Remi Mollon
b42307d169
adding yubi_prefix parameter, when looking for token_id in ldap
2012-01-18 17:04:58 +01:00
Fredrik Thulin
d5978df794
Merge branch 'master' of github.com:Yubico/yubico-pam
2011-12-14 13:12:17 +01:00
Fredrik Thulin
6c23f47645
sync
2011-12-14 13:11:12 +01:00
Fredrik Thulin
41dddf3e62
check-doc-dist: restore submodule doc branch master
2011-12-14 13:06:41 +01:00
Fredrik Thulin
62662049fb
New date for 2.10 release (today).
2011-12-14 12:51:14 +01:00
Simon Josefsson
2a28ad04d5
Shift blame.
2011-12-13 17:00:59 +01:00
Fredrik Thulin
263012f725
authorize_user_token: Don't drop privs for system-wide file.
2011-12-13 16:56:04 +01:00
Fredrik Thulin
29f8a00713
Bug fix dropping privileges using pam_modutil_drop_priv.
2011-12-13 16:15:25 +01:00
Fredrik Thulin
fc8adacd33
prepare 2.10
2011-12-13 13:39:38 +01:00
Fredrik Thulin
84c817909a
update copyright for files changed 2011
2011-12-13 13:38:52 +01:00
Fredrik Thulin
ab0035e34e
Document arguments token_id_length and mode.
2011-12-12 19:28:37 +01:00
Fredrik Thulin
a6e4c047f6
Compile list of authors from ChangeLog.
2011-12-12 10:56:00 +01:00
Fredrik Thulin
1c74b4849b
update
2011-12-12 10:30:14 +01:00
Fredrik Thulin
a8e84a14d0
Prepare version 2.10.
2011-12-06 19:29:00 +01:00
Fredrik Thulin
505225fe19
Pedantically removing warnings.
2011-12-06 14:41:59 +01:00
Fredrik Thulin
afd4198de1
Fix implicit declaration warning.
2011-12-06 14:38:08 +01:00
Fredrik Thulin
c795e84bef
challenge_response: reject bad slot
2011-12-06 14:37:57 +01:00
Fredrik Thulin
4ce59833ba
Further pointer signedness fixes.
2011-12-06 13:46:30 +01:00
Fredrik Thulin
43134038a5
do_challenge_response: Remove 2 unused variables.
2011-12-06 13:45:58 +01:00
Fredrik Thulin
a7bd2efa95
Hyphen-fix.
2011-12-06 13:31:35 +01:00
Fredrik Thulin
b27599957c
Fix implicit yubikey_* declarations.
2011-12-06 13:31:25 +01:00
Fredrik Thulin
bba72bfead
Avoid asprintf.
...
To improve portability, we do malloc() + snprintf() instead.
2011-12-06 11:58:36 +01:00
Fredrik Thulin
fa8a9ff074
Fix pointer signedness warnings.
2011-12-06 11:56:52 +01:00
Fredrik Thulin
f03314e59c
generate_random: Remove unused variable 'i'.
2011-12-06 11:54:09 +01:00
Fredrik Thulin
b671a6a350
fix lintian errors
2011-12-01 14:17:50 +01:00
Fredrik Thulin
2785c998be
Update with new things in 2.10.
2011-11-23 15:05:19 +01:00
Fredrik Thulin
f24f333867
Drop privileges before writing new C-R file.
2011-11-23 13:56:01 +01:00
Fredrik Thulin
94885d2d48
Verify that challenge-response file is a normal file.
2011-11-23 13:55:44 +01:00
Fredrik Thulin
d4acd495f0
improve debug messages
2011-11-23 13:46:26 +01:00
Fredrik Thulin
fcde64a93e
Use pam_modutil_drop_priv if it is available.
...
Utility functions for what was done in drop_priv.c appeared
in PAM 1.1.3. Use them when available.
2011-11-23 13:45:41 +01:00
Fredrik Thulin
b92902fd8f
Restore challenge-response functionality.
