mirror of
https://github.com/vincentmli/bpfire.git
synced 2026-04-09 18:45:54 +02:00
64f9606302
- Update from version 1.5.3 to 1.6.0
- Update of rootfile
- A build bug was found with 1.6.0 if --enable-read-both-confs was set in the configure.
A commit fixing this has been released and converted into a patch for IPFire. This
will end up in the next pam release version and the IPFire patch can then be removed.
- Changelog
1.6.0
* Added support of configuration files with arbitrarily long lines.
* build: fixed build outside of the source tree.
* libpam: added use of getrandom(2) as a source of randomness if available.
* libpam: fixed calculation of fail delay with very long delays.
* libpam: fixed potential infinite recursion with includes.
* libpam: implemented string to number conversions validation when parsing
controls in configuration.
* pam_access: added quiet_log option.
* pam_access: fixed truncation of very long group names.
* pam_canonicalize_user: new module to canonicalize user name.
* pam_echo: fixed file handling to prevent overflows and short reads.
* pam_env: added support of '\' character in environment variable values.
* pam_exec: allowed expose_authtok for password PAM_TYPE.
* pam_exec: fixed stack overflow with binary output of programs.
* pam_faildelay: implemented parameter ranges validation.
* pam_listfile: changed to treat \r and \n exactly the same in configuration.
* pam_mkhomedir: hardened directory creation against timing attacks.
Please note that using *at functions leads to more open file handles
during creation.
* pam_namespace: fixed potential local DoS (CVE-2024-22365).
* pam_nologin: fixed file handling to prevent short reads.
* pam_pwhistory: helper binary is now built only if SELinux support is enabled.
* pam_pwhistory: implemented reliable usernames handling when remembering
passwords.
* pam_shells: changed to allow shell entries with absolute paths only.
* pam_succeed_if: fixed treating empty strings as numerical value 0.
* pam_unix: added support of disabled password aging.
* pam_unix: synchronized password aging with shadow.
* pam_unix: implemented string to number conversions validation.
* pam_unix: fixed truncation of very long user names.
* pam_unix: corrected rounds retrieval for configured encryption method.
* pam_unix: implemented reliable usernames handling when remembering passwords.
* pam_unix: changed to always run the helper to obtain shadow password entries.
* pam_unix: unix_update helper binary is now built only if SELinux support
is enabled.
* pam_unix: added audit support to unix_update helper.
* pam_userdb: added gdbm support.
* Multiple minor bug fixes, portability fixes, documentation improvements,
and translation updates.
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
243 lines
7.3 KiB
Plaintext
243 lines
