summaryrefslogtreecommitdiff
path: root/usr/src/lib/pam_modules
AgeCommit message (Collapse)AuthorFilesLines
2016-01-25Revert "6057 login(1) "Last login" hostname is too short"Dan McDonald2-231/+83
(Needs further testing.) This reverts commit 6249f9725f411468c70516176806c553ac983270.
2016-01-066545 fix for 6540 did miss the pam_sm_close_session()Toomas Soome1-1/+1
Reviewed by: Richard Lowe <richlowe@richlowe.net> Reviewed by: Lauri Tirkkonen <lotheac@iki.fi> Approved by: Dan McDonald <danmcd@omniti.com>
2016-01-046540 pam_unix_session needs to support nowarn optionToomas Soome1-2/+5
Reviewed by: Igor Kozhukhov <ikozhukhov@gmail.com> Reviewed by: Lauri Tirkkonen <lotheac@iki.fi> Approved by: Dan McDonald <danmcd@omniti.com>
2015-12-286057 login(1) "Last login" hostname is too shortLauri Tirkkonen2-83/+231
Reviewed by: Gary Mills <gary_mills@fastmail.fm> Reviewed by: Albert Lee <trisk@omniti.com> Reviewed by: Jason King <jason.brian.king@gmail.com> Reviewed by: Alex Wilson <alex.wilson@joyent.com> Approved by: Dan McDonald <danmcd@omniti.com>
2014-10-095110 want pam_timestamp moduleAlexander Eremin9-0/+604
Reviewed by: Garrett D'Amore <garrett@damore.org> Reviewed by: Jason King <jason.brian.king@gmail.com> Approved by: Gordon Ross <gwr@nexenta.com>
2013-07-293882 Remove xmod & friendsJosef 'Jeff' Sipek1-39/+0
Reviewed by: Dan McDonald <danmcd@nexenta.com> Reviewed by: Richard Lowe <richlowe@richlowe.net> Approved by: Richard Lowe <richlowe@richlowe.net>
2012-09-222933 compiler warning gags need better granularityRichard Lowe7-15/+12
Reviewed by: Eric Schrock <eric.schrock@delphix.com> Approved by: Garrett D'Amore <garrett@damore.org>
2010-07-286944330 pam_krb5_prompter leaks memoryWill Fiveash1-30/+47
2010-07-286937882 pam_krb5_prompter should deny all forms of password type promptsWill Fiveash1-1/+5
2010-07-286929628 pkinit preauth plugin needs interface so caller can provide PINWill Fiveash1-32/+42
2010-06-246916796 OSnet mapfiles should use version 2 link-editor syntaxAli Bahrami22-66/+88
--HG-- rename : usr/src/cmd/sgs/libelf/common/mapfile-common => usr/src/cmd/sgs/libelf/common/mapfile-vers rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-bindings => usr/src/cmd/sgs/link_audit/common/mapfile-vers-bindings rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-perfcnt => usr/src/cmd/sgs/link_audit/common/mapfile-vers-perfcnt rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-symbindrep => usr/src/cmd/sgs/link_audit/common/mapfile-vers-symbindrep rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-truss => usr/src/cmd/sgs/link_audit/common/mapfile-vers-truss rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-who => usr/src/cmd/sgs/link_audit/common/mapfile-vers-who rename : usr/src/common/mapfiles/i386/map.noexdata => usr/src/common/mapfiles/common/map.noexdata rename : usr/src/lib/libaio/sparc/mapfile-vers => usr/src/lib/libaio/common/mapfile-vers rename : usr/src/lib/libelfsign/common/mapfile.map => usr/src/lib/libelfsign/common/mapfile-vers rename : usr/src/lib/libpthread/sparc/mapfile-vers => usr/src/lib/libpthread/common/mapfile-vers rename : usr/src/lib/librt/amd64/mapfile-vers => usr/src/lib/librt/common/mapfile-vers rename : usr/src/lib/libsys/sparc/mapfile-vers => usr/src/lib/libsys/common/mapfile-vers rename : usr/src/lib/libthread/sparc/mapfile-vers => usr/src/lib/libthread/common/mapfile-vers
2010-04-28PSARC 2009/377 In-kernel pfexec implementation.Casper H.S. Dik1-21/+47
PSARC 2009/378 Basic File Privileges PSARC 2010/072 RBAC update: user attrs from profiles 4912090 pfzsh(1) should exist 4912093 pfbash(1) should exist 4912096 pftcsh(1) should exist 6440298 Expand the basic privilege set in order to restrict file access 6859862 Move pfexec into the kernel 6919171 cred_t sidesteps kmem_debug; we need to be able to detect bad hold/free when they occur 6923721 The new SYS_SMB privilege is not backward compatible 6937562 autofs doesn't remove its door when the zone shuts down 6937727 Zones stuck on deathrow; netstack_zone keeps a credential reference to the zone 6940159 Implement PSARC 2010/072
