| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
| |
Sponsored by: DARPA, NAI Labs
|
| |
|
|
| |
Sponsored by: DARPA, NAI Labs
|
| |
|
|
| |
statement) that caused pam_sm_chauthtok() to always fail silently.
|
| | |
|
| | |
|
| |
|
|
| |
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
| |
Rework pam_sm_chauthtok() so it (mostly?) works.
The standard pw stuff still needs to move into a library somewhere.
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
- add __unused where appropriate
- PAM_RETURN -> return since OpenPAM already logs the return value.
- make PAM_LOG use openpam_log()
- make PAM_VERBOSE_ERROR use openpam_get_option() and check flags
for PAM_SILENT
- remove dummy functions since OpenPAM handles missing service
functions
- fix various warnings
Sponsored by: DARPA, NAI Labs
|
| |
|
|
| |
Approved by: des
|
| |
|
|
|
|
|
|
| |
I've looked for this example for a long time, to demonstrate
some people why it's a really BAD idea to use ${.OBJDIR}
instead of ".". I hope these people are reading this. :-)
Approved by: des
|
| | |
|
| |
|
|
| |
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
|
|
| |
login_getcapstr(3). Also fix a longer-standing bug (login_close(3)
frees the string returned by login_getcapstr(3)) by reorganizing the
code a little, and use login_getpwclass(3) instead of login_getclass(3)
if we already have a struct pwd.
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
| |
PAMifying passwd(1).
Sponsored by: DARPA, NAI Labs.
|
| |
|
|
| |
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
|
| |
chpass(8). The relations between libc, libpam, chpass, passwd, and
vipw are a mess and probably should be cleaned up.
Submitted by: Peter Pentchev <roam@ringlet.net>
|
| | |
|
| |
|
|
|
|
|
| |
its own function. The use of arc4random(3) is hopeless overkill here,
but that does not hurt anything.
Requested by: ache
|
| | |
|
| |
|
|
|
|
|
|
|
| |
applications linked with Linux-PAM will still work.
Remove pam_get_pass(); OpenPAM has pam_get_authtok().
Remove pam_prompt(); OpenPAM has pam_{,v}{error,info,prompt}().
Remove pam_set_item(3) man page as OpenPAM has its own.
Sponsored by: DARPA, NAI Labs
|
| |
|
|
| |
Sponsored by: DARPA, NAI Labs
|
| | |
|
| |
|
|
| |
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
| |
difference except that the salt is slightly harder to build
dictionaries against, and the code does not use srandom[dev]().
|
| | |
|
| |
|
|
|
|
| |
login(1) (password & account expiry, hosts.access etc.) into pam_unix(8).
Sponsored by: DARPA, NAI Labs
|
| |
|
|
| |
warnings that are hard to fix or that I've been asked to leave alone.
|
| | |
|
| |
|
|
| |
old expired password assumed there
|
| |
|
|
|
| |
srandomdev() can't be used in libraries, replace srandomdev()+random()
by arc4random()
|
| | |
|
| | |
|
| |
|
|
|
|
| |
the SEE ALSO section. License modified with original author's permission.
Sponsored by: DARPA, NAI Labs
|
| |
|
|
|
|
| |
makes FreeBSD inconsistent with previous releases and "other unices" as well
as with some internal password-asking services (e.g. ftp) within the same
release.
|
| | |
|
| |
|
|
|
| |
introduce ability to change passwords for both "usual" Unix methods
and NIS.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
o The new options-processing API
o The new DEBUG-logging API
Add man(1) pages for ALL modules. MDOC-Police welcome
to check this.
Audit, clean up while I'm here.
|
| |
|
|
|
|
|
|
|
|
|
| |
Move common stuff into Makefile.inc, and tidy up all the Makefiles
as a result.
Build new modules.
Put a commented-out dependancy on libpam for the (shared) modules.
I can't bring this in just yet, as the dependancy (modules->libpam)
is reversed for the static case (libpam->modules).
|
| |
|
|
| |
password is empty/null.
|
| |
|
|
|
|
|
| |
reason not to add it to others later). This causes the pam_unix
module to check the user's _own_ password, not the password of the
account that the user is authenticating into. This will allow eg:
WHEELSU type behaviour from su(1).
|
| |
|
|
|
|
|
|
| |
non-threaded programs. This provides threaded programs with the
needed exception frame symbols.
parts submitted by: Max Khon <fjoe@iclub.nsu.ru>
PR: 23252
|
| |
|
|
|
| |
because login was already linked against it, but others have a
problem.
|
| |
|
|
|
|
|
|
|
|
| |
simple enough to be trusted.
Add account management functionality to the pam_unix module.
These changes should make it possible to use PAM in some ports.
Submitted by: Max Khon <fjoe@iclub.nsu.ru>
|
| |
|
|
|
|
| |
in.
Submitted by: Paul Traina <pst@juniper.net>
|
| | |
|
|
|
modules for FreeBSD's standard authentication methods. Although
the Linux-PAM modules are present in the contrib tree, we don't
use any of them.
The main library "libpam" is composed of sources taken from three
places. First are the standard Linux-PAM libpam sources from the
contrib tree. Second are the Linux-PAM "libpam_misc" sources, also
from the contrib tree. In Linux these form a separate library.
But as Mike Smith pointed out to me, that seems pointless, so I
have combined them into the libpam library. Third are some additional
sources from the "src/lib/libpam" tree with some common functions
that make it easier to write modules. Those I wrote myself.
This work has been donated to FreeBSD by Juniper Networks, Inc.
|
