- Aug 15, 2024
-
- Sep 18, 2023
-
-
David Runge authored
Use pam_umask.so in system-login: https://bugs.archlinux.org/task/66068 Do not override ENCRYPT_METHOD specified in /etc/login.defs: https://bugs.archlinux.org/task/67393
-
David Runge authored
To allow a centralized umask setup, we can rely on pam_umask.so. This allows for relying on `UMASK` and `HOME_MODE` in /etc/login.defs and not requiring a custom umask setting in /etc/profile anymore. https://bugs.archlinux.org/task/66068 Signed-off-by:
David Runge <dvzrv@archlinux.org>
-
David Runge authored
Do not override the `ENCRYPT_METHOD` chosen in /etc/login.defs: https://bugs.archlinux.org/task/67393 Signed-off-by:
David Runge <dvzrv@archlinux.org>
-
- Oct 20, 2022
-
-
David Runge authored
The previous commit accidentally removed the use of pam_env.so entirely, while only the user_readenv=1 setting was meant to be removed.
-
David Runge authored
Include cleanup commits from trunk and the removal of user_readenv.
-
David Runge authored
The insecure user_readenv setting has been deprecated with pam 1.5.0 and will be removed in a future release. https://bugs.archlinux.org/task/68945
-
David Runge authored
-
David Runge authored
-
David Runge authored
-
David Runge authored
-
David Runge authored
-
David Runge authored
-
- Dec 10, 2021
-
- Nov 12, 2021
-
-
Jelle van der Waa authored
Setting just motd nullifies the motd_dir defaults, as we want to support reading motd's from /etc/motd and /etc/motd.d unset the motd= option and use the upstream defaults. Fixes: FS#72707
-
- Jun 08, 2021
-
- Jun 05, 2021
-
- Aug 12, 2020
-
-
Tobias Powalowski authored
Remove options not supported by faillock, Drop sha512 option to pam_unix, Fix pam_faillock support, Pass option user_readenv=1 to pam_env at end of session in system-login
-
- Jul 21, 2020
-
- Nov 13, 2019
-
- Sep 15, 2019
-
-
Antonio Rojas authored
-
- Jan 05, 2019
-
-
Dave Reisner authored
- use upstream "other" template (FS#48650)
-
Dave Reisner authored
This is the upstream default as per: http://www.linux-pam.org/Linux-PAM-html/sag-security-issues-other.html Making this change requires that all programs gain PAM services specific to their needs.
-
Dave Reisner authored
Use a different faillog file because the new format of pam_tally2 is not compatible with that of pam_tally.
-
- Oct 06, 2017
-
- Sep 28, 2013
-
- Aug 21, 2013
-
-
Thomas Bächler authored
Since setting of PAM environment variables can have side effects to other modules, this module should be the last one on the stack. Honor that by moving it to the end everywhere. This also makes pam_env much more useful, since you can use ${XDG_RUNTIME_DIR} in pam_env.conf.
-
- Jan 13, 2013
-
-
Dave Reisner authored
- add quiet to pam_mail (FS#31999)
-
- Jul 01, 2012
-
- Jun 04, 2012
-
-
Dave Reisner authored