| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: pam_krb5 | Distribution: openSUSE 12.1 |
| Version: 2.3.13 | Vendor: openSUSE |
| Release: 11.1.3 | Build date: Sat Oct 29 19:33:35 2011 |
| Group: Productivity/Networking/Security | Build host: build31 |
| Size: 400542 | Source RPM: pam_krb5-2.3.13-11.1.3.src.rpm |
| Packager: http://bugs.opensuse.org | |
| Url: http://sourceforge.net/projects/pam-krb5/ | |
| Summary: PAM Module for Kerberos Authentication | |
This PAM module supports authentication against a Kerberos KDC. It also supports updating your Kerberos password.
BSD3c(or similar) ; LGPLv2.0+
* Tue Aug 23 2011 mc@suse.de
- disable checks during build. Does not work reliable in the
buildservice
* Sun Aug 21 2011 mc@novell.com
- update to version 2.3.13
* don't bother creating a v5 ccache in "external" mode
* add a "trace" option to enable libkrb5 tracing, if available
* avoid trying to get password-change creds twice
* use an in-memory ccache when obtaining tokens using v5 creds
* turn off creds==session in "sshd"
* add a "validate_user_user" option to control trying to perform
user-to-user authentication to validate TGTs when a keytab is not
available
* add an "ignore_k5login" option to control whether or not the module
will use the krb5_kuserok() function to perform additional
authorization checks
* turn on validation by default - verify_ap_req_nofail controls how we
treat errors reading keytab files now
* add an "always_allow_localname" option when we can use
krb5_aname_to_localname() to second-guess the krb5_kuserok() check
* prefer krb5_change_password() to krb5_set_password()
* Tue Mar 01 2011 mc@suse.de
- make pam_sm_setcred less verbose (bnc#641008)
* Fri Nov 19 2010 coolo@novell.com
- remove autoreconf call - breaks more than it helps
* Mon Mar 22 2010 mc@suse.de
- update to version 2.3.11
* create credentials before trying to look up the location of
the user's home directory via krb5_kuserok()
* Thu Mar 04 2010 mc@suse.de
- update to version 2.3.10-3
* add a "chpw_prompt" option
* add a "multiple_ccaches" option
* fine-tune the logic for selecting which key we use for
validating credentials
* fixes
* Mon Feb 01 2010 jengelh@medozas.de
- package baselibs.conf
* Tue Nov 03 2009 coolo@novell.com
- updated patches to apply with fuzz=0
* Mon Jul 27 2009 mc@novell.com
- version 2.3.7
* when refreshing credentials, store the new creds in the default
ccache if $KRB5CCNAME isn't set.
* prefer a "host" key, if one is found, when validating TGTs
* Wed Jun 24 2009 sbrabec@suse.cz
- Supplement pam-32bit/pam-64bit in baselibs.conf (bnc#354164).
* Mon Jun 15 2009 mc@suse.de
- compile fixes for krb5 1.7
* Mon Jun 08 2009 mc@suse.de
- update to version 2.3.5
* make prompting behavior for non-existent accounts and users who
just press enter match up with those who aren't/don't (#502602,
CVE-2009-1384)
* Wed May 20 2009 mc@suse.de
- update to version 2.3.4
* don't request password-changing credentials using the same options
we use for ticket-granting tickets
* close a couple of open pipes to defunct processes, fix a couple
of debug messages
* fix ccache permissions bypass when the "existing_ticket" option is
used (CVE-2008-3825, which affects 2.2.0-2.2.25, 2.3.0, and 2.3.1)
- obsolete a lot of patches.
