← Back to branch summary

~ubuntu-branches/ubuntu/lucid/openssh/lucid

~ubuntu-branches/ubuntu/lucid/openssh/lucid

« back to all changes in this revision

Viewing changes to debian/openssh-server.ssh.pam

Committer: Bazaar Package Importer
Author(s): Colin Watson
Date: 2008-09-30 23:09:58 UTC
mfrom: (1.13.3 upstream) (29 hardy)
mto: This revision was merged to the branch mainline in revision 43.
Revision ID: james.westby@ubuntu.com-20080930230958-o6vsgn8c4mm959s0

Tags: 1:5.1p1-3

http://bugs.debian.org/496495

http://bugs.debian.org/498681

* Remove unnecessary ssh-vulnkey output in non-verbose mode when no
  compromised or unknown keys were found (closes: #496495).
* Configure with --disable-strip; dh_strip will deal with stripping
  binaries and will honour DEB_BUILD_OPTIONS (thanks, Bernhard R. Link;
  closes: #498681).
* Fix handling of zero-length server banners (thanks, Tomas Mraz; closes:
  #497026).

files added:
PROTOCOL

PROTOCOL.agent

addrmatch.c

contrib/cygwin/sshd-inetd

debian/README.compromised-keys

debian/copyright

debian/faq.html

debian/openssh-server.lintian

debian/openssh-server.sshd.pam

debian/po/sk.po

debian/source.lintian-overrides

debian/ssh.dirs

debian/ssh.lintian

debian/tests

debian/tests/Makefile

debian/tests/getpid.c

debian/tests/keygen-test

moduli.0

moduli.5

mux.c

openbsd-compat/bsd-poll.c

openbsd-compat/bsd-poll.h

openbsd-compat/bsd-statvfs.c

openbsd-compat/bsd-statvfs.h

openbsd-compat/fmt_scaled.c

regress/addrmatch.sh

regress/conch-ciphers.sh

regress/key-options.sh

regress/localcommand.sh

regress/putty-ciphers.sh

regress/putty-kex.sh

regress/putty-transfer.sh

regress/ssh2putty.sh

sftp-server-main.c

ssh-vulnkey.1

ssh-vulnkey.c

umac.c

umac.h

files removed:
debian/moduli.5

debian/openssh-client-udeb.isinstallable

debian/openssh-server.ssh.pam

debian/openssh-server.templates.master

files modified:
ChangeLog

ChangeLog.gssapi

INSTALL

LICENCE

Makefile.in

README

README.platform

atomicio.c

audit-bsm.c

auth-bsdauth.c

auth-options.c

auth-options.h

auth-pam.c

auth-passwd.c

auth-rh-rsa.c

auth-rhosts.c

auth-rsa.c

auth-shadow.c

auth-sia.c

auth.c

auth.h

auth1.c

auth2-chall.c

auth2-gss.c

auth2-hostbased.c

auth2-none.c

auth2-pubkey.c

auth2.c

authfile.c

authfile.h

bufaux.c

bufbn.c

buffer.h

buildpkg.sh.in

canohost.c

channels.c

channels.h

cipher-3des1.c

cipher-bf1.c

cipher-ctr.c

clientloop.c

clientloop.h

config.h.in

configure

configure.ac

contrib/caldera/openssh.spec

contrib/cygwin/Makefile

contrib/cygwin/ssh-host-config

contrib/cygwin/ssh-user-config

contrib/redhat/openssh.spec

contrib/ssh-copy-id

contrib/suse/openssh.spec

debian/README.Debian

debian/changelog

debian/control

debian/copyright.head

debian/openssh-client.preinst

debian/openssh-server.config

debian/openssh-server.default

debian/openssh-server.dirs

debian/openssh-server.init

debian/openssh-server.postinst

debian/openssh-server.postrm

debian/openssh-server.preinst

debian/openssh-server.templates

debian/po/POTFILES.in

debian/po/bg.po

debian/po/ca.po

debian/po/cs.po

debian/po/da.po

debian/po/de.po

debian/po/el.po

debian/po/es.po

debian/po/eu.po

debian/po/fi.po

debian/po/fr.po

debian/po/gl.po

debian/po/it.po

debian/po/ja.po

debian/po/ko.po

debian/po/nb.po

debian/po/nl.po

debian/po/pl.po

debian/po/pt.po

debian/po/pt_BR.po

debian/po/ro.po

debian/po/ru.po

debian/po/sv.po

debian/po/ta.po

debian/po/templates.pot

debian/po/tr.po

debian/po/uk.po

debian/po/vi.po

debian/po/zh_CN.po

debian/rules

debian/ssh-askpass-gnome.desktop

debian/ssh-askpass-gnome.dirs

defines.h

dh.c

dh.h

dns.c

entropy.c

groupaccess.c

groupaccess.h

gss-genr.c

gss-serv.c

includes.h

