
|
2023-04-11 10:24:03 +02:00
|
|
|
- Add km.po
|
2006-12-19 00:17:21 +01:00
|
|
|
- Update pl.po
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Feb 13 09:38:56 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update with better manual pages
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Feb 9 16:07:27 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add translation for nl, update pt translation
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 27 14:03:06 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Move devel manual pages to -devel package
|
|
|
|
|
- Mark PAM config files as noreplace
|
|
|
|
|
- Mark /etc/securetty as noreplace
|
|
|
|
|
- Run ldconfig
|
|
|
|
|
- Fix libdb/ndbm compat detection with gdbm
|
|
|
|
|
- Adjust german translation
|
|
|
|
|
- Add all services to pam_listfile
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jan 25 21:30:44 CET 2006 - mls@suse.de
|
|
|
|
|
|
|
|
|
|
- converted neededforbuild to BuildRequires
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 13 22:34:02 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.99.3.0 release candiate tar balls
|
|
|
|
|
(new translations)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jan 9 18:04:53 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix NULL handling for LSB-pam test suite [#141240]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sun Jan 8 13:04:19 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix usage of PAM_AUTHTOK_RECOVER_ERR vs. PAM_AUTHTOK_RECOVERY_ERR
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 6 12:34:57 CET 2006 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- NULL is allowed as thirs argument for pam_get_item [#141240]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Dec 21 10:29:02 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add fixes from CVS
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Dec 15 17:18:35 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix pam_lastlog: don't report error on first login
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Dec 13 09:19:12 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to 0.99.2.1
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Dec 9 09:41:05 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add /etc/environment to avoid warnings in syslog
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Dec 5 12:36:47 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- disable SELinux
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Nov 23 17:42:10 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update getlogin() fix to final one
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Nov 21 18:15:05 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix PAM getlogin() implementation
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Nov 21 16:37:57 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to official 0.99.2.0 release
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Nov 8 08:49:30 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to new snapshot
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Oct 10 18:15:20 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Enable original pam_wheel module
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Sep 27 10:56:58 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current CVS
|
|
|
|
|
- Compile libpam_misc with -fno-strict-aliasing
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Sep 19 15:31:34 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current CVS
|
|
|
|
|
- Fix compiling of pammodutil with -fPIC
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sun Sep 18 15:29:37 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current CVS
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Aug 23 16:27:50 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to new snapshot (Major version is back to 0)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Aug 19 16:24:54 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.99.0.3 snapshot
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jul 11 15:48:19 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add pam_umask
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jul 4 11:13:21 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current CVS snapshot
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jun 23 10:28:43 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current CVS snapshot
|
|
|
|
|
- Add pam_loginuid
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jun 9 12:01:49 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current CVS snapshot
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 6 17:55:33 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Don't reset priority [#81690]
|
|
|
|
|
- Fix creating of symlinks
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri May 20 13:18:43 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to current CVS snapshot
|
|
|
|
|
- Real fix for [#82687] (don't include kernel header files)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu May 12 16:37:07 CEST 2005 - schubi@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Bug 82687 - pam_client.h redefines __u8 and __u32
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Apr 29 11:18:16 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Apply lot of fixes from CVS (including SELinux support)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Apr 1 09:41:16 CEST 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to final 0.79 release
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Mar 14 10:01:07 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Apply patch for pam_xauth to preserve DISPLAY variable [#66885]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jan 24 16:02:11 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Compile with large file support
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jan 24 11:30:27 CET 2005 - schubi@suse.de
|
|
|
|
|
|
|
|
|
|
- Made patch of latest CVS tree
|
2023-04-11 10:24:03 +02:00
|
|
|
- Removed patch pam_handler.diff ( included in CVS now )
|
2006-12-19 00:17:21 +01:00
|
|
|
- moved Linux-PAM-0.78.dif to pam_group_time.diff
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jan 5 13:09:18 CET 2005 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix seg.fault, if a PAM config line is incomplete
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 18 14:58:43 CET 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to final 0.78
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Nov 8 17:09:53 CET 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add pam_env.so to common-auth
|
|
|
|
|
- Add pam_limit.so to common-session
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Oct 13 15:11:59 CEST 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to 0.78-Beta1
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Sep 22 16:40:26 CEST 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Create pam.d/common-{auth,account,password,session} and include
|
|
|
|
|
them in pam.d/other
|
|
|
|
|
- Update to current CVS version of upcoming 0.78 release
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Aug 23 16:44:40 CEST 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update "code cleanup" patch
|
|
|
|
|
- Disable reading of /etc/environment in pam_env.so per default
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Aug 19 16:55:24 CEST 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Reenable a "fixed" version of "code cleanup" patch
|
|
|
|
|
- Use pam_wheel from pam-modules package
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Aug 18 17:06:33 CEST 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Disable "code cleanup" patch (no more comments about security
|
|
|
|
|
fixes)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Aug 13 15:40:31 CEST 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Apply big "code cleanup" patch [Bug #39673]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Mar 12 14:32:27 CET 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_wheel: Use original getlogin again, PAM internal does not
