summaryrefslogtreecommitdiff
path: root/debian/local
Commit message (Collapse)AuthorAge
* record the new md5sum for common-passwordSteve Langasek2019-01-08
|
* debian/local/common-password, debian/pam-configs/unix: switch from "md5"Kees Cook2019-01-08
| | | | to "sha512" as password crypt default.
* fix the PAM mini-policy to not tell app maintainers that they don't needSteve Langasek2019-01-08
| | | | to depend on libpam-modules if they reference modules from there.
* consistent capitalizationSteve Langasek2019-01-08
|
* drop references to pam_stack, which is long deadSteve Langasek2019-01-08
|
* proofread / reflow the mini-policySteve Langasek2019-01-08
|
* document common-session-noninteractive in the Debian PAM policySteve Langasek2019-01-08
|
* add a comment to the md5sum so we know what version it's fromSteve Langasek2019-01-08
|
* debian/local/pam-auth-update: prune md5sums for unsupported upgradeSteve Langasek2019-01-08
| | | | paths (intrepid pre-release -> karmic/lenny)
* debian/local/common-session-noninteractive{,.md5sums},Steve Langasek2019-01-08
| | | | | | | debian/local/pam-auth-update: split out a session-noninteractive include file, so that we can at last distinguish between interactive and non-interactive PAM sessions at a policy level. Closes: #169930, LP: #287715.
* debian/local/common-{auth,account,session,password}.md5sums: documentSteve Langasek2019-01-08
| | | | the known md5sums for the new managed files.
* When no profiles are chosen in pam-auth-update, throw an error messageSteve Langasek2019-01-08
| | | | | and prompt again instead of letting the user end up with an insecure system. This introduces a new debconf template. Closes: #519927.
* pam-auth-update: set the umask, so we don't accidentally markSteve Langasek2019-01-08
|\ | | | | | | | | /etc/pam.d/common-* unreadable. Thanks to Martin Krafft for catching. Closes: #518042.
| * pam-auth-update: set the umask, so we don't accidentally mark ↵Steve Langasek2019-01-03
| | | | | | | | /etc/pam.d/common-* unreadable.
* | pam-auth-update: swap out known md5sums from intrepid pre-release Steve Langasek2019-01-08
|/ | | | versions with the md5sums from the released intrepid version
* also update the md5sums in response to the template version bumps...Steve Langasek2019-01-03
|
* bump the version number for what should really be the last time: no more pamSteve Langasek2019-01-03
| | | | uploads are anticipated before the lenny release (again).
* factor out the duplicate code used for returning the lines for a given moduleSteve Langasek2019-01-03
|
* trim leading whitespace from multiline fields when parsing PAM profilesSteve Langasek2019-01-03
|
* ignore removed profiles when detecting an empty setGreg Price2019-01-03
|
* If /var/lib/pam/seen is absent, handle it the same as if the file wereGreg Price2019-01-03
| | | | | present but empty.
* skip over the 'deny' in our no-primary-modules caseSteve Langasek2019-01-03
|
* get rid of the double pam_permit in common-password, the stack will handleSteve Langasek2019-01-03
| | | | this correctly now
* get rid of the double pam_permit in common-session, the stack will handle thisSteve Langasek2019-01-03
| | | | right now
* tune the whitespaceSteve Langasek2019-01-03
|
* output a generic pam_permit line if the primary block is emptySteve Langasek2019-01-03
|
* Use -Initial only for the first profile, even when there's no explicit -InitialSteve Langasek2019-01-03
| | | | config for that first profile
* output a generic pam_permit line if the primary block is emptySteve Langasek2019-01-03
|
* Use -Initial only for the first profile, even when there's no explicit -InitialSteve Langasek2019-01-03
| | | | config for that first profile
* fix a bug in the parser that caused error spewing if there were any lines afterSteve Langasek2019-01-03
| | | | the end of the managed block
* synchronize the state-saving format with the code actually used for comparisonsSteve Langasek2019-01-03
|
* drop '-Final' from all of the field names, but support these field names forSteve Langasek2019-01-03
| | | | backwards compatibility
* bump the referenced version number again for one /really/ final pam upload toSteve Langasek2019-01-03
| | | | | | lenny, and update the checksums to point at the current template versions (replacing the previous md5sums, since that version was never uploaded to Debian)
* drop this md5sum from the branch, it's Ubuntu-specificSteve Langasek2019-01-03
|
* add old session template md5sumSteve Langasek2019-01-03
|
* implement automatic upgrades of the templates if they're unmodifiedSteve Langasek2019-01-03
|
* first cut of a manpage for pam-auth-updateSteve Langasek2019-01-03
|
* never unlink the .pam-old file - just only create it if --force is set.Steve Langasek2019-01-03
|
* document another bug that we need to sort outSteve Langasek2019-01-03
|
* priority alone doesn't guarantee a complete sort; sort by the profile name asSteve Langasek2019-01-03
| | | | a second field, to be sure we get out all the duplicates
* filter removals out of both the available and the enabled option listsSteve Langasek2019-01-03
|
* apparently we need to use shift @ARGV here, not just shiftSteve Langasek2019-01-03
|
* fix a typoSteve Langasek2019-01-03
|
* implement --remove, which allows deconfiguring of modules in advance of packageSteve Langasek2019-01-03
| | | | removal
* optimize the grep a bit moreSteve Langasek2019-01-03
|
* filter the config list to exclude configs that no longer existSteve Langasek2019-01-03
| | | | avoid unnecessary sort/grep in the case where we already have a sorted list
* if the target doesn't already exist, don't try to copy itSteve Langasek2019-01-03
|
* fix the regex used when suppressing jump counts when reading the savedSteve Langasek2019-01-03
| | | | | config, so that we don't clobber module options with numbers in them
* another inconsistency in referring to the program nameSteve Langasek2019-01-03
|
* session needs to be handled the same way as password, with the possibility ofSteve Langasek2019-01-03
| | | | | zero primary modules
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-23 19:15:26 +0000