[23850] in Source-Commits

home help back first fref pref prev next nref lref last post

/svn/athena r23459 - in trunk/debathena/config/linerva-pam-config: debian files/etc/pam.d

daemon@ATHENA.MIT.EDU (broder@MIT.EDU)
Wed Feb 11 13:42:15 2009

Date: Wed, 11 Feb 2009 13:42:07 -0500 (EST)
From: broder@MIT.EDU
Message-Id: <200902111842.NAA09943@drugstore.mit.edu>
To: source-commits@MIT.EDU
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Author: broder
Date: 2009-02-11 13:42:06 -0500 (Wed, 11 Feb 2009)
New Revision: 23459

Modified:
   trunk/debathena/config/linerva-pam-config/debian/changelog
   trunk/debathena/config/linerva-pam-config/files/etc/pam.d/common-auth.debathena.debathena
Log:
In linerva-pam-config:
  * Include change to common-auth to allow logging in as root even if the
    KDC can't be reached


Modified: trunk/debathena/config/linerva-pam-config/debian/changelog
===================================================================
--- trunk/debathena/config/linerva-pam-config/debian/changelog	2009-02-08 00:04:16 UTC (rev 23458)
+++ trunk/debathena/config/linerva-pam-config/debian/changelog	2009-02-11 18:42:06 UTC (rev 23459)
@@ -1,3 +1,10 @@
+debathena-linerva-pam-config (1.4) unstable; urgency=low
+
+  * Include change to common-auth to allow logging in as root even if the
+    KDC can't be reached
+
+ -- Evan Broder <broder@mit.edu>  Wed, 11 Feb 2009 13:41:57 -0500
+
 debathena-linerva-pam-config (1.3) unstable; urgency=low
 
   * Remove DEB_AUTO_UPDATE_DEBIAN_CONTROL.

Modified: trunk/debathena/config/linerva-pam-config/files/etc/pam.d/common-auth.debathena.debathena
===================================================================
--- trunk/debathena/config/linerva-pam-config/files/etc/pam.d/common-auth.debathena.debathena	2009-02-08 00:04:16 UTC (rev 23458)
+++ trunk/debathena/config/linerva-pam-config/files/etc/pam.d/common-auth.debathena.debathena	2009-02-11 18:42:06 UTC (rev 23459)
@@ -1,3 +1,6 @@
 #auth        sufficient  pam_unix.so nullok_secure debug
 #auth        required    pam_krb5.so forwardable use_first_pass debug
-auth        required    pam_krb5.so forwardable
+auth         [default=1 success=ignore]          pam_succeed_if.so uid eq 0
+auth         sufficient pam_unix.so              nullok_secure
+auth         [default=1 success=ignore]          pam_succeed_if.so uid > 0
+auth    required        pam_krb5.so              forwardable
home help back first fref pref prev next nref lref last post