[Pkg-shadow-commits] r2438 - debian/branches/lenny/debian

nekral-guest at alioth.debian.org nekral-guest at alioth.debian.org
Fri Nov 14 20:17:23 UTC 2008 

Author: nekral-guest
Date: 2008-11-14 20:17:23 +0000 (Fri, 14 Nov 2008)
New Revision: 2438

Modified:
   debian/branches/lenny/debian/changelog
   debian/branches/lenny/debian/login.pam
Log:
   * debian/login.pam: restore the Etch behavior of pam_securetty.so in
     case of unknown user. Closes: #443322, #495831


Modified: debian/branches/lenny/debian/changelog
===================================================================
--- debian/branches/lenny/debian/changelog	2008-10-11 13:15:29 UTC (rev 2437)
+++ debian/branches/lenny/debian/changelog	2008-11-14 20:17:23 UTC (rev 2438)
@@ -1,3 +1,11 @@
+shadow (1:4.1.1-5) unstable; urgency=low
+
+  * The "Bergues" release.
+  * debian/login.pam: restore the Etch behavior of pam_securetty.so in case of
+    unknown user. Closes: #443322, #495831
+
+ -- Nicolas FRANCOIS (Nekral) <nicolas.francois at centraliens.net>  Sun, 14 Sep 2008 19:13:34 +0200
+
 shadow (1:4.1.1-4) unstable; urgency=low
 
   * The "Rocamadour" release.

Modified: debian/branches/lenny/debian/login.pam
===================================================================
--- debian/branches/lenny/debian/login.pam	2008-10-11 13:15:29 UTC (rev 2437)
+++ debian/branches/lenny/debian/login.pam	2008-11-14 20:17:23 UTC (rev 2438)
@@ -14,13 +14,7 @@
 
 # Disallows root logins except on tty's listed in /etc/securetty
 # (Replaces the `CONSOLE' setting from login.defs)
-# Note that it is included as a "requisite" module. No password prompts will
-# be displayed if this module fails to avoid having the root password
-# transmitted on unsecure ttys.
-# You can change it to a "required" module if you think it permits to
-# guess valid user names of your system (invalid user names are considered
-# as possibly being root).
-auth       requisite  pam_securetty.so
+auth       [success=ok ignore=ignore user_unknown=ignore default=die]  pam_securetty.so
 
 # Disallows other than root logins when /etc/nologin exists
 # (Replaces the `NOLOGINS_FILE' option from login.defs)

More information about the Pkg-shadow-commits mailing list