Changes in / [bc7e5a7:d128a3c]


Ignore:
Files:
2 edited

Legend:

Unmodified
Added
Removed

  • introduction/welcome/changelog.xml

    rbc7e5a7 rd128a3c  
    4343    -->
    4444    <listitem>
    45       <para>January 12th, 2022</para>
    46       <itemizedlist>
    47         <listitem>
    48           <para>[pierre] - Change PAM configuration files of shadow
    49           applications so that only the types really used appear, and
    50           use system-password for the password type when needed. Fixes
    51           <ulink url="&blfs-ticket-root;15950">#15950</ulink>.</para>
    52         </listitem>
    53       </itemizedlist>
    54     </listitem>
    55 
    56     <listitem>
    5745      <para>January 11th, 2022</para>
    5846      <itemizedlist>

  • postlfs/security/shadow.xml

    rbc7e5a7 rd128a3c  
    462462
    463463      <sect4>
    464         <title>'chpasswd' and 'newusers'</title>
    465 
    466 <screen role="root"><userinput>cat &gt; /etc/pam.d/chpasswd &lt;&lt; "EOF"
    467 <literal># Begin /etc/pam.d/chpasswd
     464        <title>'chage'</title>
     465
     466<screen role="root"><userinput>cat &gt; /etc/pam.d/chage &lt;&lt; "EOF"
     467<literal># Begin /etc/pam.d/chage
    468468
    469469# always allow root
    470470auth      sufficient  pam_rootok.so
    471471
    472 # include system auth and account settings
     472# include system auth, account, and session settings
    473473auth      include     system-auth
    474474account   include     system-account
    475 password  include     system-password
    476 
    477 # End /etc/pam.d/chpasswd</literal>
    478 EOF
    479 
    480 sed -e /chpasswd/newusers/ /etc/pam.d/chpasswd >/etc/pam.d/newusers</userinput></screen>
    481       </sect4>
    482 
    483       <sect4>
    484         <title>'chage'</title>
    485 
    486 <screen role="root"><userinput>cat &gt; /etc/pam.d/chage &lt;&lt; "EOF"
    487 <literal># Begin /etc/pam.d/chage
    488 
    489 # always allow root
    490 auth      sufficient  pam_rootok.so
    491 
    492 # include system auth and account settings
    493 auth      include     system-auth
    494 account   include     system-account
     475session   include     system-session
     476
     477# Always permit for authentication updates
     478password  required    pam_permit.so
    495479
    496480# End /etc/pam.d/chage</literal>
     
    499483
    500484      <sect4>
    501         <title>Other shadow utilities</title>
    502 
    503 <screen role="root"><userinput>for PROGRAM in chfn chgpasswd chsh groupadd groupdel \
    504                groupmems groupmod useradd userdel usermod
     485        <title>Other common programs</title>
     486        <!--<title>'chfn', 'chgpasswd', 'chgpasswd', 'chsh', 'groupadd', 'groupdel',
     487        'groupmems', 'groupmod', 'newusers', 'useradd', 'userdel' and
     488        'usermod'</title>-->
     489
     490<screen role="root"><userinput>for PROGRAM in chfn chgpasswd chpasswd chsh groupadd groupdel \
     491               groupmems groupmod newusers useradd userdel usermod
    505492do
    506493    install -v -m644 /etc/pam.d/chage /etc/pam.d/${PROGRAM}
Note: See TracChangeset for help on using the changeset viewer.