Dag-Erling Smørgrav
|
8c66575de8
|
#include cleanup.
Sponsored by: DARPA, NAI Labs
|
2002-02-05 06:08:26 +00:00 |
|
Mark Murray
|
c2065008b5
|
WARNS=4 fixes. Protect with NO_WERROR for the modules that have
warnings that are hard to fix or that I've been asked to leave alone.
|
2002-01-24 18:37:17 +00:00 |
|
Dag-Erling Smørgrav
|
ca355e5451
|
Correctly interpret PAM_RHOST being unset as an indicator of a local
login.
Sponsored by: DARPA, NAI Labs
|
2002-01-24 16:18:43 +00:00 |
|
Dag-Erling Smørgrav
|
774a10071d
|
Add an AUTHORS section crediting ThinkSec, DARPA and NAI Labs.
Sponsored by: DARPA, NAI Labs
|
2002-01-23 17:16:00 +00:00 |
|
Dag-Erling Smørgrav
|
b0aa095ad0
|
On second thought, getpwnam() failure should be treated just as if the user
existed, but had no OPIE key, i.e. PAM_IGNORE.
Pointed out by: ache
Sponsored by: DARPA, NAI Labs
|
2002-01-21 19:05:45 +00:00 |
|
Dag-Erling Smørgrav
|
b4b56d051a
|
Return PAM_SERVICE_ERR rather than PAM_USER_UNKNOWN if getpwnam() fails, as
PAM_USER_UNKNOWN will break the chain, revealing to an attacker that the
user does not exist.
Sponsored by: DARPA, NAI Labs
|
2002-01-21 18:53:03 +00:00 |
|
Dag-Erling Smørgrav
|
f460490260
|
Add a new module, pam_opieaccess(8), which is responsible for checking
/etc/opieaccess and ~/.opiealways so we can decide what to do after
pam_opie(8) fails.
Sponsored by: DARPA, NAI Labs
Reviewed by: ache, markm
|
2002-01-21 13:43:53 +00:00 |
|