summaryrefslogtreecommitdiff
path: root/debian/changelog
Commit message (Collapse)AuthorAge
* Slovak, thanks to Ivan Masár <helix84@centrum.sk> (closes: #518341)Steve Langasek2019-01-08
|
* Japanese, thanks to Kenshi Muto <kmuto@debian.org> (closes: #518335) Steve Langasek2019-01-08
|
* Vietnamese, thanks to Clytie Siddall <clytie@riverland.net.au>Steve Langasek2019-01-08
| | | | (closes: #518329)
* Swedish, thanks to Martin Bagge <brother@bsnet.se> (closes: #518324)Steve Langasek2019-01-08
|
* Spanish, thanks to Javier Fernandez-Sanguino Peña <jfs@debian.org>Steve Langasek2019-01-08
| | | | (closes: #518214)
* * Updated debconf translations:Steve Langasek2019-01-08
| | | | - Bulgarian, thanks to Damyan Ivanov <dmn@debian.org> (closes: #518121)
* releasing version 1.0.1-7Steve Langasek2019-01-08
|
* pam-auth-update: set the umask, so we don't accidentally markSteve Langasek2019-01-08
|\ | | | | | | | | /etc/pam.d/common-* unreadable. Thanks to Martin Krafft for catching. Closes: #518042.
* | pam-auth-update: swap out known md5sums from intrepid pre-release Steve Langasek2019-01-08
| | | | | | | | versions with the md5sums from the released intrepid version
* | include documentation in the patch, giving examples of how to set Steve Langasek2019-01-08
| | | | | | | | limits for root. Thanks to Jonathan Marsden.
* | revert the 'fix' for bug #515673, since this isn't really a bug at all.Steve Langasek2019-01-08
| |
* | prettify the changelogSteve Langasek2019-01-08
| |
* | shadow the finite kernel defaults for RLIMIT_SIGPENDING andSteve Langasek2019-01-08
| | | | | | | | | | RLIMIT_MSGQUEUE as well, so that the preceding changes don't suddenly expose systems to DoS or other issues.
* | 027_pam_limits_better_init_allow_explicit_root: also fix the patch soSteve Langasek2019-01-08
| | | | | | | | | | that our limit resets are actually *applied*, which has apparently been broken for who knows how long!
* | 027_pam_limits_better_init_allow_explicit_root: RLIM_INFINITY may or maySteve Langasek2019-01-08
| | | | | | | | | | | | | | not be invalid for RLIMIT_NOFILE, but we don't want to set a hard limit of 1024 by default; try to set this limit to the value of /proc/sys/fs/nr_open if we can, or fall back to RLIM_INFINITY. Closes: #515673, LP: #327597.
* | releasing version 1.0.1-6Steve Langasek2019-01-08
| |
* | fix-up commit to match 1.1.0-6 from the archiveSteve Langasek2019-01-08
| |
* | New patch dont_freeze_password_chain, cherry-picked from upstream:Steve Langasek2019-01-03
| | | | | | | | | | | | | | | | don't always follow the same path through the password stack on the PAM_UPDATE_AUTHTOK pass as was used in the PAM_PRELIM_CHECK pass; this Linux-PAM deviation from the original PAM spec causes a number of problems, in particular causing wrong return values when using the refactored pam-auth-update stack. LP: #303515, #305882.
* | * Updated debconf translations:Steve Langasek2019-01-03
|/ | | | - Vietnamese, thanks to Clytie Siddall <clytie@riverland.net.au>
* mark for uploadSteve Langasek2019-01-03
|
* Updated Portuguese debconf translationAmérico Monteiro2019-01-03
|
* Updated Basque debconf translationPiarres Beobide2019-01-03
|
* Updated Russian debconf translationYuri Kozlov2019-01-03
|
* Updated Turkish debconf translationMert Dirik2019-01-03
|
* Updated German debconf translationSven Joachim2019-01-03
|
* Updated French debconf translationSteve Petruzzello2019-01-03
|
* Updated Czech debconf translationunknown2019-01-03
|
* Updated Bulgarian debconf translationDamyan Ivanov2019-01-03
|
* Updated Slovak debconf translationhelix842019-01-03
|
* Updated Galician debconf translationMarce Villarino2019-01-03
|
* Updated Spanish debconf translationJavier Fernandez-Sanguino Peña2019-01-03
|
* Updated Finnish debconf translationEsko Arajärvi2019-01-03
|
* Updated Japanese debconf translationKenshi Muto2019-01-03
|
* Updated Swedish debconf translationMartin Bagge2019-01-03
|
* Updated simplified Chinese debconf translationDeng Xiyue2019-01-03
|
* Updated Italian debconf translationDavid Paleino2019-01-03
|
* have libpam-modules Pre-Depend on ${misc:Depends} and add a debconf question toSteve Langasek2019-01-03
| | | | | | the libpam-modules preinst, so we can reliably warn users about xscreensaver and xlockmore before libpam-modules is unpacked; at the same time, clean up the text of the libpam0g debconf template to not refer to the screensavers.
* Have libpam-modules Pre-Depend on its shlibs, to force libpam0g to beSteve Langasek2019-01-03
| | | | | | | configured before libpam-modules is unpacked and allowing us to warn users about needing to disable xscreensaver and xlockmore at the right time without having to add a pre-dependency on debconf to these transitively essential packages. Closes: #502140, LP: #256238.
* Don't refer to gnome-screensaver in the debconf template; it isn'tSteve Langasek2019-01-03
| | | | | actually affected by the libpam symbol issue because it forks a separate process to display the screensaver dialog.
* Build-conflict with libxcrypt-dev, which otherwise pulls libxcrypt in asSteve Langasek2019-01-03
| | | | | a dependency of libpam-modules if it's installed during the build. Thanks to Larry Doolittle for catching.
* mark for uploadSteve Langasek2019-01-03
|
* debian/rules: call chgrp *before* calling chmod, lest the sgid bitSteve Langasek2019-01-03
| | | | | on unix_chkpwd be cleared during the build when using -rsudo. Closes: #496983.
* 055_pam_unix_nullok_secure: also don't call the helper at all fromSteve Langasek2019-01-03
| | | | | | _unix_blankpasswd when we can detect that null passwords are disallowed, to avoid causing spammy logs on successful authentications. Closes: #496620.
* 007_modules_pam_unix: update the manpage at the same time as the xmlSteve Langasek2019-01-03
| | | | source (grr, autogenerated files in source packages). Closes: #495804.
* document bug closureSteve Langasek2019-01-03
|
* pam_unix-chkpwd-wait: don't assume that the unix_chkpwd processJulien Cristau2019-01-03
| | | | | | exits normally; if it was killed by a signal, we don't want to accept the password.
* mark for uploadSteve Langasek2019-01-03
|
* 055_pam_unix_nullok_secure: don't call _pammodutil_tty_secure with a NULLSteve Langasek2019-01-03
| | | | | | tty argument, since this will cause our helper to segfault instead of returning a useful value. Thanks to Troy Davis for the report. Closes: #495806.
* mark for uploadSteve Langasek2019-01-03
|
* debian/patches/054_pam_security_abstract_securetty_handling: move theSteve Langasek2019-01-03
| | | | | | | | warning log about an insecure tty back to pam_securetty proper; we don't want to generate log messages every time pam_unix is called as non-root. Closes: #493283. As a side-effect, pam_unix no longer logs any warnings about NULL password + insecure tty, but I don't think this is critical.
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-14 03:20:09 +0000