summaryrefslogtreecommitdiffstats
path: root/lib/libpam/modules
Commit message (Collapse)AuthorAgeFilesLines
* mdoc(7) police: sort SEE ALSO xrefs (sort -b -f +2 -3 +1 -2).ru2001-07-061-2/+2
|
* mdoc(7) police: fixed formatting.ru2001-07-061-41/+64
|
* Convert to mdoc(7).chris2001-06-131-86/+84
|
* Big module cleanup.markm2001-06-0417-265/+46
| | | | | | | | | | | Move common stuff into Makefile.inc, and tidy up all the Makefiles as a result. Build new modules. Put a commented-out dependancy on libpam for the (shared) modules. I can't bring this in just yet, as the dependancy (modules->libpam) is reversed for the static case (libpam->modules).
* Null file to bring back a file from the dead. This allows the real commitmarkm2001-06-041-0/+2
| | | | to happen remotely. Damn CVS bugs :-(
* Add the "nullok" option that causes this module to succeed if the Unixmarkm2001-06-041-3/+11
| | | | password is empty/null.
* Add some new utility authenticators.markm2001-06-044-0/+354
| | | | | | | | pam_securetty silently succeeds if the user is on a secure tty as defined by /etc/ttys. pam_ftp does "anonymous ftp" style authentication with options for specifying the anonymous user(s).
* Add the "auth_as_self" option to the pam_unix module (there is nomarkm2001-05-241-3/+8
| | | | | | | reason not to add it to others later). This causes the pam_unix module to check the user's _own_ password, not the password of the account that the user is authenticating into. This will allow eg: WHEELSU type behaviour from su(1).
* Bring in a few useful PAM modules.markm2001-05-1416-2/+1805
| | | | | | | | | | | | | | | | | | pam_krb5 is a Kerberos 5 (Heimdal) authentication module. pam_nologin checks for /etc/nologin and does the "usual stuff" if it is found, otherwise it silently succeeds. pam_rootok silently succeeds if the user is root, otherwise it fails. pam_wheel silently succeeds if the user is a member of group "wheel" (or another nominated group), and fails otherwise. There is an issue with kerberosIV and kerberos5 - if both are being built, then static linking fails with duplicate symbols. This will take a bit of work to sort out in the kerberii.
* I've been meaning to take pam_ssh out of the base system for a while now.green2001-05-041-3/+0
| | | | Finally do it.
* mdoc(7) police: uppercase document title.ru2001-04-181-1/+1
|
* MAN[1-9] -> MAN.ru2001-03-271-1/+1
|
* Use a unified libgcc rather than a seperate one for threaded andjhb2001-01-061-2/+2
| | | | | | | | non-threaded programs. This provides threaded programs with the needed exception frame symbols. parts submitted by: Max Khon <fjoe@iclub.nsu.ru> PR: 23252
* Use a unified libgcc rather than a seperate one for threaded andobrien2001-01-069-18/+14
| | | | | | | | non-threaded programs. This provides threaded programs with the needed exception frame symbols. parts submitted by: Max Khon <fjoe@iclub.nsu.ru> PR: 23252
* Prepare for mdoc(7)NG.ru2000-12-291-1/+2
|
* mdoc(7) police: removed history info from the .Os FreeBSD call.ru2000-12-141-1/+1
|
* Forgot to remove the old line in the last commit.green2000-12-051-1/+0
|
* In env_destroy(), it is a bad idea to env_swap(self, 0) to switchgreen2000-11-251-0/+2
| | | | | | | | | | back to the original environ unconditionally. The setting of the variable to save the previous environ is conditional; it happens when ENV.e_committed is set. Therefore, don't try to swap the env back unless the previous env has been initialized. PR: bin/22670 Submitted by: Takanori Saneto <sanewo@ba2.so-net.ne.jp>
* Correct an arguement to ssh_add_identity, this matches what is currentlybillf2000-11-251-1/+1
| | | | | | | | | in ports/security/openssh/files/pam_ssh.c PR: 22164 Submitted by: Takanori Saneto <sanewo@ba2.so-net.ne.jp> Reviewed by: green Approved by: green
* logru2000-11-221-0/+1
|
* Update to the version of pam_ssh corresponding to OpenSSH 2.1 (takenkris2000-05-301-19/+23
| | | | | | from the openssh port) Submitted by: Hajimu UMEMOTO <ume@mahoroba.org>
* Back out the previous change to the queue(3) interface.jake2000-05-261-2/+2
| | | | | | It was not discussed and should probably not happen. Requested by: msmith and others
* Change the way that the queue(3) structures are declared; don't assume thatjake2000-05-231-2/+2
| | | | | | | | the type argument to *_HEAD and *_ENTRY is a struct. Suggested by: phk Reviewed by: phk Approved by: mdodd
* Connect pam_opie to the build.kris2000-04-171-0/+1
|
* Add pam_opie, a PAM module using the OPIE one-time-password scheme.kris2000-04-172-0/+150
| | | | Submitted by: Jim Bloom <bloom@acm.org>
* Fix a memory leak.kris2000-03-291-5/+8
| | | | | PR: 17360 Submitted by: Andrew J. Korty <ajk@iu.edu>
* Fixed missing libraries in DPADD.bde2000-03-271-3/+3
| | | | | Fixed some style bugs (some usual ones for DPADD and LDADD, and misformatting of $FreeBSD$).