7.3 KiB
Plaintext
#etc/environment
|
|
etc/pam.d
|
|
etc/security
|
|
#etc/security/access.conf
|
|
#etc/security/faillock.conf
|
|
#etc/security/group.conf
|
|
#etc/security/limits.conf
|
|
#etc/security/limits.d
|
|
#etc/security/namespace.conf
|
|
#etc/security/namespace.d
|
|
#etc/security/namespace.init
|
|
#etc/security/pam_env.conf
|
|
#etc/security/pwhistory.conf
|
|
#etc/security/time.conf
|
|
#lib/security
|
|
#lib/security/faillock
|
|
#lib/security/mkhomedir_helper
|
|
#lib/security/pam_access.la
|
|
lib/security/pam_access.so
|
|
#lib/security/pam_canonicalize_user.la
|
|
#lib/security/pam_canonicalize_user.so
|
|
#lib/security/pam_debug.la
|
|
#lib/security/pam_debug.so
|
|
#lib/security/pam_deny.la
|
|
lib/security/pam_deny.so
|
|
#lib/security/pam_echo.la
|
|
#lib/security/pam_echo.so
|
|
#lib/security/pam_env.la
|
|
lib/security/pam_env.so
|
|
#lib/security/pam_exec.la
|
|
lib/security/pam_exec.so
|
|
#lib/security/pam_faildelay.la
|
|
lib/security/pam_faildelay.so
|
|
#lib/security/pam_faillock.la
|
|
#lib/security/pam_faillock.so
|
|
#lib/security/pam_filter
|
|
#lib/security/pam_filter.la
|
|
#lib/security/pam_filter.so
|
|
#lib/security/pam_filter/upperLOWER
|
|
#lib/security/pam_ftp.la
|
|
#lib/security/pam_ftp.so
|
|
#lib/security/pam_group.la
|
|
lib/security/pam_group.so
|
|
#lib/security/pam_issue.la
|
|
lib/security/pam_issue.so
|
|
#lib/security/pam_keyinit.la
|
|
lib/security/pam_keyinit.so
|
|
#lib/security/pam_limits.la
|
|
lib/security/pam_limits.so
|
|
#lib/security/pam_listfile.la
|
|
#lib/security/pam_listfile.so
|
|
#lib/security/pam_localuser.la
|
|
#lib/security/pam_localuser.so
|
|
#lib/security/pam_loginuid.la
|
|
lib/security/pam_loginuid.so
|
|
#lib/security/pam_mail.la
|
|
lib/security/pam_mail.so
|
|
#lib/security/pam_mkhomedir.la
|
|
#lib/security/pam_mkhomedir.so
|
|
#lib/security/pam_motd.la
|
|
#lib/security/pam_motd.so
|
|
#lib/security/pam_namespace.la
|
|
#lib/security/pam_namespace.so
|
|
#lib/security/pam_namespace_helper
|
|
#lib/security/pam_nologin.la
|
|
lib/security/pam_nologin.so
|
|
#lib/security/pam_permit.la
|
|
lib/security/pam_permit.so
|
|
#lib/security/pam_pwhistory.la
|
|
lib/security/pam_pwhistory.so
|
|
#lib/security/pam_rhosts.la
|
|
lib/security/pam_rhosts.so
|
|
#lib/security/pam_rootok.la
|
|
#lib/security/pam_rootok.so
|
|
#lib/security/pam_securetty.la
|
|
#lib/security/pam_securetty.so
|
|
#lib/security/pam_setquota.la
|
|
#lib/security/pam_setquota.so
|
|
#lib/security/pam_shells.la
|
|
lib/security/pam_shells.so
|
|
#lib/security/pam_stress.la
|
|
#lib/security/pam_stress.so
|
|
#lib/security/pam_succeed_if.la
|
|
#lib/security/pam_succeed_if.so
|
|
#lib/security/pam_time.la
|
|
#lib/security/pam_time.so
|
|
#lib/security/pam_timestamp.la
|
|
#lib/security/pam_timestamp.so
|
|
