drochner
2a0c9a37dc
pull in from FreeBSD rev.1.41: Narrow the use of user credentials.
...
(call pam_get_authtok() with caller's rights rather than user's)
2012-01-06 14:04:02 +00:00
christos
1b695acdbf
avoid using %m in format.
2012-01-03 19:02:54 +00:00
drochner
cb4d5f3dcb
support ECDSA keys used by recent ssh
2011-12-16 17:37:14 +00:00
drochner
2462eb040a
disallow empty passphrases per default, and implement the "nullok"
...
option to allow it if the administator wishes, from FreeBSD
2011-12-16 17:35:09 +00:00
drochner
705315cdf8
-remove remainders of the misguided changes in revs 1.5-1.9
...
-iron out more unnecessary differences to FreeBSD
2011-12-16 17:30:12 +00:00
drochner
69de8de8f1
remove excess newlines in debug output
2011-05-06 17:22:09 +00:00
adam
d26d65ff82
Use ssh_add_identity_constrained() instead of ssh_add_identity()
2010-11-21 20:41:36 +00:00
christos
cbeabf798d
use new openssh tree
2009-07-20 18:01:41 +00:00
christos
8a00156352
use the proper libcrypto
2009-07-20 17:28:51 +00:00
mrg
7e7627c1df
build libnetpgp and libssh earlier.
...
look for libssh in the right place.
2009-06-09 05:20:15 +00:00
mrg
fc9a1e8a64
use LIBDPLIBS+= not =.
2008-10-27 07:57:41 +00:00
mrg
6b767a6846
don't set LIBDPLIBS in libpam/modules/Makefile - it is not necessary
...
and it interferes with the compat lib build. don't use LIB_ROOT_DIR.
2008-10-27 07:48:27 +00:00
christos
4466f6b5f6
Fix compilation
2008-01-27 01:23:20 +00:00
ragge
592fd7eafc
__FUNCTION__ -> __func__.
2007-09-15 14:30:56 +00:00
dogcow
f35a70b511
new ssh import requires another include
2006-09-29 04:56:04 +00:00
jnemeth
0c47a67596
Fix coverity run 5, issue 2018 -- memory leak.
...
Approved by christos.
2006-03-19 06:52:26 +00:00
christos
2a62e4e1ad
check for pwd != in getpw*_r functions.
2005-04-19 03:15:34 +00:00
thorpej
59cbc9e205
Use getpwnam_r().
2005-03-31 15:11:54 +00:00
christos
dbf71d82fb
remove debugging printf's
2005-03-17 01:14:40 +00:00
christos
52ffc9e55d
remove code to deal with authorized keys. it has no place here.
2005-03-14 23:39:26 +00:00
christos
041bcdce98
Go back to rev-1.5. This is better than what was there before, but I am
...
still uncertain about the proper way to dealing what keys to accept.
2005-03-14 05:45:48 +00:00
christos
56cc440468
Revert previous. This is not the right fix.
2005-03-14 05:40:35 +00:00
christos
adb433f9e5
Do not let keys that are not listed in authorized_keys participate
...
in authentication. Problem reported by Maximum Entropy.
2005-03-14 05:35:23 +00:00
wiz
e368145667
Bump date for new SECURITY CONSIDERATIONS section.
2005-02-28 10:31:41 +00:00
thorpej
80ea74d85d
Add a SECURITY CONSIDRATIONS section.
2005-02-27 21:32:46 +00:00
christos
901ebd51aa
NetBSD does not allow setuid(user) when euid=user, and ruid=0. Change
...
the logic for setting the uid/gid/groups for the agent around and also
add error checking. I.e. Don't exec the agent, if we could not set
the proper environment for it. Add a few more debugging lines. Now ssh
authentication works through xdm.
2005-02-27 01:16:27 +00:00
thorpej
2f6bdc4a7b
Minor wording consistency nit.
2005-02-26 15:11:26 +00:00
lukem
27313362b5
Build & install pam_ssh.so.0 now that libssh is available for use.
2005-01-03 06:15:42 +00:00
lukem
474dd6daf5
s/ifndef/ifdef/ for __FreeBSD__
2005-01-03 03:08:40 +00:00
lukem
178fb7b023
Use LIBDPLIBS to provide the list of libraries for the modules to depend
...
upon, because:
* it's MUCH quicker; no need to calculate the OBJDIRS of every library
we might require in every subdir.
(make obj drops from 21s to 3s on my system.)
* it's more robust when building to a fresh DESTDIR.
2004-12-29 15:04:06 +00:00
christos
bfc0dd3a06
Link with libraries from the source build directory.
2004-12-29 04:16:17 +00:00
christos
e7d22a2e64
- NetBSD build glue
...
- Warning fixes
- RCSID's
2004-12-12 08:18:42 +00:00
christos
6f11bdf15c
- Import freebsd's version of libpam as of today (20041212).
...
- Did not import opie, passwdqc, tacplus. We need to decide what to do
with them.
- Imported radius and ssh, although they will not work until we
import libradius and re-structure our tree to install libssh.
2004-12-12 06:45:21 +00:00