Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix: | markm | 2001-08-11 | 1 | -7/+8 |
| | | | | | | | | | | | | | /usr/src/lib/libpam/modules/pam_ssh/pam_ssh.c has couple of bugs which cause: 1) xdm dumps core 2) ssh1 private key is not passed to ssh-agent 3) ssh2 RSA key seems not handled properly (just a guess from source) 4) ssh_get_authentication_connectionen() fails to get connection because of SSH_AUTH_SOCK not defined. PR: 29609 Submitted by: Takanori Saneto <sanewo@ba2.so-net.ne.jp> | ||||
* | Clean up this module very extensively. Fix the logging, the coding | markm | 2001-08-10 | 12 | -1410/+1101 |
| | | | | | standards and the option handling. This module is now much more easy to maintain as a part of the FreeBSD tree. | ||||
* | Code clean up; make logging same as other modules and fix warnings. | markm | 2001-08-10 | 1 | -3/+9 |
| | |||||
* | General code clean-up. Sort out warnings, and make the warning and | markm | 2001-08-10 | 1 | -6/+14 |
| | | | | logging work the same as other modules. | ||||
* | Simplify code. Also verbose logging, verbose overridable error reporting. | markm | 2001-08-10 | 1 | -5/+10 |
| | |||||
* | Verbose logging, overridable verbose error reporting. | markm | 2001-08-10 | 3 | -2/+18 |
| | |||||
* | Module clean-up. Verbose logging, Overridable verbose error reporting, | markm | 2001-08-10 | 1 | -26/+21 |
| | | | | FreeBSD pam_prompt() usage to simplify conversation function usage. | ||||
* | Verbosely (overridable) report failure to the user. | markm | 2001-08-10 | 1 | -0/+4 |
| | |||||
* | Use the FreeBSD pam_prompt() interface to the conversation function | markm | 2001-08-10 | 1 | -79/+62 |
| | | | | | instead of home-rolling it. Clean up debugging code and tidy the module. | ||||
* | Verbosely report errors to the user (overridable), and make sure | markm | 2001-08-10 | 1 | -3/+15 |
| | | | | that the correct failure mode is reported. | ||||
* | Fix broken logic so that this actually works for the superuser. | markm | 2001-08-10 | 1 | -5/+21 |
| | | | | | Verbosely log (properly). Verbosely report errors to the user. | ||||
* | Rework this to prevent a nasty problem involving different modules' | markm | 2001-08-10 | 1 | -42/+34 |
| | | | | option interacting with each other. | ||||
* | Declare the new user-error reporting macro. | markm | 2001-08-10 | 2 | -6/+18 |
| | | | | | This is a macro to allow use of the __FILE__ and __FUNCTION__ macros. | ||||
* | Add a routine for providing feedback via the conversation mechanism | markm | 2001-08-10 | 1 | -24/+58 |
| | | | | (usually to stderr) for user-reportable errors. | ||||
* | Fix style/consistency in Makefile and repair static module building. | markm | 2001-08-04 | 2 | -5/+4 |
| | | | | Submitted by: bde(partially) | ||||
* | Don't clobber CFLAGS | markm | 2001-08-04 | 1 | -1/+1 |
| | | | | Submitted by: bde | ||||
* | Fix the bug where this modulke was not checking the priamry GID, only | markm | 2001-08-04 | 1 | -24/+11 |
| | | | | | | | the GIDS in /etc/group or NIS's group map. Tested by: sheldonh PR: 29349 | ||||
* | With the S/KEY removal, this is no longer buildable or necessary. | markm | 2001-08-02 | 2 | -102/+0 |
| | |||||
* | Don't try to make pam_ssh module if NO_OPENSSH is set. | markm | 2001-08-02 | 1 | -1/+1 |
| | |||||
* | Repair the get/set UID() stuff so this works in both su(1) and login(1) | markm | 2001-08-02 | 1 | -3/+3 |
| | | | | modes. | ||||
* | Making this major bump was a BAD idea. The API change is internal (to PAM) | markm | 2001-07-30 | 1 | -1/+1 |
| | | | | and it caused problems without solving any. | ||||
* | (Re)Add an SSH module for PAM, heavily based on Andrew Korty's module | markm | 2001-07-29 | 4 | -332/+404 |
| | | | | from ports. | ||||
* | mdoc(7) police: widen width of the options list. | ru | 2001-07-18 | 1 | -1/+1 |
| | |||||
* | Update to the same level of debug-logging as the rest of the | markm | 2001-07-17 | 1 | -6/+26 |
| | | | | FreeBSD/PAM modules. | ||||
* | Update to the same code as in the pam_krb5.so port. | markm | 2001-07-17 | 4 | -64/+24 |
| | | | | According to Peter, the port works - this needs more testing. | ||||
* | Remove whitespace at EOL. | dd | 2001-07-15 | 1 | -3/+3 |
| | |||||
* | Use a better method of getting user credentials to account for | markm | 2001-07-14 | 2 | -8/+8 |
