SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for pam_krb5-debuginfo-2.1.17-12.el4.i386.rpm :

* Sat Oct 23 2010 Nalin Dahyabhai - 2.1.17-12- backport for selecting which key to use for validation so that it prefers \"host\" services with the local host name as the instance in the right realm, from HEAD (#531471)
* Sat Oct 23 2010 Nalin Dahyabhai - 2.1.17-11- backport changes to ask for much less in the way of credential options when we\'re just obtaining password-changing creds (#490160)
* Fri Oct 22 2010 Nalin Dahyabhai - 2.1.17-10- don\'t enforce minimum_uid when no_user_check is also used, from HEAD (#490403)
* Fri Oct 16 2009 Nalin Dahyabhai - 2.1.17-9- rebuild
* Thu Oct 08 2009 Nalin Dahyabhai - set the lengths correctly on passwords returned from the prompter
* Wed Oct 07 2009 Nalin Dahyabhai - add proposed patch to rework prompter callback semantics so that we suppress additional requests for passwords while using the conversation callback for other items, and to substitute our own prompt strings when we know it\'s one of the new-password prompts (#521740)
* Fri Jan 23 2009 Nalin Dahyabhai - 2.1.17-8- drop the fix to not bother asking for a password an attempt to get credentials during authentication, in case we\'re the first module in the stack and there\'s a leftover authtok from a previous run, leaving the bit that affects password-changes (more of #436968)
* Tue Jan 06 2009 Nalin Dahyabhai - 2.1.17-7- backport the \"null_afs\"/\"nullafs\" option from 2.1.20, based on Jan Iven\'s patch, which instructs pam_krb5 to guess \"afsAATTREALM\" before \"afs/cellAATTREALM\" when forced to guess the principal name of a given cell (#231137)- backport fixes to not bother asking for a password an attempt to get credentials (initial creds during authentication, or password-changing creds during a password change) indicated to that the user was not known to the KDC (#436968)- unconditionally set PAM_AUTHTOK whenever we prompt for a password (#437179)
* Fri Apr 11 2008 Nalin Dahyabhai - 2.1.17-6- backport the \"krb4_convert_524\" and \"krb4_use_as_req\" options (and their inverses) from 2.2 to allow v4 client traffic to be completely disabled, even when AFS is in use (#429926)
* Tue Mar 18 2008 Nalin Dahyabhai - 2.1.17-4- when attempting to obtain credentials, use a prompter callback which confirms the password we passed in, in case libkrb5 wants to kick an empty string back to us (part of #244641)
* Mon Mar 17 2008 Nalin Dahyabhai - 2.1.17-3- use the right library context when we try to convert forwarded creds from v5 to v4 (Adam Stokes, #428439)
* Fri Aug 03 2007 Nalin Dahyabhai - 2.1.17-1- convert \"external\" creds to v4 creds if we\'re supposed to (#201265)
* Thu Jul 26 2007 Nalin Dahyabhai - 2.1.16-1- backport the \"pwhelp\" option (#230468)- always display the server-supplied error if password-changing fails (#230439)- link the module with libpam to avoid potential undefined symbol deps on libpam (#227097)- don\'t return failure from pam_sm_chauthtok() for unknown users (#235020)- always reap the storetmp helper\'s exit status properly (#213407)- update our principal name using \"external\" v5 creds so that if we convert them to v4 creds we\'ll have the right principal name (part of #201265)- treat client-revoked errors like client-unknown errors (#230443)- provide a prompting callback so that libkrb5 can warn of impending password expiration (#230436)- when changing passwords, save the user\'s answers properly (#230445)- don\'t try to validate password-changing credentials, because they\'re not TGTs (#230460)
* Thu Jan 26 2006 Nalin Dahyabhai - 2.1.15-2- rebuild
* Thu Jan 26 2006 Nalin Dahyabhai - 2.1.15-1- doc fixes
* Thu Jan 26 2006 Nalin Dahyabhai - 2.1.14-1- don\'t log debug messages that we\'re skipping session setup/teardown unless debugging is enabled (#179037, part of #202190)- try to build the module with -Bsymbolic if we can figure out how to do that (#202190)
* Mon Jan 16 2006 Nalin Dahyabhai - 2.1.13-2- rebuild