...
HAVE_LIBYKPERS_1 did not seem to ever get defined, so use HAVE_CR instead.
2011-11-23 13:26:02 +01:00
Ricky Zhou
a9892dbb44
Drop privileges before opening user files.
...
This change also ensures that user tokens are regular files. We may
want to add a similar check for user challenge files.
2011-11-23 10:16:00 +01:00
Fredrik Thulin
f92ee12aa9
Remove unused variable and extra undef.
2011-11-22 11:17:29 +01:00
Fredrik Thulin
47d883b600
pam_sm_authenticate: check strdup return value
2011-11-22 11:08:53 +01:00
Fredrik Thulin
57cf6ed5d6
authorize_user_token_ldap: check malloc return value
2011-11-22 11:08:28 +01:00
Fredrik Thulin
8930cca53e
parse_args: getopt() return value is int.
2011-11-22 11:03:51 +01:00
Fredrik Thulin
47e59ae8c0
Fix release date of 2.9.
2011-11-17 20:52:29 +01:00
Fredrik Thulin
22648cfcb5
Link pam_yubico.la directly with -lpam.
2011-11-17 20:50:39 +01:00
Fredrik Thulin
2ab6c26f27
updates
2011-11-08 22:21:20 +01:00
Fredrik Thulin
b8d806fd63
Prepare for version 2.9.
2011-11-08 22:05:53 +01:00
dr8
6dc10799b6
Bug fix: pam_yubico doesn't check server signature
...
Squashed commit of the following:
commit 9e7746bc53957f2a1e68784c0c26d082049180a7
Author: dr8 <github@dominicrutherford.co.uk>
Date: Mon Oct 31 14:27:47 2011 +0000
Bug fix: pam_yubico doesn't check server signature
commit 2f3d5e721cbfc905582da6208495c1da6dd2f79c
Author: dr8 <github@dominicrutherford.co.uk>
Date: Sat Oct 29 16:59:08 2011 +0100
Bug fix: pam_yubico does not validate server signature
commit 58a1e6820a88f6aa365ef006e9cca4c62af7c7cf
Author: dr8 <github@dominicrutherford.co.uk>
Date: Fri Oct 28 22:09:49 2011 +0100
only validate server signature when key is specified
commit d705f429bc972f85a50f0b2f96703cbdc28b744f
Author: dr8 <github@dominicrutherford.co.uk>
Date: Tue Oct 25 22:45:22 2011 +0100
fix failure to validate server signature
2011-11-08 21:57:28 +01:00
Fredrik Thulin
788f826ddc
Prepare for version 2.8.
2011-08-26 13:58:42 +02:00
Nanakos Chrysostomos
4712da70ca
Fix big security hole: Authentication succeeded when no password
...
was given, unless use_first_pass was being used.
This is fatal if pam_yubico is considered 'sufficient' in the PAM
configuration.
Signed-off-by: Nanakos Chrysostomos <nanakos@wired-net.gr>
2011-08-26 14:32:03 +03:00
Simon Josefsson
2bf1a9b645
Fix date.
2011-06-07 00:43:48 +02:00
Simon Josefsson
6a1727bb38
Fix release target.
2011-06-07 00:43:14 +02:00
Simon Josefsson
5b96efa7d9
Ignore more.
2011-06-07 00:41:55 +02:00
Simon Josefsson
6eae809ccc
Update doc/.
2011-06-07 00:37:46 +02:00
Simon Josefsson
d75cb69439
Version 2.7.
2011-06-07 00:37:12 +02:00
Simon Josefsson
e469b630d5
Make dependency on libykpers optional.
...
Use --without-cr to force it. Reported by Jussi Sallinen <jussi@jus.si>.
2011-06-07 00:35:22 +02:00
Fredrik Thulin
eb438e782c
parse_cfg: Use memset to clear cfg struct.
...
The code will be easier to maintain if one does not have to remember
explicitly initializing all new members of the config struct.
2011-04-15 16:30:06 +02:00