|
|
|
|
|
work without application help [Bug #35682]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sun Jan 18 12:11:37 CET 2004 - meissner@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- We no longer have pam in the buildsystem, so we
|
2006-12-19 00:17:21 +01:00
|
|
|
need some buildroot magic flags for the dlopen tests.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jan 15 23:19:55 CET 2004 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Cleanup neededforbuild
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Dec 5 11:32:57 CET 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add manual pages from SLES8
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Nov 28 09:21:01 CET 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix installing manual pages of modules
|
|
|
|
|
- Remove pthread check (db is now linked against pthread)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 27 09:13:46 CET 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Merge with current CVS
|
|
|
|
|
- Apply bug fixes from bugtracking system
|
|
|
|
|
- Build as normal user
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Nov 21 14:41:41 CET 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Compile with noexecstack
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 6 12:12:15 CET 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix pam_securetty CVS patch
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Oct 29 13:47:02 CET 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Sync with current CVS version
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Oct 2 18:37:19 CEST 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add patch to implement "include" statement in pamd files
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Sep 10 14:36:51 CEST 2003 - uli@suse.de
|
|
|
|
|
|
|
|
|
|
- added ttyS1 (VT220) to securetty on s390* (bug #29239)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jul 28 15:35:32 CEST 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Apply lot of fixes for various problems
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jun 10 12:08:56 CEST 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix getlogin handling in pam_wheel.so
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue May 27 16:26:00 CEST 2003 - ro@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- added cracklib-devel to neededforbuild
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Feb 13 14:56:05 CET 2003 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update pam_localuser and pam_xauth.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Nov 13 14:51:23 CET 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.77 (minor bug fixes and enhancemants)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Nov 11 11:26:13 CET 2002 - ro@suse.de
|
|
|
|
|
|
|
|
|
|
- changed neededforbuild <sp> to <opensp>
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Sep 14 18:12:49 CEST 2002 - ro@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- changed securetty / use extra file
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Sep 13 18:21:35 CEST 2002 - bk@suse.de
|
|
|
|
|
|
|
|
|
|
- 390: standard console (4,64)/ttyS0 ->only ttyS0 in /etc/securetty
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Aug 27 17:23:30 CEST 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Call password checking helper from pam_unix.so whenever the
|
|
|
|
|
passwd field is invalid.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Aug 24 14:41:43 CEST 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Don't build ps and pdf documentation
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Aug 9 10:26:37 CEST 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam-devel requires pam [Bug #17543]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jul 17 21:48:22 CEST 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove explicit requires
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jul 10 10:14:17 CEST 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.76
|
|
|
|
|
- Remove reentrant patch for original PAM modules (needs to be
|
|
|
|
|
rewritten for new PAM version)
|
|
|
|
|
- Add docu in PDF format
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jul 4 11:07:23 CEST 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix build on different partitions
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 16 14:50:19 CEST 2002 - mmj@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix to not own /usr/shar/man/man3
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Mar 13 10:44:20 CET 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add /usr/include/security to pam-devel filelist
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Feb 11 22:46:43 CET 2002 - ro@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- tar option for bz2 is "j"
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 25 18:55:26 CET 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix last pam_securetty patch
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jan 24 20:11:37 CET 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Use reentrant getpwnam functions for most modules
|
|
|
|
|
- Fix unresolved symbols in pam_access and pam_userdb
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sun Jan 20 22:06:39 CET 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- libpam_misc: Don't handle Ctrl-D as error.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jan 16 12:21:30 CET 2002 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove SuSEconfig.pam
|
|
|
|
|
- Update pam_localuser and pam_xauth
|
|
|
|
|
- Add new READMEs about blowfish and cracklib
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Nov 12 13:33:09 CET 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Remove pam_unix.so (is part of pam-modules)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Nov 9 10:42:02 CET 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Move extra PAM modules to separate package
|
|
|
|
|
- Require pam-modules package
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Aug 24 14:55:04 CEST 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Move susehelp config file to susehelp package
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Aug 13 15:51:57 CEST 2001 - ro@suse.de
|
|
|
|
|
|
|
|
|
|
- changed neededforbuild <sp_libs> to <sp-devel>
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Aug 7 17:48:40 CEST 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fixes wrong symlink handling of pam_homecheck [Bug #3905]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jul 11 18:10:11 CEST 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Sync pam_homecheck and pam_unix2 fixes from 7.2
|
|
|
|
|
- Always ask for the old password if it is expired
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat May 5 20:18:35 CEST 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Cleanup Patches, make tar archive from extra pam modules
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri May 4 16:51:07 CEST 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Use LOG_NOTICE for trace option [Bug #7673]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Apr 12 17:45:55 CEST 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Linux-PAM: link pam_access against libnsl
|
|
|
|
|
- Add pam.conf for susehelp/pam html docu
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 10 17:39:50 CEST 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Linux-PAM: Update to version 0.75
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 3 15:08:27 CEST 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Linux-PAM: link libpam_misc against libpam [Bug #6890]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Mar 8 15:38:22 CET 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Linux-PAM: Fix manual pages (.so reference)
