1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
|
commit 6946f4bd3102d677d9ce43d4c48ed6bec2b13a31
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-09-29 15:50:21 +0200
update copyright
also fix spelling error "GNU Public License"
commit 183200793e5aec74f73b21bd96d46b447da64f11
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-09-28 16:35:58 +0200
Makefile: add target changelog-from-git
needs moreutils
commit 5e5588cd1edfbab1889537b93ae13b159f76caff
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-09-26 16:29:26 +0200
README: describe legacy_crypt in more detail
commit 235369330e1c1366e5c7cb31561cdb673703ad58
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-09-26 16:29:11 +0200
fix typo in README
commit 090a8585370c7857a193467fc057828b82ec358f
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-06-01 00:15:00 +0200
move opening brace out of ifdef to make code folding work
commit 4964a685e75c75d662bb0d4f1bb3fd126f49eca2
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-06-01 00:14:07 +0200
don't include features.h
commit 201e799f7a2fcba3af2c9214f25545460ef9b08a (tag: v0.100)
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-05-27 21:10:18 +0200
rework documentation
remove stuff in contrib, it is outdated or explained in the service's
documentation
commit da52bf9630a077d90e1338d818a3e179367058c4
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-05-27 21:08:02 +0200
separate DESTDIR and PAM_LIB_DIR
commit e493c1467bbaebfbaf2a9a6b1da3398b76232ce5
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-05-14 20:22:36 +0200
remove CVS $Id line and static version number
commit caea065f12f3d358948cd0ca760ebd7c27cb6c80
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-05-14 20:08:06 +0200
overhaul bigcrypt.c
* drop unnessesary variables
* rename variables and define's to be more desciptive
* rotate pointer updates to front of loop
* don't copy key
there was no point in using crypt_r() here, we return our result in a static
buffer ourselves
commit 495461432ca4034d49ee37cb398c6bd253d6f66d
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-05-11 19:34:44 +0200
md5.c: fix compiler warnings
commit be53f76279d158aa3e5fb2960f9ae4da52201857
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-05-11 01:43:50 +0200
replace self-defined uint32 with uint32_t from stdint.h
unsigned int is not guaranteed to have 32 bits
commit ce9367b3202477b3cc914cabfe0cb2a856f3a51d
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-05-10 21:30:05 +0200
major overhaul
* merge fgetpwnam into pam_sm_authenticate
* handle empty password field
* fix a fd and memory leak if pwdfile opening succeeds but locking fails
* use crypt_r (enabled via USE_CRYPT_R)
* rely on crypt() to handle newer crypt variants (including "good" md5 crypt)
* make bigcrypt and broken md5 crypt optional
* add some const's
commit 88dd2b1a22cd06fc401a8ddadd41114cebe159d5
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-05-10 21:27:56 +0200
include proper headers for crypt()
this also prepares for crypt_r()
commit 138c589dd4cdf68659bfa643e5659fa1200f6081
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-04-29 13:06:26 +0200
rework pwdfile reading
* drop rewind(), we read the file just once
* use getline() to get rid of the fixed-size buffer
* let strsep() also handle the newline
* stop at the first line containing the user instead of using the last
commit 0437f4656f1d5a541b4ab951c457fae19f8deee4
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-04-28 17:15:15 +0200
use pam_get_authtok
this also gets it right with use_first_pass
also use the default prompt for the username
commit 86c95423b2908869ee42f9f40896a0bb0b773cf4
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-04-27 23:55:20 +0200
rework argument parsing
* don't copy pwdfile argument, we don't need to modify it
* replace sizeof() with strlen() as that is easier to understand and the
compiler can also optimize it away
* expand DEFINE's so we can get rid of the comments
commit 64707e82165bb32db5763b38bf550b538bcd4eec
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-04-27 18:07:22 +0200
make Brokencrypt_md5 also broken on little-endian
otherwise broken hashes from big-endian systems won't work
also remove ASM_MD5 #ifndef's, we don't have assembler code here
commit 629c03d7775e1f4b5c0fdee358c6773f70e91961
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-04-26 12:57:56 +0200
add debug module option and use pam_syslog
also:
* remove some unnessesary comments
* add vim settings for unusual indentation
commit fbce1a480fda4c97b21c87fb39096d23db6eedfb
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-04-25 14:27:07 +0200
apply visibility patch by Peter Palfrader
commit 0148de59cdcea4013d694fc04db3174ce06c60b1
Author: Timo Weingärtner <timo@tiwe.de>
Date: 2013-04-25 14:22:49 +0200
rework Makefile for standalone building
if this is ever integrated into pam it will be autotools anyways
use ?= and += to better work with distribution's build systems
commit 5dbeed06ae0b0f168158920c59dcfb0cc822dee6
Author: Charl Botha <cpbotha@cpbotha.net>
Date: 2009-08-16 19:57:51 +0000
Added note about contrib directory.
