summaryrefslogtreecommitdiff
path: root/modules/pam_unix/support.c
Commit message (Collapse)AuthorAge
* Relevant BUGIDs: 112540Andrew G. Morgan2001-02-11
| | | | | | | | | | | | | | | Purpose of commit: minor security bugfix Commit summary: --------------- Fixes for the password helper binaries. Before, there was no check that the password entered was actually that of the intended user being authenticated. Instead, the password was checked for the requesting user. While this disstinction sounds like a security hole, its actually not been a problem in practice. The helper binaries have only been used in the case that the application is not setuid-0 and as such even if an improper authentication succeeded, the application could not change its uid from that of the requesting user.
* Relevant BUGIDs: 126431, 126423Steve Langasek2000-12-20
| | | | | | | | | | | | Purpose of commit: new feature / bugfix Commit summary: --------------- This changes the format of pam_unix log messages, per bug 126423. The change is extensive (every call to _log_err() now has an additional argument) but straightforward. These changes to the logging code incidentally fix the problem reported in bug 126431.
* Relevant BUGIDs: 126036Steve Langasek2000-12-18
| | | | | | | | | | | | | | | Purpose of commit: cleanup Commit summary: --------------- Changes format of pam_unix 'authentication failure' log messages for purposes of consistency and clarity. Note that we do not log the 'user=' item in the case of an invalid username unless the audit flag is turned on. Note also that the way we currently log these failures isn't i18n-friendly. I imagine this will need correcting at some point in the future.
* Relevant BUGIDs: 125704, 124930Steve Langasek2000-12-13
| | | | | | | | | Purpose of commit: portable handling of utmp in pam_unix Commit summary: --------------- Fixes problem with PAM_getlogin() on Solaris (and hopefully other Unices), as per David Lee's report.
* Relevant BUGIDs: 123399Andrew G. Morgan2000-11-25
| | | | | | | | | Purpose of commit: bugfix Commit summary: --------------- avoid possibility of SIGPIPE from helper binary non-invocation or early exit.
* Relevant BUGIDs: 113238Steve Langasek2000-08-31
| | | | | | | | | | | | Purpose of commit: bugfix to pam_unix Commit summary: --------------- Fixed case where pam_unix would segfault if the app's conversation function returned a null pointer as the password. Since a null pointer can never be a valid password unless the password file also has a null field (which we already check for), we now check for a valid pointer and return PAM_AUTH_ERR if we don't have one.
* Initial revisionAndrew G. Morgan2000-06-20
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-27 15:15:15 +0000