|
|
|
|
|
- pam_pwcheck: fix Makefile
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Mar 6 12:16:58 CET 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update for Linux-PAM 0.74
|
|
|
|
|
- Drop pwdb subpackage
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Feb 13 14:17:13 CET 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_unix2: Create temp files with permission 0600
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Feb 6 01:34:06 CET 2001 - ro@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam_issue.c: include time.h to make it compile
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jan 5 22:51:44 CET 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Don't print error message about failed initialization from
|
|
|
|
|
pam_limits with kernel 2.2 [Bug #5198]
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jan 4 17:15:44 CET 2001 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Adjust docu for pam_limits
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sun Dec 17 13:22:11 CET 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Adjust docu for pam_pwcheck
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Dec 7 15:23:37 CET 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add fix for pam_limits from 0.73
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Oct 26 16:36:09 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add db-devel to need for build
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Oct 20 12:03:07 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Don't link PAM modules against old libpam library
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Oct 18 11:53:34 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Create new "devel" subpackage
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Oct 12 15:16:55 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add SuSEconfig.pam
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Oct 3 15:05:00 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Fix problems with new gcc and glibc 2.2 header files
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Sep 13 13:12:08 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix problem with passwords longer then PASS_MAX_LEN
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Sep 6 16:01:50 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add missing PAM modules to filelist
|
|
|
|
|
- Fix seg.fault in pam_pwcheck [BUG #3894]
|
|
|
|
|
- Clean spec file
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jun 23 12:40:40 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Lot of bug fixes in pam_unix2 and pam_pwcheck
|
|
|
|
|
- compress postscript docu
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon May 15 10:57:16 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Move docu to /usr/share/doc/pam
|
|
|
|
|
- Fix some bugs in pam_unix2 and pam_pwcheck
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 25 16:32:56 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add pam_homecheck Module
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Apr 25 14:17:10 CEST 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add devfs devices to /etc/securetty
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Mar 1 17:35:27 CET 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Fix handling of changing passwords to empty one
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Feb 22 18:00:48 CET 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Set correct attr for unix_chkpwd and pwdb_chkpwd
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Feb 15 17:47:50 CET 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update pam_pwcheck
|
|
|
|
|
- Update pam_unix2
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Feb 7 17:55:42 CET 2000 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pwdb: Update to 0.61
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jan 27 16:54:03 CET 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add config files and README for md5 passwords
|
|
|
|
|
- Update pam_pwcheck
|
|
|
|
|
- Update pam_unix2
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jan 13 18:22:10 CET 2000 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update pam_unix2
|
|
|
|
|
- New: pam_pwcheck
|
|
|
|
|
- Update to Linux-PAM 0.72
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Oct 13 16:48:51 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam_pwdb: Add security fixes from RedHat
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Oct 11 20:34:18 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.70
|
|
|
|
|
- Update to pwdb-0.60
|
|
|
|
|
- Fix more pam_unix2 shadow bugs
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Oct 8 17:20:11 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add more PAM fixes
|
|
|
|
|
- Implement Password changing request (sp_lstchg == 0)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Sep 13 17:23:57 CEST 1999 - bs@suse.de
|
|
|
|
|
|
|
|
|
|
- ran old prepare_spec on spec file to switch to new prepare_spec.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Sep 11 17:38:50 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add pam_wheel to file list
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam_wheel: Minor fixes
|
2006-12-19 00:17:21 +01:00
|
|
|
- pam_unix2: root is allowed to change passwords with wrong
|
|
|
|
|
password aging information
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Aug 30 10:16:43 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam_unix2: Fix typo
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Aug 19 16:05:09 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Linux-PAM: Update to version 0.69
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Jul 16 12:35:14 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_unix2: Root is allowed to use the old password again.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jul 13 11:09:41 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_unix2: Allow root to set an empty password.
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Jul 10 18:41:00 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- Add HP-UX password aging to pam_unix2.
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jul 7 17:45:04 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Don't install .cvsignore files
|
|
|
|
|
- Make sure, /etc/shadow has the correct rights
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jul 6 10:14:08 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.68
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jun 30 18:46:26 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_unix2: more bug fixes
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jun 29 10:57:18 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- pam_unix2: Fix "inactive" password
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 28 13:59:18 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam_warn: Add missing functions
|
2006-12-19 00:17:21 +01:00
|
|
|
- other.pamd: Update
|
|
|
|
|
- Add more doku
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jun 24 14:24:54 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Add securetty config file
|
|
|
|
|
- Fix Debian pam_env patch
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 21 10:10:35 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
|
|
|
|
- Update to Linux-PAM 0.67
|
2023-04-11 10:24:03 +02:00
|
|
|
- Add Debian pam_env patch
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jun 17 15:59:30 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam_ftp malloc (core dump) fix
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Jun 15 18:57:03 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- pam_unix2 fixes
|
2006-12-19 00:17:21 +01:00
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jun 7 11:34:48 MEST 1999 - kukuk@suse.de
|
|
|
|
|
|
2023-04-11 10:24:03 +02:00
|
|
|
- First PAM package: pam 0.66, pwdb 0.57 and pam_unix2
|
