VesperOS/shadow
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,046 Commits 10 Branches 149 Tags
019ffd5126ee834710712e4e5ca80d47712d2efe
Commit Graph

581 Commits

Author SHA1 Message Date
Chris Hofstaedtler
019ffd5126 Use upstream's restrictions on user- and group names again 
Upstream started supporting mixed-case names some time ago.
Purely numeric names (#79682) are now forbidden again, as there is no
way of distinguishing them from user/group IDs otherwise.

Gbp-Dch: full
 2024-06-23 14:50:55 +02:00
Chris Hofstaedtler
45e98ea60a Remove faillog support 
Stop installing faillog binary and man pages. Stop creating
/var/log/faillog in login.postinst.
PAM has removed support for /var/log/faillog by dropping pam_tally, and
login itself cannot write to it either.

Gbp-Dch: full
 2024-06-23 03:07:36 +02:00
Chris Hofstaedtler
878710fb7a d/rules: explicitly set --with-audit and --enable-subordinate-ids 2024-06-22 18:12:09 +02:00
Chris Hofstaedtler
771535fa07 useradd(8): Fix missing paragraph on username length 2024-06-22 18:05:22 +02:00
Chris Hofstaedtler
ac353a0d49 Update changelog for 1:4.15.2-1 release 2024-06-22 17:55:55 +02:00
Chris Hofstaedtler
527b684a18 Rebase patches 2024-06-22 17:55:55 +02:00
Chris Hofstaedtler
154029254a Update changelog for 1:4.15.1-1 release 2024-06-22 16:41:40 +02:00
Chris Hofstaedtler
a85c288e96 login.defs: remove PAM-unsupported crypt settings 
Closes: #1055582
 2024-06-22 16:17:10 +02:00
Chris Hofstaedtler
e1f06f07bc Set same umask policy as PAM by default 
Closes: #1068704, #1070085
 2024-06-22 16:17:10 +02:00
Chris Hofstaedtler
80660f4a94 Enable acl, xattr support 
Closes: #745796
 2024-06-22 16:17:10 +02:00
Chris Hofstaedtler
f19c0e69e1 login: switch from Essential to Protected: yes 
Closes: #960638
 2024-06-22 16:17:10 +02:00
Chris Hofstaedtler
b6e44ab213 Update d/copyright 2024-06-22 16:13:15 +02:00
Chris Hofstaedtler
f56f3e81df Use functions from libbsd 
Closes: #1032393
 2024-06-22 16:13:11 +02:00
Chris Hofstaedtler
5413108b8a login.defs: update default ENCRYPT_METHOD 
Closes: #1043236
 2024-06-22 16:13:11 +02:00
Chris Hofstaedtler
c154cb50fa Rename remaining patches to end with ".patch" 
Gbp-Dch: ignore
 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
3bf1270130 Rebase patch 542_useradd-O_option 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
e3549c3f90 Rebase patch 506_relaxed_usernames 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
ad3a822529 Rebase patch 502_debian_useradd_defaults 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
10c72480c0 Rebase patch 501_commonio_group_shadow 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
6c1c44f0fc Rebase patch 463_login_delay_obeys_to_PAM 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
23d33f4922 Use upstream FAILLOG_ENAB code, incompatible with PAM 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
0c8f801a7a Rename patch 402_cppw_selinux 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
4a109337ab Rebase patch 401_cppw_src.dpatch 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
584b0b6a36 Disable FTMP_FILE by default, drop login failure logging 
lastb is gone, so it is pointless to write to the btmp file.
 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
4e48f059e7 Drop upstream applied patches 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
fbd4430a1d Build-Depend: pkgconf 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
4b707105f4 Build-Depend: libltdl-dev for LT_LIB_DLLOAD 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
1526e6cde8 Explicitly enable logind on linux-any 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
8199342364 Turn off --enable-lastlog, drop lastlog from not-installed 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
4f3d0ac9b9 Remove obsolete configure flag --without-libcrack 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
57721a210f contrib/atudel, non-DFSG-compliant was removed upstream 2024-06-22 15:12:39 +02:00
Chris Hofstaedtler
558a8f0796 Update upstream signing keys 2024-06-13 03:08:36 +02:00
Chris Hofstaedtler
623fdb60cd Tag build with dh-package-notes 2024-06-07 21:41:54 +02:00
Chris Hofstaedtler
bd08493dab Update changelog for 1:4.13+dfsg1-5 release 2024-06-02 20:02:22 +02:00
Chris Hofstaedtler
d3b392f509 libsubid4: tighten package-internal dependencies 2024-06-02 19:52:22 +02:00
Chris Hofstaedtler
9f16b61fe4 Use debputy to avoid Rules-Requires-Root: binary-targets 2024-06-02 19:52:22 +02:00
Chris Hofstaedtler
97e47ed437 Apply wrap-and-sort -kas style 2024-06-02 19:05:53 +02:00
Chris Hofstaedtler
d300102446 Add myself to Uploaders, per discussion with Serge Hallyn 2024-06-02 19:04:57 +02:00
Serge Hallyn
3d71c62ab1 Drop lastlog (zeha@debian.org) 
Signed-off-by: Serge Hallyn <serge@hallyn.com>
 2024-05-30 11:17:38 -05:00
Serge Hallyn
97a3bc0c43 (Helmut Grohne) move login and shadowconfig to /usr 
Signed-off-by: Serge Hallyn <serge@hallyn.com>
 2024-02-12 19:23:31 -06:00
Balint Reczey
485b374d09 Update changelog 2023-10-15 19:11:29 +02:00
Balint Reczey
25f0b936c0 Remove myself from uploaders 2023-09-27 10:22:26 +02:00
Balint Reczey
776d4d23ac Update changelog 2023-09-26 22:02:45 +02:00
Balint Reczey
9f285306f3 Fix valid_field() that regressed in upstream's first CVE fix 
cherry-picking upstream's regression fix.

Follow-up for commit 50defcfa5d .

Gbp-Dch: Ignore
 2023-09-26 12:19:29 +02:00
Balint Reczey
f569ea06ff Update changelog 2023-09-25 18:18:48 +02:00
Balint Reczey
50defcfa5d Cherry-pick upstream patch to fix chfn vulnerability 
(CVE-2023-29383)

Closes: #1034482
 2023-09-25 18:13:40 +02:00
Balint Reczey
56c7502686 Cherry-pick upstream patch to fix gpasswd passwd leak 
(CVE-2023-4641)

Closes: #1051062
 2023-09-25 17:55:00 +02:00
Balint Reczey
7c66acdd2e Update changelog 2023-09-25 17:41:27 +02:00
Balint Reczey
4806645316 debian/NEWS: Fix false claim about PREVENT_NO_AUTH affecting authentication 
Also drop setting PREVENT_NO_AUTH in shipped login.defs.

Closes: #1041547
 2023-09-25 17:15:46 +02:00
Gioele Barabucci
75eb241552 Support <nodoc> build profile 
`xsltproc`, `docbook` and all other XML-related packages are not needed
when the `<nodoc>` build profile is active, as long as `./configure` is
called with `--disable-man`.

Closes: #1051827
 2023-09-13 08:52:53 +02:00