CVS commit: wip/pam-yubico

To: pkgsrc-wip-cvs%lists.sourceforge.net@localhost
Subject: CVS commit: wip/pam-yubico
From: "Fredrik Pettai" <pettai%users.sourceforge.net@localhost>
Date: Thu, 8 Mar 2012 23:02:36 +0000

Module name:    wip
Committed by:   pettai
Date:           Thu Mar  8 23:02:21 UTC 2012

Modified Files:
        wip/pam-yubico: Makefile PLIST distinfo

Log Message:
Version 2.11 (released 2012-02-10)

* Fix crash-bug with challenge-response mode when button press is required,
but button is never pressed.

* Fix a memset() with wrong size as reported by clang, as well as some
other problems/warnings when building on Mac OS X

* Add prefix-matching of LDAP fetched values, so you can store the
token-to-user mapping in a multi-value attribute with values like
"yubikey:publicid", "other-token:something" etc.

Version 2.10 (released 2011-12-14)

* Drop permissions (to the user that is trying to authenticate) before
accessing files in the users home directory.

* Restore challenge-response support - version 2.7 was supposed to make
the dependency on libykpers optional, but in reality accidentally
disabled challenge-response for all configurations. As before, use
--without-cr to compile pam_yubico without the ykpers dependency.

Version 2.9 (released 2011-11-17)

* Security: Explicitly request ykclient to verify server signature.
ykclient <= 2.5 strangely enough defaults to signing requests, but not
verifying signatures in responses when it is supplied with a client key.

Version 2.8 (released 2011-08-26)

* Fix big security hole: Authentication succeeded when no password
was given, unless use_first_pass was being used.
This is fatal if pam_yubico is considered 'sufficient' in the PAM
configuration.

Version 2.7 (released 2011-06-07)

* Make dependency on libykpers optional.
Use --without-cr to force it.

Version 2.6 (released 2011-04-11)

* This release includes lots of patches by members of our open
source community. Thank you all!

* Add Challenge-Response mode for offline validation (requires
YubiKey 2.2). Patch by Tollef Fog Heen.

* Eliminate all problems with pam_get_data by simply getting rid
of that code completely. This seems to have caused problems for a lot
of people.

* Numerous LDAP bug fixes and improvements, including community
patches by judas.iscariote and maxsanna81%gmail.com@localhost. Change to
LDAPv3, since v2 has been declared historic for a looong time.

* Support passing capath parameter to Yubico validation client.

* Support public id's longer/shorter than 6 bytes.

* Convert documentation to Asciidoc format used in Github wiki.

* Try to never log passwords in debug logs.

Version 2.5 (released 2010-09-10)

* Wiki articles are now inclded in the archive.  Same license as code.

Version 2.4 (released 2010-09-10)

* New keyword "verbose_otp" to allow displaying OTP characters.

* Build with -DPAM_DEBUG so that debug file writing works.

* Make deprecated "ldapserver" work again.

* Fix segmentation fault on 64-bit systems.

* Don't crash on ^D at su prompt, or generally, on a NULL password value.

Version 2.3 (released 2010-04-14)

* New keyword "ldap_uri" added.
This keyword is preferred over the old "ldapserver" keyword, and
allows you to specify a complete LDAP URI instead of only the hostname
of your LDAP server.

* Improved README.

Version 2.2 (released 2009-05-11)

* Added new PAM configuration variable "key" for base64 client key.



To generate a diff of this commit:
cvs -z3 rdiff -u -r1.1.1.1 -r1.2 wip/pam-yubico/Makefile \
    wip/pam-yubico/PLIST wip/pam-yubico/distinfo

To view a diff of this commit:
http://pkgsrc-wip.cvs.sourceforge.net/pkgsrc-wip/wip/pam-yubico/Makefile?r1=1.1.1.1&r2=1.2
http://pkgsrc-wip.cvs.sourceforge.net/pkgsrc-wip/wip/pam-yubico/PLIST?r1=1.1.1.1&r2=1.2
http://pkgsrc-wip.cvs.sourceforge.net/pkgsrc-wip/wip/pam-yubico/distinfo?r1=1.1.1.1&r2=1.2

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

------------------------------------------------------------------------------
Virtualization & Cloud Management Using Capacity Planning
Cloud computing makes use of virtualization - but cloud computing 
also focuses on allowing computing to be delivered as a service.
http://www.accelacomm.com/jaw/sfnl/114/51521223/
_______________________________________________
pkgsrc-wip-cvs mailing list
pkgsrc-wip-cvs%lists.sourceforge.net@localhost
https://lists.sourceforge.net/lists/listinfo/pkgsrc-wip-cvs

Prev by Date: CVS commit: wip/xfce48
Next by Date: CVS commit: wip/ykpers
Previous by Thread: CVS commit: wip/pam-yubico
Next by Thread: CVS commit: wip/pam-yubico
Indexes:

Home | Main Index | Thread Index | Old Index