Changelog
shadow (1:4.1.1-5ubuntu1) jaunty; urgency=low
* Merge from debian unstable, remaining changes:
- debian/login.pam: Enable SELinux support in login.pam.
shadow (1:4.1.1-5) unstable; urgency=low
* The "Bergues" release.
* debian/login.pam: restore the Etch behavior of pam_securetty.so in case of
unknown user. Closes: #443322, #495831
shadow (1:4.1.1-4) unstable; urgency=low
* The "Rocamadour" release.
* debian/patches/302_remove_non_translated_polish_manpages,
debian/patches/series: Remove the (untranslated) su.1 and login.1 polish
translation. Closes: #491460
* debian/patches/506_relaxed_usernames: Document that the naming policy is
also used for the group names policy. Differentiate the Debian
constraints in a separate paragraph. Added documentation of the username
length restriction. Closes: #493230
* debian/patches/507_32char_grnames.dpatch: Update the documentation of the
group length restriction. Closes: #493230
* debian/login.pam: Replace the "multiple" option of pam_selinux by
"select_context". This requires PAM 1.0.1, but is commented.
Closes: #493181
* debian/patches/494_passwd_lock-no_account_lock: Fix typo (missing
parenthesis). Thanks to Moray Allan.
shadow (1:4.1.1-3) unstable; urgency=low
* The "Morbier" release.
* debian/patches/302_vim_selinux_support: Add SE Linux support to vipw/vigr.
Thanks to Russell Coker. Closes: #491907
* debian/patches/494_passwd_lock-no_account_lock: Restore the previous
behavior of passwd -l (which changed in #389183): only lock the user's
password, not the user's account. Also explicitly document the
differences. This restores a behavior common with the previous versions of
passwd and with other implementations. Closes: #492307
* debian/patches/494_passwd_lock-no_account_lock: Add a reference to
usermod(8) in passwd(1). Closes: #412234
* debian/login.pam: Enforce a fail delay to avoid login brute-force.
Closes: #443322
* debian/login.pam: Indicate why the pam_securetty module is used as a
requisite module and mentions the possible drawbacks. Closes: #482352
* debian/login.defs: Do not mention the libpam-umask package (the module is
now provided by libpam-modules). Closes: #492410
* debian/patches/200_Czech_binary_translation: Updated Czech translation.
Thanks to Miroslav Kure. Closes: #482823
* debian/securetty.linux: Add the PA-RISC mux ports (ttyB0, ttyB1).
Closes: #488515
shadow (1:4.1.1-2) unstable; urgency=low
* The "Brie de Meaux" and "Brie de Melun" double cheese release.
* Backported patches from upstream
- debian/patches/300_SHA_crypt_method:
This fixes bugs in the SHA encryption method that force the salt to have
8 bytes (instead of a random length between 8 and 16 bytes), and force
the number of SHA rounds to be equal to the lowest limit (at least 1000
SHA rounds).
- debian/patches/301_manpages_missing_options:
This add the missing documentation of options in useradd, groupadd, and
newusers.
* Tag patches already applied upstream
- debian/patches/487_passwd_chauthtok_failed_message
- debian/patches/406_vipw_resume_properly
- debian/patches/008_su_get_PAM_username
- debian/patches/491_configure.in_friendly_selinux_detection
- debian/patches/434_login_stop_checking_args_after--
- debian/patches/414_remove-unwise-advices
* Added description of new variables in /etc/login.defs:
- SYS_UID_MIN, SYS_UID_MAX, SYS_GID_MIN, SYS_GID_MAX
- ENCRYPT_METHOD
- SHA_CRYPT_MIN_ROUNDS, SHA_CRYPT_MAX_ROUNDS
* New Debian Policy:
- debian/control: Bump Standards-Version to 3.8.0 (no changes needed).
- debian/README.source: Document how to patch the upstream source, how to
use quilt, how to package a new upstream and how to use the testsuite.
* debian/patches/505_useradd_recommend_adduser: Fix typo: userdel is used to
remove an user, not to add one. Closes: #475795
-- Scott James Remnant <email address hidden> Wed, 05 Nov 2008 07:26:43 +0000