/lib/security/pam_krb5 /lib/security/pam_krb5.so /lib/security/pam_krb5/pam_krb5_storetmp /lib/security/pam_krb5afs.so /usr/bin/afs5log /usr/share/doc/packages/pam_krb5 /usr/share/doc/packages/pam_krb5/AUTHORS /usr/share/doc/packages/pam_krb5/COPYING /usr/share/doc/packages/pam_krb5/COPYING.LIB /usr/share/doc/packages/pam_krb5/ChangeLog /usr/share/doc/packages/pam_krb5/NEWS /usr/share/doc/packages/pam_krb5/README /usr/share/doc/packages/pam_krb5/README.heimdal-pkinit /usr/share/doc/packages/pam_krb5/README.mit-pkinit /usr/share/doc/packages/pam_krb5/README.winbind /usr/share/doc/packages/pam_krb5/TODO /usr/share/locale/ar/LC_MESSAGES/pam_krb5.mo /usr/share/locale/as/LC_MESSAGES/pam_krb5.mo /usr/share/locale/bg/LC_MESSAGES/pam_krb5.mo /usr/share/locale/bn_IN/LC_MESSAGES/pam_krb5.mo /usr/share/locale/ca/LC_MESSAGES/pam_krb5.mo /usr/share/locale/cs/LC_MESSAGES/pam_krb5.mo /usr/share/locale/da/LC_MESSAGES/pam_krb5.mo /usr/share/locale/de/LC_MESSAGES/pam_krb5.mo /usr/share/locale/el/LC_MESSAGES/pam_krb5.mo /usr/share/locale/es/LC_MESSAGES/pam_krb5.mo /usr/share/locale/fa/LC_MESSAGES/pam_krb5.mo /usr/share/locale/fi/LC_MESSAGES/pam_krb5.mo /usr/share/locale/fr/LC_MESSAGES/pam_krb5.mo /usr/share/locale/gu/LC_MESSAGES/pam_krb5.mo /usr/share/locale/hi/LC_MESSAGES/pam_krb5.mo /usr/share/locale/hr/LC_MESSAGES/pam_krb5.mo /usr/share/locale/hu/LC_MESSAGES/pam_krb5.mo /usr/share/locale/it/LC_MESSAGES/pam_krb5.mo /usr/share/locale/ja/LC_MESSAGES/pam_krb5.mo /usr/share/locale/km/LC_MESSAGES/pam_krb5.mo /usr/share/locale/kn/LC_MESSAGES/pam_krb5.mo /usr/share/locale/ko/LC_MESSAGES/pam_krb5.mo /usr/share/locale/ml/LC_MESSAGES/pam_krb5.mo /usr/share/locale/mr/LC_MESSAGES/pam_krb5.mo /usr/share/locale/nb/LC_MESSAGES/pam_krb5.mo /usr/share/locale/nl/LC_MESSAGES/pam_krb5.mo /usr/share/locale/or/LC_MESSAGES/pam_krb5.mo /usr/share/locale/pa/LC_MESSAGES/pam_krb5.mo /usr/share/locale/pl/LC_MESSAGES/pam_krb5.mo /usr/share/locale/pt/LC_MESSAGES/pam_krb5.mo /usr/share/locale/pt_BR/LC_MESSAGES/pam_krb5.mo /usr/share/locale/ro/LC_MESSAGES/pam_krb5.mo /usr/share/locale/ru/LC_MESSAGES/pam_krb5.mo /usr/share/locale/sr/LC_MESSAGES/pam_krb5.mo /usr/share/locale/sr@latin/LC_MESSAGES/pam_krb5.mo /usr/share/locale/sv/LC_MESSAGES/pam_krb5.mo /usr/share/locale/ta/LC_MESSAGES/pam_krb5.mo /usr/share/locale/te/LC_MESSAGES/pam_krb5.mo /usr/share/locale/th/LC_MESSAGES/pam_krb5.mo /usr/share/locale/uk/LC_MESSAGES/pam_krb5.mo /usr/share/locale/wa/LC_MESSAGES/pam_krb5.mo /usr/share/locale/zh_CN/LC_MESSAGES/pam_krb5.mo /usr/share/locale/zh_TW/LC_MESSAGES/pam_krb5.mo /usr/share/man/man1/afs5log.1.gz /usr/share/man/man5/pam_krb5.5.gz /usr/share/man/man8/pam_krb5.8.gz /usr/share/man/man8/pam_krb5_storetmp.8.gz
Generated by rpm2html 1.8.1
Fabrice Bellet, Mon May 13 09:58:30 2013