2010-04-126935410 setting audit context when audit is not enabled should be more ↵gww1-6/+19
tolerant of getaddrinfo failure
2010-02-266894506 pam_krb5 is not lint cleanWill Fiveash3-117/+122
2010-02-26PSARC/2009/576 pam_krb5 PKINIT supportWill Fiveash3-60/+328
6886774 pam_krb5 PKINIT support
2009-12-306894056 libc is not cleanSurya Prakki2-2/+4
6894060 libnsl is not lint clean 6894068 libpool is not lint clean 6894073 some zone libs are not lint clean 6913623 some user land components of ON are not ss12u1 lint clean
2009-12-076874309 Remove NIS+ from Solaris (fix unref)Raja Andra1-3/+1
6907985 dhkeys references to obsolete file
2009-12-066874309 Remove NIS+ from SolarisRaja Andra6-472/+60
2009-10-01PSARC/2004/678 EOF SCF_ Smartcard APIsDarren J Moffat1-6/+1
PSARC/2005/106 iButton Smartcard EOF PSARC/2005/107 Cyberflex Smartcard EOF PSARC/2006/295 EOF pam_smartcard(5) PSARC/2006/296 EOF smartcard(1m) 6857067 Smartcard EOF Removal
2009-06-05PSARC 2007/072 PRIV_AWARE_RESETCasper H.S. Dik1-7/+12
6452447 Need the ability to limit each and every privilege on login
2009-06-056843081 pam_authtok_check cannot be used simultaneously by 32-bit and 64-bit ↵Joep Vesseur4-48/+46
applications
2009-05-216795209 Enable compilation of ON-consolidation with GCC 4.2Scott Rotondo1-7/+5
6392640 rpcgen -h -T output does not compile with gcc 4.x --HG-- rename : usr/src/stand/lib/fs/nfs/pathname.h => usr/src/stand/lib/fs/nfs/st_pathname.h
2009-05-206722154 pam_roles still has a PAM_RUSER/PAM_RHOST hack for SMCgww1-29/+9
2009-04-30backout 6795209/6392640: breaks sparc buildjmcp1-5/+7
2009-04-306795209 Enable compilation of ON-consolidation with GCC 4.2Nathan Keynes1-7/+5
6392640 rpcgen -h -T output does not compile with gcc 4.x
2009-03-236588644 When audit is enabled and the tty or host fails to build the ↵Joep Vesseur1-4/+17
terminalid, the syslog could be better
2009-03-236615002 possible file descriptor leak in unix_acctJoep Vesseur1-0/+1
2009-03-236699885 misconfiguring the passwd auth stack leads to unexpected resultsJoep Vesseur1-10/+7
2009-03-066799884 pam_krb5 could allow authentication to an attacker's KDCPeter Shoults6-27/+16
2009-02-106798660 Cadmium .NOT file processing problem with CWD relative file pathsAli Bahrami22-44/+308
Contributed by Richard Lowe 6785284 Mapfile versioning rules need to be more visible to gatelings 6800164 Standard file exclusion mechanism needed for Cadmium tools
2008-12-116768868 CPPFLAGS from Makefile.mech_krb5 get clobbered for pam_krb5 and ↵2-9/+6
pam_krb5_migrate
2009-01-166783069 libc must not use defread internallyKenjiro Tsuji4-53/+57
2009-01-15PSARC/2008/718 pam_list compat modeMilan Jurik1-20/+133
6682426 pam_list needs support to passwd_compat mode style configurations (+ line and ignoring local users)
2008-12-086724959 pam_modules/krb5/utils.h`set_active_user() declaration is adriftPeter Shoults2-93/+56
6724557 Potential for a memory leak in krb5_setcred's krb5_renew_tgt routine 6691206 pam_krb5's store_cred should always store new credentials if a previous auth pass was successful 6752096 krb5_renew_tgt incorrectly tests for the value of char *filepath
2008-11-15PSARC 2007/700 Enforcement of PASSREQ=YESJoep Vesseur3-72/+111
4652487 pam_unix_account does not honor PAM_DISALLOW_NULL_AUTHTOK for root 5070350 pam_unix account allows users with blank passwords if aging prevents change 6494527 PASSREQ not always enforced
2008-09-036742084 PRIV_FILE_CHOWN_SELF granted in pam_sm_setcred even if pathconf ↵Nils Goroll1-6/+5
returns EINVAL
