rpms/krb5/F-8 krb5-1.6.1-pam.patch,1.5,1.6 krb5.spec,1.146,1.147
Nalin Somabhai Dahyabhai (nalin)
fedora-extras-commits at redhat.com
Mon Feb 25 21:02:49 UTC 2008
- Previous message (by thread): rpms/libsoup/devel .cvsignore, 1.30, 1.31 libsoup.spec, 1.60, 1.61 sources, 1.30, 1.31
- Next message (by thread): rpms/gvfs/devel .cvsignore, 1.8, 1.9 gvfs.spec, 1.18, 1.19 sources, 1.8, 1.9
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: nalin
Update of /cvs/pkgs/rpms/krb5/F-8
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv19460
Modified Files:
krb5-1.6.1-pam.patch krb5.spec
Log Message:
- in login, allow PAM to interact with the user when they've been strongly
authenticated
- in login, signal PAM when we're changing an expired password that it's an
expired password, so that when cracklib flags a password as being weak it's
treated as an error even if we're running as root
krb5-1.6.1-pam.patch:
Index: krb5-1.6.1-pam.patch
===================================================================
RCS file: /cvs/pkgs/rpms/krb5/F-8/krb5-1.6.1-pam.patch,v
retrieving revision 1.5
retrieving revision 1.6
diff -u -r1.5 -r1.6
--- krb5-1.6.1-pam.patch 11 Sep 2007 14:11:22 -0000 1.5
+++ krb5-1.6.1-pam.patch 25 Feb 2008 21:02:43 -0000 1.6
@@ -240,7 +240,7 @@
+#ifdef USE_PAM
+ if (login_use_pam) {
-+ if (appl_pam_acct_mgmt(LOGIN_PAM_SERVICE, 0, username, "",
++ if (appl_pam_acct_mgmt(LOGIN_PAM_SERVICE, 1, username, "",
+ ttyname(STDIN_FILENO)) != 0) {
+ printf("Login incorrect\n");
+ sleepexit(1);
@@ -652,9 +652,9 @@
+ int ret = 0;
+ if (appl_pam_started) {
+#ifdef DEBUG
-+ printf("Changing PAM authentication token.\n");
++ printf("Changing PAM expired authentication token.\n");
+#endif
-+ ret = pam_chauthtok(appl_pamh, 0);
++ ret = pam_chauthtok(appl_pamh, PAM_CHANGE_EXPIRED_AUTHTOK);
+ }
+ return ret;
+}
Index: krb5.spec
===================================================================
RCS file: /cvs/pkgs/rpms/krb5/F-8/krb5.spec,v
retrieving revision 1.146
retrieving revision 1.147
diff -u -r1.146 -r1.147
--- krb5.spec 25 Feb 2008 20:04:44 -0000 1.146
+++ krb5.spec 25 Feb 2008 21:02:43 -0000 1.147
@@ -211,6 +211,13 @@
%changelog
* Mon Feb 25 2008 Nalin Dahyabhai <nalin at redhat.com>
+- in login, allow PAM to interact with the user when they've been strongly
+ authenticated
+- in login, signal PAM when we're changing an expired password that it's an
+ expired password, so that when cracklib flags a password as being weak it's
+ treated as an error even if we're running as root
+
+* Mon Feb 25 2008 Nalin Dahyabhai <nalin at redhat.com>
- remove a patch, to fix problems with interfaces which are "up" but which
have no address assigned, which conflicted with a different fix for the same
problem in 1.5 (#200979)
- Previous message (by thread): rpms/libsoup/devel .cvsignore, 1.30, 1.31 libsoup.spec, 1.60, 1.61 sources, 1.30, 1.31
- Next message (by thread): rpms/gvfs/devel .cvsignore, 1.8, 1.9 gvfs.spec, 1.18, 1.19 sources, 1.8, 1.9
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list