* Mon Jan 16 2006 Nalin Dahyabhai - 2.1.13-1- backport the \"external\" option from the 2.2 branch
* Mon Jan 16 2006 Nalin Dahyabhai - 2.1.12-2- rebuild
* Mon Jan 16 2006 Nalin Dahyabhai - 2.1.12-1- in the event of a failure to change passwords, provide the user with the server-supplied information about why it failed
* Wed Jan 11 2006 Nalin Dahyabhai - fix a couple of missing #include statements
* Mon Nov 21 2005 Nalin Dahyabhai - 2.1.11-1- don\'t leak the keytab descriptor during validation (#173681)
* Tue Nov 15 2005 Nalin Dahyabhai - 2.1.10-1- update to 2.1.10
* Thu Oct 06 2005 Nalin Dahyabhai - 2.1.9-2- rebuild
* Thu Oct 06 2005 Nalin Dahyabhai - 2.1.9-1- fix ccache initialization after the password is changed (#169966)
* Thu Aug 04 2005 Nalin Dahyabhai - 2.1.8-2- rebuild
* Thu Aug 04 2005 Nalin Dahyabhai - 2.1.8-1- backport ccache-refresh-on-setcred-with-reinitialize from HEAD (#153257)- return PAM_USER_UNKNOWN from account management if we didn\'t participate in authenticating the user (#164794)
* Thu May 19 2005 Nalin Dahyabhai - 2.1.7-3- rebuild
* Thu May 19 2005 Nalin Dahyabhai - 2.1.7-2- rebuild
* Thu May 19 2005 Nalin Dahyabhai - 2.1.7-1- update to 2.1.7 - install afs5log and its man page - fix detection of the realm of foreign cells with newer OpenAFS - also try AFS principal = afsAATTREALM for foreign cells in foreign realms
* Wed Mar 16 2005 Nalin Dahyabhai - 2.1.5-1- update to 2.1.5
* Mon Feb 28 2005 Nalin Dahyabhai - 2.1.4-1- update to 2.1.4
* Fri Feb 25 2005 Nalin Dahyabhai - 2.1.3-1- update to 2.1.3
* Tue Aug 31 2004 Nalin Dahyabhai - 2.1.2-1- update to 2.1.2
* Tue Jun 22 2004 Nalin Dahyabhai - 2.1.1-1- update to 2.1.1
* Thu Apr 22 2004 Nalin Dahyabhai - 2.1.0-1- update to 2.1.0
* Tue Mar 23 2004 Nalin Dahyabhai - 2.0.11-1- update to 2.0.11
* Tue Mar 16 2004 Nalin Dahyabhai - 2.0.10-1- update to 2.0.10
* Tue Mar 16 2004 Nalin Dahyabhai - 2.0.9-1- update to 2.0.9
* Tue Mar 16 2004 Nalin Dahyabhai - 2.0.8-1- update to 2.0.8
* Wed Mar 10 2004 Nalin Dahyabhai - 2.0.7-1- update to 2.0.7
* Fri Feb 27 2004 Nalin Dahyabhai - 2.0.6-1- update to 2.0.6
* Tue Feb 24 2004 Harald Hoyer - 2.0.5-3- rebuilt
* Tue Nov 25 2003 Nalin Dahyabhai 2.0.5-2- actually changelog the update to 2.0.5
* Tue Nov 25 2003 Nalin Dahyabhai 2.0.5-1- update to 2.0.5
* Sat Oct 11 2003 Nalin Dahyabhai 2.0.4-1- update to 2.0.4
* Sat Sep 20 2003 Nalin Dahyabhai 2.0.3-1- update to 2.0.3
* Sat Sep 06 2003 Nalin Dahyabhai 2.0.2-1- update to 2.0.2
* Fri Aug 15 2003 Nalin Dahyabhai 2.0.1-1- update to 2.0.1
* Sat Aug 09 2003 Nalin Dahyabhai 2.0-1- update to 2.0
* Thu Jan 30 2003 Nalin Dahyabhai 1.60-1- fix uninitialized pointer crash reading cached return values
* Wed Jan 29 2003 Nalin Dahyabhai 1.59-1- fix crash with per-user stashes and return values
* Tue Jan 28 2003 Nalin Dahyabhai 1.58-1- fix configure to not link with both libk5crypto and libcrypto
* Mon Jan 27 2003 Nalin Dahyabhai 1.57-1- force -fPIC- add --with-moduledir, --with-krb5-libs, --with-krbafs-libs to configure- add per-user stashes and return values
* Wed May 29 2002 Nalin Dahyabhai 1.56-1- guess a default cell name- fix what\'s hopefully the last parser bug
* Fri May 17 2002 Nalin Dahyabhai 1.55-2- rebuild in new environment
* Mon Mar 25 2002 Nalin Dahyabhai 1.55-1- handle account management for expired accounts correctly
* Wed Mar 20 2002 Nalin Dahyabhai 1.54-1- reorder configuration checks so that setting afs_cells will properly force krb4_convert on
* Wed Mar 20 2002 Nalin Dahyabhai 1.53-1- fix what\'s hopefully the last parser bug
* Mon Mar 18 2002 Nalin Dahyabhai 1.52-1- apply patch from David Howells to add retain_tokens option
* Thu Mar 07 2002 Nalin Dahyabhai 1.51-1- fix what\'s hopefully the last parser bug
* Sat Feb 23 2002 Nalin Dahyabhai 1.50-3- rebuild
* Wed Feb 20 2002 Nalin Dahyabhai 1.50-2- rebuild in new environment
* Fri Feb 15 2002 Nalin Dahyabhai 1.50-1- documentation updates (no code changes)
* Tue Feb 12 2002 Nalin Dahyabhai 1.49-1- set PAM_USER using the user\'s parsed name, converted back to a local name- add account management service (checks for key expiration and krb5_kuserok())- handle account expiration errors