kex.c

kex.h

key.c

key.h

log.c

log.h

loginrec.c

mac.c

mac.h

match.c

match.h

mdoc2man.awk

misc.c

misc.h

moduli

moduli.c

monitor.c

monitor_fdpass.c

monitor_fdpass.h

monitor_mm.h

monitor_wrap.c

myproposal.h

nchan.c

nchan2.ms

openbsd-compat/Makefile.in

openbsd-compat/base64.c

openbsd-compat/bindresvport.c

openbsd-compat/bsd-arc4random.c

openbsd-compat/bsd-asprintf.c

openbsd-compat/bsd-cray.c

openbsd-compat/bsd-cygwin_util.c

openbsd-compat/bsd-getpeereid.c

openbsd-compat/bsd-misc.c

openbsd-compat/fake-rfc2553.c

openbsd-compat/fake-rfc2553.h

openbsd-compat/getrrsetbyname.c

openbsd-compat/getrrsetbyname.h

openbsd-compat/glob.c

openbsd-compat/glob.h

openbsd-compat/openbsd-compat.h

openbsd-compat/openssl-compat.c

openbsd-compat/openssl-compat.h

openbsd-compat/port-aix.c

openbsd-compat/port-aix.h

openbsd-compat/port-linux.c

openbsd-compat/port-linux.h

openbsd-compat/port-tun.c

openbsd-compat/port-uw.c

openbsd-compat/port-uw.h

openbsd-compat/regress/closefromtest.c

openbsd-compat/regress/strtonumtest.c

openbsd-compat/rresvport.c

openbsd-compat/setenv.c

openbsd-compat/setproctitle.c

openbsd-compat/sigact.c

openbsd-compat/sys-queue.h

openbsd-compat/sys-tree.h

openbsd-compat/xcrypt.c

openbsd-compat/xmmap.c

openssh.xml.in

packet.c

packet.h

pathnames.h

readconf.c

readconf.h

regress/Makefile

regress/agent-getpeereid.sh

regress/agent.sh

regress/cfgmatch.sh

regress/cipher-speed.sh

regress/sftp-badcmds.sh

regress/sftp-cmds.sh

regress/sftp-glob.sh

regress/test-exec.sh

regress/try-ciphers.sh

scard-opensc.c

scp.0

scp.1

scp.c

servconf.c

servconf.h

serverloop.c

session.c

session.h

sftp-client.c

sftp-client.h

sftp-server.0

sftp-server.8

sftp-server.c

sftp.0

sftp.1

sftp.c

sftp.h

ssh-add.0

ssh-add.1

ssh-add.c

ssh-agent.0

ssh-agent.1

ssh-agent.c

ssh-gss.h

ssh-keygen.0

ssh-keygen.1

ssh-keygen.c

ssh-keyscan.0

ssh-keyscan.1

ssh-keyscan.c

ssh-keysign.0

ssh-keysign.8

ssh-rand-helper.0

ssh-rand-helper.c

ssh.0

ssh.1

ssh.c

ssh_config

ssh_config.0

ssh_config.5

sshconnect.c

sshconnect.h

sshconnect2.c

sshd.0

sshd.8

sshd.c

sshd_config

sshd_config.0

sshd_config.5

sshlogin.c

sshpty.c

sshpty.h

sshtty.c

ttymodes.c

version.h

Show diffs side-by-side

added added

removed removed

debian/openssh-server.ssh.pam

1

# PAM configuration for the Secure Shell service

2

3

# Read environment variables from /etc/environment and

4

# /etc/security/pam_env.conf.

5

auth required pam_env.so # [1]

6

# In Debian 4.0 (etch), locale-related environment variables were moved to

7

# /etc/default/locale, so read that as well.

8

auth required pam_env.so envfile=/etc/default/locale

9

10

# Standard Un*x authentication.

11

@include common-auth

12

13

# Disallow non-root logins when /etc/nologin exists.

14

account required pam_nologin.so

15

16

# Uncomment and edit /etc/security/access.conf if you need to set complex

17

# access limits that are hard to express in sshd_config.

18

# account required pam_access.so

19

20

# Standard Un*x authorization.

21

@include common-account

22

23

# Standard Un*x session setup and teardown.

24

@include common-session

25

26

# Print the message of the day upon successful login.

27

session optional pam_motd.so # [1]

28

29

# Print the status of the user's mailbox upon successful login.

30

session optional pam_mail.so standard noenv # [1]

31

32

# Set up user limits from /etc/security/limits.conf.

33

session required pam_limits.so

34

35

# Set up SELinux capabilities (need modified pam)

36

# session required pam_selinux.so multiple

37

38

# Standard Un*x password updating.

39

@include common-password

Older »