summaryrefslogtreecommitdiff
path: root/debian
diff options
context:
space:
mode:
authorSteve Langasek <vorlon@debian.org>2008-08-20 01:02:43 -0700
committerSteve Langasek <steve.langasek@ubuntu.com>2019-01-03 17:28:25 -0800
commitd3c9d55547a4cb52419593769f4b877452dce8aa (patch)
tree7726cd7ecf838a7e4bd40ec8c8bb8dbee0b477ff /debian
parent99a65fcfa81bb6ba84ca61b3b30cec1525c8a576 (diff)
we can't use 'deny' as a fallback if we aren't going to have any primary
modules, which is generally the case for the password stack at present
Diffstat (limited to 'debian')
-rw-r--r--debian/local/common-password4
1 files changed, 3 insertions, 1 deletions
diff --git a/debian/local/common-password b/debian/local/common-password
index 690a737e..8b21c8d7 100644
--- a/debian/local/common-password
+++ b/debian/local/common-password
@@ -24,7 +24,9 @@
# here are the per-package modules (the "Primary" block)
$password_primary
# here's the fallback if no module succeeds
-password requisite pam_deny.so
+# this is obviously a completely redundant line, except that it lets us
+# handle better the case where there are no "Primary" modules provided
+password required pam_permit.so
# prime the stack with a positive return value if there isn't one already;
# this avoids us returning an error just because nothing sets a success code
# since the modules above will each just jump around