#lib/security/pam_timestamp_check
|
|
#lib/security/pam_umask.la
|
|
#lib/security/pam_umask.so
|
|
#lib/security/pam_unix.la
|
|
lib/security/pam_unix.so
|
|
#lib/security/pam_userdb.la
|
|
#lib/security/pam_userdb.so
|
|
#lib/security/pam_usertype.la
|
|
#lib/security/pam_usertype.so
|
|
#lib/security/pam_warn.la
|
|
#lib/security/pam_warn.so
|
|
#lib/security/pam_wheel.la
|
|
#lib/security/pam_wheel.so
|
|
#lib/security/pam_xauth.la
|
|
#lib/security/pam_xauth.so
|
|
#lib/security/pwhistory_helper
|
|
lib/security/unix_chkpwd
|
|
lib/security/unix_update
|
|
#usr/include/security
|
|
#usr/include/security/_pam_compat.h
|
|
#usr/include/security/_pam_macros.h
|
|
#usr/include/security/_pam_types.h
|
|
#usr/include/security/pam_appl.h
|
|
#usr/include/security/pam_client.h
|
|
#usr/include/security/pam_ext.h
|
|
#usr/include/security/pam_filter.h
|
|
#usr/include/security/pam_misc.h
|
|
#usr/include/security/pam_modules.h
|
|
#usr/include/security/pam_modutil.h
|
|
#usr/lib/libpam.la
|
|
#usr/lib/libpam.so
|
|
usr/lib/libpam.so.0
|
|
usr/lib/libpam.so.0.85.1
|
|
#usr/lib/libpam_misc.la
|
|
#usr/lib/libpam_misc.so
|
|
usr/lib/libpam_misc.so.0
|
|
usr/lib/libpam_misc.so.0.82.1
|
|
#usr/lib/libpamc.la
|
|
#usr/lib/libpamc.so
|
|
usr/lib/libpamc.so.0
|
|
usr/lib/libpamc.so.0.82.1
|
|
#usr/lib/pkgconfig/pam.pc
|
|
#usr/lib/pkgconfig/pam_misc.pc
|
|
#usr/lib/pkgconfig/pamc.pc
|
|
#usr/lib/systemd
|
|
#usr/lib/systemd/system
|
|
#usr/lib/systemd/system/pam_namespace.service
|
|
#usr/share/doc/Linux-PAM
|
|
#usr/share/doc/Linux-PAM/draft-morgan-pam-current.txt
|
|
#usr/share/doc/Linux-PAM/index.html
|
|
#usr/share/doc/Linux-PAM/rfc86.0.txt
|
|
#usr/share/man/man3/misc_conv.3
|
|
#usr/share/man/man3/pam.3
|
|
#usr/share/man/man3/pam_acct_mgmt.3
|
|
#usr/share/man/man3/pam_authenticate.3
|
|
#usr/share/man/man3/pam_chauthtok.3
|
|
#usr/share/man/man3/pam_close_session.3
|
|
#usr/share/man/man3/pam_conv.3
|
|
#usr/share/man/man3/pam_end.3
|
|
#usr/share/man/man3/pam_error.3
|
|
#usr/share/man/man3/pam_fail_delay.3
|
|
#usr/share/man/man3/pam_get_authtok.3
|
|
#usr/share/man/man3/pam_get_authtok_noverify.3
|
|
#usr/share/man/man3/pam_get_authtok_verify.3
|
|
#usr/share/man/man3/pam_get_data.3
|
|
#usr/share/man/man3/pam_get_item.3
|
|
#usr/share/man/man3/pam_get_user.3
|
|
#usr/share/man/man3/pam_getenv.3
|
|
#usr/share/man/man3/pam_getenvlist.3
|
|
#usr/share/man/man3/pam_info.3
|
|
#usr/share/man/man3/pam_misc_drop_env.3
|
|
#usr/share/man/man3/pam_misc_paste_env.3
|
|
#usr/share/man/man3/pam_misc_setenv.3
|
|
#usr/share/man/man3/pam_open_session.3
|
|
#usr/share/man/man3/pam_prompt.3
|
|
#usr/share/man/man3/pam_putenv.3
|
|
#usr/share/man/man3/pam_set_data.3
|
|
#usr/share/man/man3/pam_set_item.3
|
|
#usr/share/man/man3/pam_setcred.3
|
|
#usr/share/man/man3/pam_sm_acct_mgmt.3
|
|