2008-08-27Contributed by Vinay Simha B.N. <simhavcs@gmail.com> and Beeresh G. ↵John Sonnenschein4-16/+12
<beeresh@gmail.com> 6547525 "*NP*" could use a #define
2008-07-076615409 Rename appropriate structures in userlandamw1-1/+1
6617595 Rework winpipe code to use XDR encode/decode 6648778 SMB_STREAM_RDDIR no longer needed 6655341 Remove explicit stream processing in smb_com_delete() 6666446 smb_pwd_fgetent and smb_pwd_fputent are inconsistent w.r.t. type 6685931 Support for Windows Longhorn server 6692347 Number of CIFS shares returned when browsing is limited 6693624 smbadm enable-user doesn't work correctly for new users 6695865 Server doesn't send a list of its local users to clients when requested 6699960 Somewhere between 500 - 1953 shares created then cifs sharese become inaccessibe from client 6707395 CIFS I/O fails - The specified network name is no longer available - smb_kdoor_clnt_upcall error 6714170 mbuf marshalling code clean up phase 1 6715742 Use FILE_ATTRIBUTE definitions for DOS and NT attributes 6715791 The path is shown as a part of the comments when browsing shares from Windows clients 6718834 use TCP for sending DNS request to query service location (SRV) records for ADS hosts 6719320 smbtorture RPC tests cases failed 6719979 smb_com_delete deletes hidden files when the search attribute doesn't specify FILE_ATTRIBUTE_HIDDEN 6721456 Unable to create new txt file using Windows "edit" command. --HG-- rename : usr/src/cmd/smbsrv/smbd/smbd_mlsvc_doorsvc.c => usr/src/cmd/smbsrv/smbd/smbd_opipe_doorsvc.c rename : usr/src/lib/smbsrv/libmlsvc/common/lmshare.c => usr/src/lib/smbsrv/libmlsvc/common/smb_share.c rename : usr/src/uts/common/fs/smbsrv/smb_rpc.c => usr/src/uts/common/fs/smbsrv/smb_opipe.c rename : usr/src/uts/common/smbsrv/lmshare.h => usr/src/uts/common/smbsrv/smb_share.h
2008-06-206607813 pam_krb5 setcred coredumps on successful refresh if auth was not ↵ps574221-2/+29
previously called
2008-05-276692336 ktkt_warnd(1M) client code should be a librarygtb5-45/+9
2008-05-026683064 check_rtime could do with some spring cleaningrie8-58/+38
2008-04-256455225 pam_krb5 should overwrite ccache with new credentials when handling ↵semery1-162/+46
pam_setcred(PAM_REFRESH_CRED) 6642279 kdcmgr has to run twice if the pw file option is used and an existing db is present
2008-02-186653315 Want smb interface to associate hostname with network interfacesjb1500151-1/+5
6657760 libsmb should look for an interposition library for local user management 6649844 smbd restarts during stress tests. 6650829 smb_enable_service() waits in vain 6616507 CIFS server code should eradicate its use of setjmp()/longjmp() 6655326 CIFS named streams are too permissive 6630437 smb_smf_create_service_pgroup() can segfault on failure 6630441 smb_smf_scf_init() can segfault on failure --HG-- rename : usr/src/lib/smbsrv/libsmbns/common/smbns_nicconfig.c => usr/src/lib/smbsrv/libsmb/common/smb_nic.c
2008-02-13PSARC 2005/695 CIFS Client on Solaristhurlow9-3/+434
PSARC 2007/303 pam_smb_login PSARC 2008/073 CIFS Client on Solaris - Updates 6651904 CIFS Client - PSARC 2005/695
2008-01-316647693 ssh fails for user with no NIS+ credentialssdussud1-33/+48
2008-01-244947191 OSNet should use direct bindingsrie1-2/+1
2008-01-236483447 pam_sm_chauthtok NOT mt-safe: authtok_check/dict.c:lock_db uses alarm(2)jjj4-180/+187
6548129 some pam modules can use some malloc/strdup error checking
2008-01-076647050 pam_unix_auth doesn't return PAM_MAXTRIES though the man pages says ↵gww1-9/+11
it does.
2007-12-126539516 Applications compiled with -lldap on Solaris 8 core dump on Solaris ↵andra1-4/+4
9 or later releases
2007-11-286569824 password reset loops for password changes when owner is not allowed ↵sdussud1-18/+34
to change password aging policy
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-08 18:02:42 +0000