summaryrefslogtreecommitdiff
path: root/debian/NEWS
blob: 46b119277abb69f4aee0702225a40c30a93cfbd8 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
pam (0.99.10.0-1) unstable; urgency=low

  * pam_rhosts_auth module obsolete

    The pam_rhosts_auth module has been dropped upstream in favor of the
    more featureful and better-maintained pam_rhosts module.  To ease the
    transition to pam_rhosts, a compatibility symlink has been provided to
    map pam_rhosts_auth to pam_rhosts on your system; however, pam_rhosts
    doesn't support all of the same module options and the compatibility
    symlink will be dropped in a future release.  You should update any
    configs to use pam_rhosts instead of pam_rhosts_auth as soon as possible.

    For information on using pam_rhosts, see the pam_rhosts(8) manpage.

 -- Steve Langasek <vorlon@debian.org>  Sat, 26 Jul 2008 22:01:22 -0700

pam (0.99.7.1-5) unstable; urgency=low

  * Default Unix minimum password length has changed

    Previous versions of pam_unix on Debian had a built-in minimum password
    length of 1 character, and a minimum password length configured in
    /etc/pam.d/common-password of 4 characters.  This differed from the
    upstream default of 6 characters.  This has been changed, so the
    default /etc/pam.d/common-password no longer overrides the compile-time
    default and the compile-time default has been raised to 6 characters.
    If you are using pam_unix but are not using the default
    /etc/pam.d/common-password file, it is recommended that you drop any
    min= options to pam_unix from your config unless you have stronger
    local password requirements that the upstream default.

    The password length 'max' option has also been deprecated in this
    version because it was never written to work as suggested in the
    documentation.  If you are using pam_unix but are not using the default
    /etc/pam.d/common-password file, you should remove any old max= options
    to pam_unix from your config as this option will be considered an error
    in future versions of pam.

 -- Steve Langasek <vorlon@debian.org>  Sat, 01 Sep 2007 21:27:11 -0700