Commit Graph

33 Commits

Author SHA1 Message Date
drochner
2a0c9a37dc pull in from FreeBSD rev.1.41: Narrow the use of user credentials.
(call pam_get_authtok() with caller's rights rather than user's)
2012-01-06 14:04:02 +00:00
christos
1b695acdbf avoid using %m in format. 2012-01-03 19:02:54 +00:00
drochner
cb4d5f3dcb support ECDSA keys used by recent ssh 2011-12-16 17:37:14 +00:00
drochner
2462eb040a disallow empty passphrases per default, and implement the "nullok"
option to allow it if the administator wishes, from FreeBSD
2011-12-16 17:35:09 +00:00
drochner
705315cdf8 -remove remainders of the misguided changes in revs 1.5-1.9
-iron out more unnecessary differences to FreeBSD
2011-12-16 17:30:12 +00:00
drochner
69de8de8f1 remove excess newlines in debug output 2011-05-06 17:22:09 +00:00
adam
d26d65ff82 Use ssh_add_identity_constrained() instead of ssh_add_identity() 2010-11-21 20:41:36 +00:00
christos
cbeabf798d use new openssh tree 2009-07-20 18:01:41 +00:00
christos
8a00156352 use the proper libcrypto 2009-07-20 17:28:51 +00:00
mrg
7e7627c1df build libnetpgp and libssh earlier.
look for libssh in the right place.
2009-06-09 05:20:15 +00:00
mrg
fc9a1e8a64 use LIBDPLIBS+= not =. 2008-10-27 07:57:41 +00:00
mrg
6b767a6846 don't set LIBDPLIBS in libpam/modules/Makefile - it is not necessary
and it interferes with the compat lib build.  don't use LIB_ROOT_DIR.
2008-10-27 07:48:27 +00:00
christos
4466f6b5f6 Fix compilation 2008-01-27 01:23:20 +00:00
ragge
592fd7eafc __FUNCTION__ -> __func__. 2007-09-15 14:30:56 +00:00
dogcow
f35a70b511 new ssh import requires another include 2006-09-29 04:56:04 +00:00
jnemeth
0c47a67596 Fix coverity run 5, issue 2018 -- memory leak.
Approved by christos.
2006-03-19 06:52:26 +00:00
christos
2a62e4e1ad check for pwd != in getpw*_r functions. 2005-04-19 03:15:34 +00:00
thorpej
59cbc9e205 Use getpwnam_r(). 2005-03-31 15:11:54 +00:00
christos
dbf71d82fb remove debugging printf's 2005-03-17 01:14:40 +00:00
christos
52ffc9e55d remove code to deal with authorized keys. it has no place here. 2005-03-14 23:39:26 +00:00
christos
041bcdce98 Go back to rev-1.5. This is better than what was there before, but I am
still uncertain about the proper way to dealing what keys to accept.
2005-03-14 05:45:48 +00:00
christos
56cc440468 Revert previous. This is not the right fix. 2005-03-14 05:40:35 +00:00
christos
adb433f9e5 Do not let keys that are not listed in authorized_keys participate
in authentication. Problem reported by Maximum Entropy.
2005-03-14 05:35:23 +00:00
wiz
e368145667 Bump date for new SECURITY CONSIDERATIONS section. 2005-02-28 10:31:41 +00:00
thorpej
80ea74d85d Add a SECURITY CONSIDRATIONS section. 2005-02-27 21:32:46 +00:00
christos
901ebd51aa NetBSD does not allow setuid(user) when euid=user, and ruid=0. Change
the logic for setting the uid/gid/groups for the agent around and also
add error checking. I.e. Don't exec the agent, if we could not set
the proper environment for it. Add a few more debugging lines. Now ssh
authentication works through xdm.
2005-02-27 01:16:27 +00:00
thorpej
2f6bdc4a7b Minor wording consistency nit. 2005-02-26 15:11:26 +00:00
lukem
27313362b5 Build & install pam_ssh.so.0 now that libssh is available for use. 2005-01-03 06:15:42 +00:00
lukem
474dd6daf5 s/ifndef/ifdef/ for __FreeBSD__ 2005-01-03 03:08:40 +00:00
lukem
178fb7b023 Use LIBDPLIBS to provide the list of libraries for the modules to depend
upon, because:
 * it's MUCH quicker; no need to calculate the OBJDIRS of every library
   we might require in every subdir.
   (make obj drops from 21s to 3s on my system.)
 * it's more robust when building to a fresh DESTDIR.
2004-12-29 15:04:06 +00:00
christos
bfc0dd3a06 Link with libraries from the source build directory. 2004-12-29 04:16:17 +00:00
christos
e7d22a2e64 - NetBSD build glue
- Warning fixes
- RCSID's
2004-12-12 08:18:42 +00:00
christos
6f11bdf15c - Import freebsd's version of libpam as of today (20041212).
- Did not import opie, passwdqc, tacplus. We need to decide what to do
  with them.
- Imported radius and ssh, although they will not work until we
  import libradius and re-structure our tree to install libssh.
2004-12-12 06:45:21 +00:00