Pam_tty_audit and passwords
Richard Guy Briggs
rgb at redhat.com
Mon Jun 17 17:30:46 UTC 2013
On Mon, Jun 17, 2013 at 11:56:01AM -0500, John C. A. Bambenek, GCIH, CISSP wrote:
> When is approximate timeframe of that functionality to be available to
> suppress logging of passwords in an RH provided package?
Since I'm new to the process, but I pulled it together, I'll take a stab
at answering this, but defer to others with more experience on the
process timing.
The kernel bits are upstream in the 3.10-rc1 kernel as of May 11th.
That would still need to be backported to a RHEL kernel. It is more
likely to end up in Fedora first. Now that you mention it, that is
something I should be able to backport to RHEL.
The userspace bits in pam just had another patch sent upstream last week
and I don't expect any issues arising from that. There is a bz filed to
add it to RHEL7. Tomas Mraz should be able to provide more information
about that timing. I assume he would also be able to answer questions
about RHEL6 as well. That discussion and review of that patch is on the
pam-developers at lists.fedorahosted.org list.
> Thanks,
> J
- RGB
--
Richard Guy Briggs <rbriggs at redhat.com>
Senior Software Engineer
Kernel Security
AMER ENG Base Operating Systems
Remote, Ottawa, Canada
Voice: +1.647.777.2635
Internal: (81) 32635
Alt: +1.613.693.0684x3545
More information about the Linux-audit
mailing list