* Fri Jan 25 2002 Nalin Dahyabhai 1.48-1- autoconf fixes
* Sat Oct 27 2001 Nalin Dahyabhai 1.47-2- bump release number and rebuild to link with new version of krbafs
* Wed Sep 26 2001 Nalin Dahyabhai 1.47-1- fix parsing of options which have multiple whitespace-separated values, like afs_cells
* Thu Sep 06 2001 Nalin Dahyabhai 1.46-1- link with libresolv to get res_search, tip from Justin McNutt, who built it statically- explicitly link with libdes425- handle cases where getpwnam_r fails but still sets the result pointer- if use_authtok is given and there is no authtok, error out
* Tue Aug 28 2001 Nalin Dahyabhai 1.45-1- set the default realm when a default realm is specified
* Fri Aug 24 2001 Nalin Dahyabhai 1.44-1- only use Kerberos error codes when there is no PAM error yet
* Thu Aug 23 2001 Nalin Dahyabhai 1.43-1- add minimum UID support (#52358)- don\'t link pam_krb5 with libkrbafs- make all options in krb5.conf available as PAM config arguments
* Wed Aug 01 2001 Nalin Dahyabhai - merge patch from Chris Chiappa for building with Heimdal
* Wed Jul 25 2001 Nalin Dahyabhai - note that we had to prepend the current directory to a given path in dlopen.c when we had to (noted by Onime Clement)
* Wed Jul 18 2001 Nalin Dahyabhai 1.42-1- return PAM_NEW_AUTHTOK_REQD when attempts to get initial credentials fail with KRB5KDC_ERR_KEY_EXP (noted by Onime Clement)
* Fri Jul 13 2001 Nalin Dahyabhai - add info about accessing the CVS repository to the README- parser cleanups (thanks to Dane Skow for a more complicated sample)
* Thu Jul 12 2001 Nalin Dahyabhai - buildprereq the krbafs-devel package
* Sat Jul 07 2001 Nalin Dahyabhai - don\'t set forwardable and assorted other flags when getting password- changing service ticket (noted, and fix supplied, by Onime Clement)- try __posix_getpwnam_r on Solaris before we try getpwnam_r, which may or may not be expecting the same number/type of arguments (noted by Onime Clement)- use krb5_aname_to_localname to convert the principal to a login name and set PAM_USER to the result when authenticating- some autoconf fixes for failure cases
* Wed Jun 27 2001 Nalin Dahyabhai - use krb5_change_password() to change passwords
* Wed Jun 13 2001 Nalin Dahyabhai - use getpwnam_r instead of getpwnam when available
* Sat Jun 09 2001 Nalin Dahyabhai - cleanup some autoconf checks
* Fri Jun 08 2001 Nalin Dahyabhai - don\'t call initialize_krb5_error_table() or initialize_ovk_error_table() if they\'re not found at compile-time (reported for RHL 6.x by Chris Riley)
* Fri Jun 01 2001 Nalin Dahyabhai - note that [pam] is still checked in addition to [appdefaults]- note that AFS and Kerberos IV support requires working Kerberos IV configuration files (i.e., kinit -4 needs to work) (doc changes suggested by Martin Schulz)
* Wed May 30 2001 Nalin Dahyabhai - add max_timeout, timeout_shift, initial_timeout, and addressless options (patches from Simon Wilkinson)- fix the README to document the [appdefaults] section instead of [pam]- change example host and cell names in the README to use example domains
* Thu May 03 2001 Nalin Dahyabhai - don\'t delete tokens unless we\'re also removing ticket files (report and patch from Sean Dilda)- report initialization errors better
* Fri Apr 27 2001 Nalin Dahyabhai - treat semicolons as a comment character, like hash marks (bug reported by Greg Francis at Gonzaga University)- use the [:blank:] equivalence class to simplify the configuration file parser- don\'t mess with the real environment- implement mostly-complete aging support
* Sun Apr 08 2001 Nalin Dahyabhai - tweak the man page (can\'t use italics and bold simultaneously)
* Sat Apr 07 2001 Nalin Dahyabhai - restore the default TGS value (#35015)
* Thu Mar 29 2001 Nalin Dahyabhai - fix a debug message- fix uninitialized pointer error
* Tue Mar 27 2001 Nalin Dahyabhai - don\'t fail to fixup the krb5 ccache if something goes wrong obtaining v4 credentials or creating a krb4 ticket file (#33262)