#usr/share/man/man3/pam_sm_authenticate.3
|
|
#usr/share/man/man3/pam_sm_chauthtok.3
|
|
#usr/share/man/man3/pam_sm_close_session.3
|
|
#usr/share/man/man3/pam_sm_open_session.3
|
|
#usr/share/man/man3/pam_sm_setcred.3
|
|
#usr/share/man/man3/pam_start.3
|
|
#usr/share/man/man3/pam_strerror.3
|
|
#usr/share/man/man3/pam_syslog.3
|
|
#usr/share/man/man3/pam_verror.3
|
|
#usr/share/man/man3/pam_vinfo.3
|
|
#usr/share/man/man3/pam_vprompt.3
|
|
#usr/share/man/man3/pam_vsyslog.3
|
|
#usr/share/man/man3/pam_xauth_data.3
|
|
#usr/share/man/man5/access.conf.5
|
|
#usr/share/man/man5/environment.5
|
|
#usr/share/man/man5/faillock.conf.5
|
|
#usr/share/man/man5/group.conf.5
|
|
#usr/share/man/man5/limits.conf.5
|
|
#usr/share/man/man5/namespace.conf.5
|
|
#usr/share/man/man5/pam.conf.5
|
|
#usr/share/man/man5/pam.d.5
|
|
#usr/share/man/man5/pam_env.conf.5
|
|
#usr/share/man/man5/pwhistory.conf.5
|
|
#usr/share/man/man5/time.conf.5
|
|
#usr/share/man/man8/PAM.8
|
|
#usr/share/man/man8/faillock.8
|
|
#usr/share/man/man8/mkhomedir_helper.8
|
|
#usr/share/man/man8/pam.8
|
|
#usr/share/man/man8/pam_access.8
|
|
#usr/share/man/man8/pam_canonicalize_user.8
|
|
#usr/share/man/man8/pam_debug.8
|
|
#usr/share/man/man8/pam_deny.8
|
|
#usr/share/man/man8/pam_echo.8
|
|
#usr/share/man/man8/pam_env.8
|
|
#usr/share/man/man8/pam_exec.8
|
|
#usr/share/man/man8/pam_faildelay.8
|
|
#usr/share/man/man8/pam_faillock.8
|
|
#usr/share/man/man8/pam_filter.8
|
|
#usr/share/man/man8/pam_ftp.8
|
|
#usr/share/man/man8/pam_group.8
|
|
#usr/share/man/man8/pam_issue.8
|
|
#usr/share/man/man8/pam_keyinit.8
|
|
#usr/share/man/man8/pam_limits.8
|
|
#usr/share/man/man8/pam_listfile.8
|
|
#usr/share/man/man8/pam_localuser.8
|
|
#usr/share/man/man8/pam_loginuid.8
|
|
#usr/share/man/man8/pam_mail.8
|
|
#usr/share/man/man8/pam_mkhomedir.8
|
|
#usr/share/man/man8/pam_motd.8
|
|
#usr/share/man/man8/pam_namespace.8
|
|
#usr/share/man/man8/pam_namespace_helper.8
|
|
#usr/share/man/man8/pam_nologin.8
|
|
#usr/share/man/man8/pam_permit.8
|
|
#usr/share/man/man8/pam_pwhistory.8
|
|
#usr/share/man/man8/pam_rhosts.8
|
|
#usr/share/man/man8/pam_rootok.8
|
|
#usr/share/man/man8/pam_securetty.8
|
|
#usr/share/man/man8/pam_setquota.8
|
|
#usr/share/man/man8/pam_shells.8
|
|
#usr/share/man/man8/pam_stress.8
|
|
#usr/share/man/man8/pam_succeed_if.8
|
|
#usr/share/man/man8/pam_time.8
|
|
#usr/share/man/man8/pam_timestamp.8
|
|
#usr/share/man/man8/pam_timestamp_check.8
|
|
#usr/share/man/man8/pam_umask.8
|
|
#usr/share/man/man8/pam_unix.8
|
|
#usr/share/man/man8/pam_userdb.8
|
|
#usr/share/man/man8/pam_usertype.8
|
|
#usr/share/man/man8/pam_warn.8
|
|
#usr/share/man/man8/pam_wheel.8
|
|
#usr/share/man/man8/pam_xauth.8
|
|
#usr/share/man/man8/pwhistory_helper.8
|
|
#usr/share/man/man8/unix_chkpwd.8
|
|
#usr/share/man/man8/unix_update.8
|