summaryrefslogtreecommitdiff
path: root/debian
Commit message (Collapse)AuthorAge
* debian/patches/pam_unix_dont_trust_chkpwd_caller.patch: fix this patchSteve Langasek2019-01-08
| | | | | | | to call setregid() instead of always returning an error on username mismatch in unix_chkpwd, needed in the SELinux case and in some corner cases with the broken_shadow option. Thanks to Michael Spang for the analysis. Closes: #543589.
* fix up a wrong bug number in the changelogSteve Langasek2019-01-08
|
* releasing version 1.1.0-1Steve Langasek2019-01-08
|
* final pass of manpage fixesSteve Langasek2019-01-08
|
* another pass of manpage fixesSteve Langasek2019-01-08
|
* oops, we don't want to remove the manpages entirely...Steve Langasek2019-01-08
|
* another pass of manpage fixesSteve Langasek2019-01-08
|
* debian/patches/fix-man-crud: new patch, fix "undefined macro" errors inSteve Langasek2019-01-08
| | | | | manpages caused by oddities of toolchain used when generating them upstream.
* add config.h.in changes to autoconf.patch, which will show up upon running aSteve Langasek2019-01-08
| | | | build in any case
* Include changes to pam_limits/README in the patch, since they end up in theSteve Langasek2019-01-08
| | | | | package anyway and this gives us a cleaner ./debian/rules clean
* On upgrade from versions before 1.1.0-1, ifSteve Langasek2019-01-08
| | | | | | /etc/pam.d/common-session-noninteractive has not been created (because the user declined use of pam-auth-update), create it by copying /etc/pam.d/common-session. Closes: #543401.
* document another bug closureSteve Langasek2019-01-08
|
* pam_unix-chkpwd-wait also merged upstreamSteve Langasek2019-01-08
|
* Build with LDFLAGS=-Wl,-z,defs to guard against the possibility ofSteve Langasek2019-01-08
| | | | | any undefined symbols (due to typos or otherwise) at build time. Closes: #10231.
* * Updated debconf translations:Steve Langasek2019-01-08
| | | | | - French, thanks to Jean-Baka Domelevo Entfellner <domelevo@gmail.com> (closes: #521266)
* document another bug closureSteve Langasek2019-01-08
|
* document another bug closureSteve Langasek2019-01-08
|
* debian/patches/007_modules_pam_unix: drop divergence from upstreamSteve Langasek2019-01-08
| | | | | | | that treats "0" as a special value in various fields in /etc/shadow, and document this in debian/NEWS. Thanks to Nicolas François <nicolas.francois@centraliens.net> for the detailed analysis. Closes: #308229.
* document another bug closureSteve Langasek2019-01-08
|
* Committed upstreamSteve Langasek2019-01-08
|
* Document that pam_cracklib no longer checks /etc/security/opasswd.Steve Langasek2019-01-08
|
* And bump the version checks in the libpam-modules {pre,post}inst, so thatSteve Langasek2019-01-08
| | | | | the necessary services get restarted for any modules that need the new symbols.
* Bump the shlibs version as well, for our dpkg-shlibdeps fallback.Steve Langasek2019-01-08
|
* Add /sbin/mkhomedir_helper to libpam-modules.Steve Langasek2019-01-08
|
* Update debian/libpam0g.symbols for new extension.Steve Langasek2019-01-08
|
* refresh other patches for new upstream releaseSteve Langasek2019-01-08
|
* Trim pam.d-manpage-section patch, which was mostly but not completelySteve Langasek2019-01-08
| | | | applied upstream.
* Drop patches pam_unix_thread-safe_save_old_password.patch,Steve Langasek2019-01-08
| | | | | | pam_env_ignore_garbage.patch, dont_freeze_password_chain, pam_1.0.4_mindays, pam_mail-fix-quiet, and cve-2009-0887-libpam-pam_misc.patch, which are included upstream.
* releasing version 1.0.1-11Steve Langasek2019-01-08
|
* further Portuguese debconf revisionSteve Langasek2019-01-08
|
* Russian, thanks to Yuri Kozlov <yuray@komyakino.ru> (closes: #541094)Steve Langasek2019-01-08
|
* Portuguese, thanks to Américo Monteiro <a_monteiro@netcabo.pt>Steve Langasek2019-01-08
| | | | (closes: #541108)
* * Updated debconf translations:Steve Langasek2019-01-08
| | | | - Swedish, thanks to Martin Bagge <brother@bsnet.se> (closes: #541399)
* debian/libpam-runtime.templates: correctly tag the URL as aSteve Langasek2019-01-08
| | | | non-translatable string.
* Clean up the PAM mini-policy, which hasn't been touched in a number ofSteve Langasek2019-01-08
| | | | years and was looking a bit crufty
* s/lenny/squeeze/Steve Langasek2019-01-08
|
* consistent capitalizationSteve Langasek2019-01-08
|
* drop references to pam_stack, which is long deadSteve Langasek2019-01-08
|
* proofread / reflow the mini-policySteve Langasek2019-01-08
|
* document common-session-noninteractive in the Debian PAM policySteve Langasek2019-01-08
|
* add a comment to the md5sum so we know what version it's fromSteve Langasek2019-01-08
|
* debian/local/pam-auth-update: prune md5sums for unsupported upgradeSteve Langasek2019-01-08
| | | | paths (intrepid pre-release -> karmic/lenny)
* debian/local/common-session-noninteractive{,.md5sums},Steve Langasek2019-01-08
| | | | | | | debian/local/pam-auth-update: split out a session-noninteractive include file, so that we can at last distinguish between interactive and non-interactive PAM sessions at a policy level. Closes: #169930, LP: #287715.
* debian/local/common-{auth,account,session,password}.md5sums: documentSteve Langasek2019-01-08
| | | | the known md5sums for the new managed files.
* debian/libpam-runtime.postinst: bump the --force version check toSteve Langasek2019-01-08
| | | | | | 1.0.1-11, to allow for a new common-session-noninteractive config file; and include md5sum checking logic that will work the same with old unmanaged and new managed /etc/pam.d/common-* files.
* releasing version 1.0.1-10Steve Langasek2019-01-08
|
* set correct changelog urgency for security fixSteve Langasek2019-01-08
|
* use the error template type, not the obsolete note typeSteve Langasek2019-01-08
|
* Tweak the language in the new debconf template to my own tastes (hopefullySteve Langasek2019-01-08
| | | | | | this won't require too many round-trips between me and Sam ;), and call debconf-updatepo to make this template available for translation.
* Fix the config error *first* to limit the window of exposure as much asSteve Langasek2019-01-08
| | | | | possible, /then/ display the debconf error which may block the upgrade.