* Buildworld fixes for NO_OPENSSH and NO_OPENSSLkris2000-03-091-3/+3
| | | | Approved by: jkh
* Make pam_ssh work. It had an undefined symbol when it was dlopen()ed.peter2000-03-061-1/+1
| | | | | | | | | | I'm not quite sure about this, I think it should be using -lssh_pic since it's being linked into a .so, but nothing seems to complain ahd it does work. (well, it works for using the authorized_keys file, but I have not figured out how to get it to start a ssh-agent and cache the key for me) PR: 17191 Submitted by: Adrian Pavlykevych <pam@polynet.lviv.ua>
* Remove single-space hard sentence breaks. These degrade the qualitysheldonh2000-03-021-1/+2
| | | | | of the typeset output, tend to make diffs harder to read and provide bad examples for new-comers to mdoc.
* Remove single-space hard sentence breaks. These degrade the qualitysheldonh2000-03-011-2/+4
| | | | | of the typeset output, tend to make diffs harder to read and provide bad examples for new-comers to mdoc.
* Don't try to build k5 PAM; it ain't ready yet.markm2000-02-281-1/+1
|
* Argh, I can't win today. Spell ${.CURDIR} correctly.peter2000-02-261-1/+1
|
* Don't build pam_ssh if the crypto code is missing.peter2000-02-261-1/+1
| | | | Found by: sos
* Redo this with a repo copy from the original file and reset thepeter2000-02-261-1/+1
| | | | __PREFIX__ markers.
* Use libcrypto instead of libdes.markm2000-02-244-3/+29
| | | | Also - OpenSSH blesses us with a module for PAM.
* Remove the version information from `.Os FreeBSD' here. Not onlychris2000-02-141-1/+1
| | | | | | | | might it confuse people, but it causes a warning message with nroff, and no version history mentions a 1.2 version of FreeBSD. If anything, a ``HISTORY'' section should show which version this appeared in.
* Upgrade to the pam_ssh module, version 1.1..green1999-12-281-12/+173
| | | | | | | | | | (From the author:) Primarily, I have added built-in functions for manipulating the environment, so putenv() is no longer used. XDM and its variants should now work without modification. Note that the new code uses the macros in <sys/queue.h>. Submitted by: Andrew J. Korty <ajk@iu.edu>
* Add the PAM SSH RSA key authentication module. For example, you can add,green1999-11-291-0/+328
| | | | | | | | | "login auth sufficient pam_ssh.so" to your /etc/pam.conf, and users with a ~/.ssh/identity can login(1) with their SSH key :) PR: 15158 Submitted by: Andrew J. Korty <ajk@waterspout.com> Reviewed by: obrien
* Don't include Kerberos if NOCRYPT is defined, because it isn't buildmarcel1999-11-142-3/+9
| | | | | if NOCRYPT is defined. Likewise, don't include DES if NOSECURE is defined.
* Add libcrypt. This previously/coincidentally worked for login,markm1999-09-301-2/+2
| | | | | because login was already linked against it, but others have a problem.
* Common Error libraries are needed here.markm1999-09-201-2/+2
|
* $Id$ -> $FreeBSD$peter1999-08-281-1/+1
|
* $Id$ -> $FreeBSD$peter1999-08-281-1/+1
|
* Restore INTERNALLIB.abial1999-08-201-0/+1
| | | | Noticed by: bde,jdp
* Add pam_radius.so manual page.abial1999-08-182-1/+130
| | | | Reviewed by: jdp
* Add $Id$, to make it simpler for members of the translation teams tonik1999-07-121-0/+3
| | | | | | | | | | | | | | | | | track. The $Id$ line is normally at the bottom of the main comment block in the man page, separated from the rest of the manpage by an empty comment, like so; .\" $Id$ .\" If the immediately preceding comment is a @(#) format ID marker than the the $Id$ will line up underneath it with no intervening blank lines. Otherwise, an additional blank line is inserted. Approved by: bde
* Revive the pam_deny and pam_permit modules from Linux-PAM. They arejdp1999-05-085-2/+161
| | | | | | | | | | simple enough to be trusted. Add account management functionality to the pam_unix module. These changes should make it possible to use PAM in some ports. Submitted by: Max Khon <fjoe@iclub.nsu.ru>
* Fix bug that prevented accounts with empty passwords from loggingjdp1999-04-061-1/+1
| | | | | | in. Submitted by: Paul Traina <pst@juniper.net>
* Revert my last change, "Rename some globals to reduce namespacejdp1999-01-212-20/+20
| | | | | pollution." Unfortunately, some of these globals are used by ftpd, and I broke make world. Pointy hat, please.
OpenPOWER on IntegriCloud