-
Committer:
Bazaar Package Importer
-
Author(s):
Steve Langasek
-
Date:
2009-03-03 17:34:19 UTC
-
Revision ID:
james.westby@ubuntu.com-20090303173419-2zs7z9hshwpxsnfh
Tags: 1.0.1-7ubuntu1
* Merge from Debian unstable
* Remaining changes:
- debian/libpam-modules.postinst: Add PATH to /etc/environment if it's not
present there or in /etc/security/pam_env.conf. (should send to Debian).
- debian/libpam0g.postinst: only ask questions during update-manager when
there are non-default services running.
- debian/patches-applied/series: Ubuntu patches are as below ...
- debian/patches-applied/ubuntu-fix_standard_types: Use standard u_int8_t
type rather than __u8.
- debian/patches-applied/ubuntu-no-error-if-missingok: add a new, magic
module option 'missingok' which will suppress logging of errors by
libpam if the module is not found.
- debian/patches-applied/ubuntu-regression_fix_securetty: prompt for
password on bad username.
- debian/patches-applied/ubuntu-rlimit_nice_correction: Explicitly
initialise RLIMIT_NICE rather than relying on the kernel limits.
- debian/patches-applied/ubuntu-user_defined_environment: Look at
~/.pam_environment too, with the same format as
/etc/security/pam_env.conf. (Originally patch 100; converted to quilt.)
- Change Vcs-Bzr to point at the Ubuntu branch.
- debian/local/common-password, debian/pam-configs/unix: switch from
"md5" to "sha512" as password crypt default.
* Dropped changes, merged in Debian:
- debian/local/pam-auth-update (et al): new interface for managing
/etc/pam.d/common-*, using drop-in config snippets provided by module
packages.
- New patch dont_freeze_password_chain, cherry-picked from upstream:
don't always follow the same path through the password stack on
the PAM_UPDATE_AUTHTOK pass as was used in the PAM_PRELIM_CHECK
pass; this Linux-PAM deviation from the original PAM spec causes a
number of problems, in particular causing wrong return values when
using the refactored pam-auth-update stack. LP: #303515, #305882.
- debian/patches/027_pam_limits_better_init_allow_explicit_root:
Add documentation to the patch showing how to set limits for root.
* Bump the libpam-cracklib dependency on libpam-runtime to 1.0.1-6,
reducing the delta with Debian.
* Drop upgrade handling code from libpam-runtime.postinst that's only
needed when upgrading from 1.0.1-2ubuntu1, a superseded intrepid
pre-release version of the package.
* pam-auth-update: swap out known md5sums from intrepid pre-release versions
with the md5sums from the released intrepid version
* pam-auth-update: drop some md5sums that will only be seen on upgrade from
pre-intrepid versions; skipping over the 8.10 final release is not
supported, and upgrading via 8.10 means those config files will be
replaced so the old md5sums will never be seen again.