Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | debian/local/pam-auth-update: prune md5sums for unsupported upgrade | Steve Langasek | 2019-01-08 |
| | | | | paths (intrepid pre-release -> karmic/lenny) | ||
* | debian/local/common-session-noninteractive{,.md5sums}, | Steve Langasek | 2019-01-08 |
| | | | | | | | debian/local/pam-auth-update: split out a session-noninteractive include file, so that we can at last distinguish between interactive and non-interactive PAM sessions at a policy level. Closes: #169930, LP: #287715. | ||
* | debian/local/common-{auth,account,session,password}.md5sums: document | Steve Langasek | 2019-01-08 |
| | | | | the known md5sums for the new managed files. | ||
* | debian/libpam-runtime.postinst: bump the --force version check to | Steve Langasek | 2019-01-08 |
| | | | | | | 1.0.1-11, to allow for a new common-session-noninteractive config file; and include md5sum checking logic that will work the same with old unmanaged and new managed /etc/pam.d/common-* files. | ||
* | releasing version 1.0.1-10 | Steve Langasek | 2019-01-08 |
| | |||
* | set correct changelog urgency for security fix | Steve Langasek | 2019-01-08 |
| | |||
* | Merge Steve's pam-auth-update changes with my cve patch | Sam Hartman | 2019-01-08 |
|\ | |||
| * | When no profiles are chosen in pam-auth-update, throw an error message | Steve Langasek | 2019-01-08 |
| | | | | | | | | | | and prompt again instead of letting the user end up with an insecure system. This introduces a new debconf template. Closes: #519927. | ||
* | | cve-2009-0887-libpam-pam_misc.patch: avoid integer signedness problem | Sam Hartman | 2019-01-08 |
|/ | | | | (CVE-2009-0887) (Closes: #520115) | ||
* | Merge debian sid branch | Sam Hartman | 2019-01-08 |
|\ | |||
| * | get the patch name into the changelog entry | Steve Langasek | 2019-01-08 |
| | | |||
| * | pam_motd: run the update-motd scripts in pam_motd; render update-motd | Steve Langasek | 2019-01-08 |
| | | | | | | | | obsolete, LP: #399071 | ||
| * | Basque, thanks to Piarres Beobide <pi+debian@beobide.net> | Steve Langasek | 2019-01-08 |
| | | | | | | | | (closes: #524285) | ||
* | | pam_mail-fix-quiet: patch from Andreas Henriksson | Sam Hartman | 2019-01-08 |
| | | | | | | | | applied upstream to fix quiet option of pam_mail, Closes: #439268 | ||
* | | Overrides for lintian finding quilt patches | Sam Hartman | 2019-01-08 |
| | | |||
* | | Fix lintian overrides for libpam-runtime | Sam Hartman | 2019-01-08 |
| | | |||
* | | Remove conflicts information for transitions prior to woody release | Sam Hartman | 2019-01-08 |
|/ | |||
* | debian/control: add missing misc:Depends for packages that need it. | Kees Cook | 2019-01-08 |
| | |||
* | Add debian/patches/pam_1.0.4_mindays: backport upstream 1.0.4 fixes | Kees Cook | 2019-01-08 |
| | | | | for MINDAYS-Field regression (closes: #514437). | ||
* | German, thanks to Sven Joachim <svenjoac@gmx.de> (closes: #521530) | Steve Langasek | 2019-01-08 |
| | |||
* | Russian, thanks to Yuri Kozlov <yuray@komyakino.ru> (closes: #521874) | Steve Langasek | 2019-01-08 |
| | |||
* | * Updated debconf translations: | Steve Langasek | 2019-01-08 |
| | | | | - Finnish, thanks to Esko Arajärvi <edu@iki.fi> (closes: #520785) | ||
* | releasing version 1.0.1-9 | Steve Langasek | 2019-01-08 |
| | |||
* | 027_pam_limits_better_init_allow_explicit_root: defaults need to be | Steve Langasek | 2019-01-08 |
| | | | | | declared as LIMITS_DEF_DEFAULT instead of LIMITS_DEF_ALL, otherwise global limits will fail to be applied. LP: #314222. | ||
* | Move the pam module packages to section 'admin'. | Steve Langasek | 2019-01-08 |
| | |||
* | releasing version 1.0.1-8 | Steve Langasek | 2019-01-08 |
| | |||
* | document a bug closure | Steve Langasek | 2019-01-08 |