| | | | | | | (legal) UID duplication. Rename use_uid to auth_as_self for consistency with other modules. | ||||
* | Use a better method to get user credentials to account for (legal) | markm | 2001-07-14 | 2 | -2/+3 |
| | | | | duplications of UID's in /etc/*passwd. | ||||
* | mdoc(7) police: -xwidth has been fold into -width. | ru | 2001-07-13 | 12 | -19/+19 |
| | |||||
* | mdoc(7) police: fixed markup, a little bit. | ru | 2001-07-11 | 10 | -59/+67 |
| | |||||
* | mdoc(7) police: fixed markup any numerous typos. | ru | 2001-07-11 | 1 | -19/+24 |
| | |||||
* | Fix a horrible bug introduced by myself where the options collection | markm | 2001-07-10 | 3 | -11/+20 |
| | | | | keeps on growing as the module stack is parsed. | ||||
* | mdoc(7) police: removed HISTORY info from the .Os call. | ru | 2001-07-10 | 1 | -1/+1 |
| | |||||
* | mdoc(7) police: removed HISTORY info from the .Os call. | ru | 2001-07-10 | 1 | -1/+1 |
| | |||||
* | Clean up (and in some cases write) the PAM mudules, using | markm | 2001-07-09 | 35 | -266/+2030 |
| | | | | | | | | | | o The new options-processing API o The new DEBUG-logging API Add man(1) pages for ALL modules. MDOC-Police welcome to check this. Audit, clean up while I'm here. | ||||
* | Bump the major number. The libraries API has changed incompatibly. | markm | 2001-07-09 | 1 | -1/+1 |
| | |||||
* | Almost completely rewrite the PAM module options processing | markm | 2001-07-09 | 7 | -82/+334 |
| | | | | | | | | routines, and provide a more extended API for doing this. Provide an API for debug logging. Audit and clean up the code. | ||||
* | mdoc(7) police: sort SEE ALSO xrefs (sort -b -f +2 -3 +1 -2). | ru | 2001-07-06 | 1 | -2/+2 |
| | |||||
* | mdoc(7) police: fixed formatting. | ru | 2001-07-06 | 1 | -41/+64 |
| | |||||
* | Fix libpam's linker set stuff to use the new API (unbreak world), and get | peter | 2001-06-14 | 1 | -10/+1 |
| | | | | rid of gensetdefs from here as well. | ||||
* | Convert to mdoc(7). | chris | 2001-06-13 | 1 | -86/+84 |
| | |||||
* | Big module cleanup. | markm | 2001-06-04 | 18 | -267/+48 |
| | | | | | | | | | | | Move common stuff into Makefile.inc, and tidy up all the Makefiles as a result. Build new modules. Put a commented-out dependancy on libpam for the (shared) modules. I can't bring this in just yet, as the dependancy (modules->libpam) is reversed for the static case (libpam->modules). | ||||
* | Null file to bring back a file from the dead. This allows the real commit | markm | 2001-06-04 | 1 | -0/+2 |
| | | | | to happen remotely. Damn CVS bugs :-( | ||||
* | Add the "nullok" option that causes this module to succeed if the Unix | markm | 2001-06-04 | 1 | -3/+11 |
| | | | | password is empty/null. | ||||
* | Tidy up the options list (and make it more extendable), and add some | markm | 2001-06-04 | 3 | -14/+23 |
| | | | | extra "standard" options. | ||||
* | Add some new utility authenticators. | markm | 2001-06-04 | 4 | -0/+354 |
| | | | | | | | | pam_securetty silently succeeds if the user is on a secure tty as defined by /etc/ttys. pam_ftp does "anonymous ftp" style authentication with options for specifying the anonymous user(s). | ||||
* | Add the "auth_as_self" option to the pam_unix module (there is no | markm | 2001-05-24 | 4 | -3/+11 |
| | | | | | | | reason not to add it to others later). This causes the pam_unix module to check the user's _own_ password, not the password of the account that the user is authenticating into. This will allow eg: WHEELSU type behaviour from su(1). | ||||
* | Bring in a few useful PAM modules. | markm | 2001-05-14 | 17 | -4/+1810 |
| | | | | | | | | | | | | | | | | | | pam_krb5 is a Kerberos 5 (Heimdal) authentication module. pam_nologin checks for /etc/nologin and does the "usual stuff" if it is found, otherwise it silently succeeds. pam_rootok silently succeeds if the user is root, otherwise it fails. pam_wheel silently succeeds if the user is a member of group "wheel" (or another nominated group), and fails otherwise. There is an issue with kerberosIV and kerberos5 - if both are being built, then static linking fails with duplicate symbols. This will take a bit of work to sort out in the kerberii. | ||||
* | Finish disconnecting pam_ssh from the build. | green | 2001-05-04 | 1 | -3/+0 |
| | |||||
* | I've been meaning to take pam_ssh out of the base system for a while now. | green | 2001-05-04 | 1 | -3/+0 |
| | | | | Finally do it. |