| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
In a way fixes: https://bugs.freedesktop.org/show_bug.cgi?id=67474
|
| |
|
|
|
|
|
|
|
|
|
| |
This changes nss-systemd to use the new varlink user/group APIs for
looking up everything.
(This also changes the factory /etc/nsswitch.conf line to use for
hooking up nss-system to use glibc's [SUCCESS=merge] feature so that we
can properly merge group membership lists).
Fixes: #12492
|
| |
|
|
|
|
| |
Booting up an image with --volatile=yes otherwise looks so naked, so
let's include this file in the default factory too. It's common and
simple and should be safe to ship.
|
| |
|
|
|
| |
We use the keyring, so let's make sure it gets properly initialized for
sessions in factory reset mode.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Apparently PAM reacts differently on different systems (?) and if no
authoritative matching module is found might either succeed/fail,
depending on the system.
Let's lock this down explicitly, by hooking in pam_deny.so.
Of course, these PAM files are just examples, and no distro in its right
mind would ship these unmodified, but let's default to something safe.
Fixes: #12950
|
| |
|
|
|
| |
Also add a note in the man pages to remind people to adjust the factory config
and other man pages at the same time.
|
| |
|
|
|
|
|
|
| |
Stupid PAM, please just go away!
login[26]: pam_limits(login:session): error parsing the configuration file: '/etc/security/limits.conf'
login[26]: pam_unix(login:session): session opened for user root by LOGIN(uid=0)
login[26]: Error in service module
|
| | |
|
| | |
|
|
|
Single PAM fallback config file to be used in /etc to allow
bootstrapping of a system with an empty /etc.
|