* Thu Mar 22 2001 Nalin Dahyabhai - fixup the man page- log return code from k_setpag() when debugging- create credentials and get tokens when setcred is called for REINITIALIZE
* Wed Mar 21 2001 Nalin Dahyabhai - don\'t twiddle ownerships until after we get AFS tokens- use the current time instead of the issue time when storing v4 creds, since we don\'t know the issuing host\'s byte order- depend on a PAM development header again instead of pam-devel
* Tue Mar 20 2001 Nalin Dahyabhai - add a separate config file parser for compatibility with settings that predate the appdefault API- use a version script under Linux to avoid polluting the global namespace- don\'t have a default for afs_cells- need to close the file when we succeed in fixing permissions (noted by jlkatzAATTeos.ncsu.edu)
* Mon Mar 19 2001 Nalin Dahyabhai - use the appdefault API to read krb5.conf if available- create v4 tickets in such a way as to allow 1.2.2 to not think there\'s something fishy going on
* Tue Feb 13 2001 Nalin Dahyabhai - don\'t log unknown user names to syslog -- they might be sensitive information
* Fri Feb 09 2001 Nalin Dahyabhai - handle cases where krb5_init_context() fails
* Wed Jan 17 2001 Nalin Dahyabhai - be more careful around memory allocation (fixes from David J. MacKenzie)
* Mon Jan 15 2001 Nalin Dahyabhai - no fair trying to make me authenticate \'(null)\'
* Tue Dec 05 2000 Nalin Dahyabhai - rebuild in new environment
* Fri Dec 01 2000 Nalin Dahyabhai - rebuild in new environment
* Wed Nov 08 2000 Nalin Dahyabhai - only try to delete ccache files once- ignore extra data in v4 TGTs, but log that we got some- require \"validate\" to be true to try validating, and fail if validation fails
* Fri Oct 20 2000 Nalin Dahyabhai - catch and ignore errors reading keys from the keytab (for xscreensaver, vlock)
* Thu Oct 19 2000 Nalin Dahyabhai - fix prompting when the module\'s first in the stack and the user does not have a corresponding principal in the local realm- properly implement TGT validation- change a few non-error status messages into debugging messages- sync the README and the various man pages up
* Tue Oct 03 2000 Nalin Dahyabhai - fix \"use_authtok\" logic when password was not set by previous module- require pam-devel to build
* Mon Aug 28 2000 Nalin Dahyabhai - fix errors with multiple addresses (#16847)
* Thu Aug 17 2000 Nalin Dahyabhai - change summary
* Fri Aug 11 2000 Nalin Dahyabhai - fix handling of null passwords
* Thu Jul 06 2000 Nalin Dahyabhai - fixes for Solaris 7 from Trevor Schroeder
* Wed Jun 28 2000 Nalin Dahyabhai - add Seth Vidal\'s no_user_check flag- document no_user_check and skip_first_pass options in the man pages- rebuild against Kerberos 5 1.2 (release 15)
* Tue Jun 06 2000 Nalin Dahyabhai - move man pages to /usr/share/man
* Thu May 18 2000 Nalin Dahyabhai - Make errors chown()ing ccache files non-fatal if (getuid() != 0), suggested by Steve Langasek.
* Tue May 16 2000 Nalin Dahyabhai - Attempt to get initial Kerberos IV credentials when we get Kerberos 5 creds
* Fri Apr 21 2000 Nalin Dahyabhai - Chris Chiappa\'s modifications for customizing the ccache directory
* Thu Apr 20 2000 Nalin Dahyabhai - Mark Dawson\'s fix for krb4_convert not being forced on when afs_cells defined
* Thu Mar 23 2000 Nalin Dahyabhai - fix problem with leftover ticket files after multiple setcred() calls
* Mon Mar 20 2000 Nalin Dahyabhai - add proper copyright statements- save password for modules later in the stack
* Fri Mar 03 2000 Nalin Dahyabhai - clean up prompter
* Thu Mar 02 2000 Nalin Dahyabhai - add krbafs as a requirement
* Fri Feb 04 2000 Nalin Dahyabhai - pick up non-afs PAM config files again
* Wed Feb 02 2000 Nalin Dahyabhai - autoconf and putenv() fixes for broken apps- fix for compressed man pages
* Fri Jan 14 2000 Nalin Dahyabhai - tweak passwd, su, and vlock configuration files
* Fri Jan 07 2000 Nalin Dahyabhai - added both modules to spec file
* Wed Dec 22 1999 Nalin Dahyabhai - adapted the original spec file from pam_ldap
  
ICM