tag name | v1.4.0 (5655b9d7bbf545d02f849888a0ff3a97a0ab6a20) |
tag date | 2020-06-04 08:00:00 +0000 |
tagged by | Dmitry V. Levin <ldv@altlinux.org> |
tagged object | commit 9e5bea9e14... |
download | linux-pam-git-1.4.0.tar.gz |
---|
Linux-PAM release 1.4.0
* Multiple minor bug fixes and documentation improvements
* Fixed grammar of messages printed via pam_prompt
* Added support for a vendor directory and libeconf
* configure: Added --enable-Werror option to enable -Werror build
* configure: Allowed disabling documentation through --disable-doc
* pam_get_authtok_verify: Avoid duplicate password verification
* pam_cracklib: Fixed parsing of options without arguments
* pam_env: Changed the default to not read the user .pam_environment file
* pam_exec: Require a user name to be specified before the command is executed
* pam_faillock: New module for locking after multiple auth failures
* pam_group, pam_time: Fixed logical error with multiple ! operators
* pam_keyinit: In pam_sm_setcred do the same as in pam_sm_open_session
* pam_lastlog: Do not log info about failed login if the session was opened
with PAM_SILENT flag
* pam_lastlog: Limit lastlog file use by LASTLOG_UID_MAX option in login.defs
* pam_lastlog: With 'unlimited' option prevent SIGXFSZ due to reduced 'fsize'
limit
* pam_mkhomedir: Fixed return value when the user is unknown
* pam_motd: Export MOTD_SHOWN=pam after showing MOTD
* pam_motd: Support multiple motd paths specified, with filename overrides
* pam_namespace: Added a systemd service, which creates the namespaced
instance parent directories during boot
* pam_namespace: Support for noexec, nosuid and nodev flags for tmpfs mounts
* pam_selinux: Check unknown object classes or permissions in current policy
* pam_selinux: Fall back to log to syslog if audit logging fails
* pam_setquota: New module to set or modify disk quotas on session start
* pam_shells: Recognize /bin/sh as the default shell
* pam_succeed_if: Fixed potential override of the default prompt
* pam_succeed_if: Support lists in group membership checks
* pam_time: Added conffile= option to specify an alternative configuration file
* pam_tty_audit: If kernel audit is disabled return PAM_IGNORE
* pam_umask: Added new 'nousergroups' module argument and allowed specifying
the default for usergroups at build-time
* pam_unix: Added 'nullresetok' option to allow resetting blank passwords
* pam_unix: Report unusable hashes found by checksalt to syslog
* pam_unix: Return PAM_AUTHINFO_UNAVAIL when shadow entry is unavailable
* pam_unix: Support for (gost-)yescrypt hashing methods
* pam_unix: Use bcrypt b-variant when it bcrypt is chosen
* pam_usertype: New module to tell if uid is in login.defs ranges
* Fixed and documented possible values returned by pam_get_user()
* Added new API call pam_start_confdir() for special applications that
cannot use the system-default PAM configuration paths and need to
explicitly specify another path
* Deprecated pam_cracklib: this module is no longer built by default and will
be removed in the next release, use pam_passwdqc (from passwdqc project)
or pam_pwquality (from libpwquality project) instead
* Deprecated pam_tally and pam_tally2: these modules are no longer built
by default and will be removed in the next release, use pam_faillock instead
-----BEGIN PGP SIGNATURE-----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=bjHC
-----END PGP SIGNATURE-----