=====================================
old (pre-git) changelog:
0.99 : Sat Dec 20 20:30:37 CET 2003
* added micro howto by Warwick Duncan (in contrib/ dir) explaining how to
setup Cyrus IMAPD + pam_pwdfile so that one does not have to create system
accounts for imapd users
* added Makefile.standalone by Gerald Richter to the contrib files.
* integrated patch by Greg Norris for better handling of bigcrypt/crypt
switcheroos. Greg Norris in the current Debian maintainer.
* The 't' key on my home linux workstation is going.
0.98 : Mon Jun 10 23:49:46 CEST 2002
* added contrib directory with spec file and Makefile by Jason F. McBrayer
<jason@xeran.com>.
* -lcrypt is now used again (because it is necessary in some cases, doh);
Problem reported by Charles Vejnar <chv@fr.st>
* That damn Mozilla beat us to 1.0!
0.97 : Sat May 11 16:40:19 CEST 2002
* added md5.h, md5.c, md5_crypt.c and bigcrypt.c from the pam_unix.c module.
This fixes the bug where crypt() would not be able to do md5 crypting if
an SSL library was linked into the calling application. Several users
reported this, but the report (and possible patch, which I chose not to use,
opting instead to emulate pam_unix) of Yu Guanghui <ygh@dlut.edu.cn> was
most useful.
* Small tweaks to documentation.
0.95 : Sat Jul 14 22:38:16 CEST 2001
* added features.h, _BSD_SOURCE now defined by Makefile (for vsyslog a.o.)
* integrated patch by Ethan Benson <erbenson@alaska.net> that enables a two
second PAM delay when an incorrect password is supplied.
* yes, if this version floats for long enough, we can do the 1.0 thing.
0.9: Fri Jun 15 23:23:31 CEST 2001
* integrated patch by Stephen Darragh <srd@it.net.au> to fix problems with
short MD5 crypts and trailing newlines. In fact, his patch just makes
things a tad more correct, short MD5 crypts or not.
0.8: Sat May 12 11:57:18 CEST 2001
* the MrKen (aka MJ Turner) release. Removed unnecessary include that was
breaking the debian builds.
0.7: Tue Apr 17 23:13:34 CEST 2001
* changed error message if user is not found in password file
* updated to work with > Linux-PAM-0.75 (thanks to Kelly Corbin
<kcorbin@theiqgroup.com> for reporting the problem)
0.6: Sat Nov 11 23:51:32 CET 2000
* fixed a stupid bug I introduced when integrating Warwick's patch; tested
fine with both DES and MD5 crypts
0.5: Wed Nov 8 01:39:22 CET 2000
* added patch by Warwick Duncan <warwick@chemeng.uct.ac.za> to support MD5
crypted passwords as well
0.4: Tue Aug 29 09:23:23 SAST 2000
* fixed typo in INSTALL (thanks to Quynh Nguyen Anh <quynhna@hotmail.com>)
0.3: Mon Aug 28 09:49:27 SAST 2000
* INSTALL file created. This explains how to get pam_pwdfile compiled from
scratch.
0.2: Mon May 22 22:41:30 SAST 2000
* integrated patch by Jacob Schroeder <jacob@quantec.de> to implement
flock()-based password file locking
* minor code tweaks (indentation, unnecessary variables removed)
* minor README file updates
* this file
0.1: ?
* Initial release
|