| | |||
* | Romanian, thanks to Eddy Petrișor <eddy.petrisor@gmail.com> | Steve Langasek | 2019-01-08 |
| | | | | (closes: #520552) | ||
* | Galician, thanks to Marce Villarino <mvillarino@users.sourceforge.net> | Steve Langasek | 2019-01-08 |
| | | | | (closes: #519447) | ||
* | Portuguese, thanks to Américo Monteiro <a_monteiro@netcabo.pt> | Steve Langasek | 2019-01-08 |
| | | | | (closes: #519204) | ||
* | Czech, thanks to Miroslav Kure <kurem@debian.cz> (closes: #518992) | Steve Langasek | 2019-01-08 |
| | |||
* | 027_pam_limits_better_init_allow_explicit_root: set the RLIMIT_MEMLOCK | Steve Langasek | 2019-01-08 |
| | | | | limit correctly to match the kernel default, which is not RLIM_INFINITY. | ||
* | Slovak, thanks to Ivan Masár <helix84@centrum.sk> (closes: #518341) | Steve Langasek | 2019-01-08 |
| | |||
* | Japanese, thanks to Kenshi Muto <kmuto@debian.org> (closes: #518335) | Steve Langasek | 2019-01-08 |
| | |||
* | Vietnamese, thanks to Clytie Siddall <clytie@riverland.net.au> | Steve Langasek | 2019-01-08 |
| | | | | (closes: #518329) | ||
* | Swedish, thanks to Martin Bagge <brother@bsnet.se> (closes: #518324) | Steve Langasek | 2019-01-08 |
| | |||
* | Spanish, thanks to Javier Fernandez-Sanguino Peña <jfs@debian.org> | Steve Langasek | 2019-01-08 |
| | | | | (closes: #518214) | ||
* | * Updated debconf translations: | Steve Langasek | 2019-01-08 |
| | | | | - Bulgarian, thanks to Damyan Ivanov <dmn@debian.org> (closes: #518121) | ||
* | releasing version 1.0.1-7 | Steve Langasek | 2019-01-08 |
| | |||
* | pam-auth-update: set the umask, so we don't accidentally mark | Steve Langasek | 2019-01-08 |
|\ | | | | | | | | | /etc/pam.d/common-* unreadable. Thanks to Martin Krafft for catching. Closes: #518042. | ||
* | | pam-auth-update: swap out known md5sums from intrepid pre-release | Steve Langasek | 2019-01-08 |
| | | | | | | | | versions with the md5sums from the released intrepid version | ||
* | | include documentation in the patch, giving examples of how to set | Steve Langasek | 2019-01-08 |
| | | | | | | | | limits for root. Thanks to Jonathan Marsden. | ||
* | | revert the 'fix' for bug #515673, since this isn't really a bug at all. | Steve Langasek | 2019-01-08 |
| | | |||
* | | prettify the changelog | Steve Langasek | 2019-01-08 |
| | | |||
* | | shadow the finite kernel defaults for RLIMIT_SIGPENDING and | Steve Langasek | 2019-01-08 |
| | | | | | | | | | | RLIMIT_MSGQUEUE as well, so that the preceding changes don't suddenly expose systems to DoS or other issues. | ||
* | | 027_pam_limits_better_init_allow_explicit_root: also fix the patch so | Steve Langasek | 2019-01-08 |
| | | | | | | | | | | that our limit resets are actually *applied*, which has apparently been broken for who knows how long! | ||
* | | 027_pam_limits_better_init_allow_explicit_root: RLIM_INFINITY may or may | Steve Langasek | 2019-01-08 |
| | | | | | | | | | | | | | | not be invalid for RLIMIT_NOFILE, but we don't want to set a hard limit of 1024 by default; try to set this limit to the value of /proc/sys/fs/nr_open if we can, or fall back to RLIM_INFINITY. Closes: #515673, LP: #327597. | ||
* | | releasing version 1.0.1-6 | Steve Langasek | 2019-01-08 |
| | | |||
* | | fix-up commit to match 1.1.0-6 from the archive | Steve Langasek | 2019-01-08 |
| | | |||
* | | New patch dont_freeze_password_chain, cherry-picked from upstream: | Steve Langasek | 2019-01-03 |
| | | | | | | | | | | | | | | | | don't always follow the same path through the password stack on the PAM_UPDATE_AUTHTOK pass as was used in the PAM_PRELIM_CHECK pass; this Linux-PAM deviation from the original PAM spec causes a number of problems, in particular causing wrong return values when using the refactored pam-auth-update stack. LP: #303515, #305882. |