Arthur de Jong

Open Source / Free Software developer

summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* also check pam_password_prohibit_message in ↵Arthur de Jong2012-07-111-0/+14
| | | | | | pam_sm_authenticate() because Solaris does authentication before pam_sm_chauthtok() (thanks Ted Cheng) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1716 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement a pam_password_prohibit_message nslcd.conf ↵Arthur de Jong2012-07-0810-3/+149
| | | | | | option to deny password change introducing a NSLCD_ACTION_CONFIG_GET request thanks to Ted Cheng git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1715 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove duplicate getting of LDAP_OPT_DIAGNOSTIC_MESSAGE ↵Arthur de Jong2012-07-081-5/+0
| | | | | | (should have been part of r1639) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1714 ef36b2f9-881f-0410-afb5-c4e39611909c
* ensure that cache.py is installed (thanks Jon Severinsson)Arthur de Jong2012-07-072-2/+3
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1713 ef36b2f9-881f-0410-afb5-c4e39611909c
* get files ready for 0.8.10 release0.8.10Arthur de Jong2012-06-297-9/+60
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1707 ef36b2f9-881f-0410-afb5-c4e39611909c
* update from latest automakeArthur de Jong2012-06-291-1/+10
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1706 ef36b2f9-881f-0410-afb5-c4e39611909c
* minor documentation touch-upsArthur de Jong2012-06-171-8/+7
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1705 ef36b2f9-881f-0410-afb5-c4e39611909c
* install the default configuration file with reduced ↵Arthur de Jong2012-06-151-1/+1
| | | | | | permissions (further protection for CVE-2009-1073) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1704 ef36b2f9-881f-0410-afb5-c4e39611909c
* log successful password change in nslcd and correctly ↵Arthur de Jong2012-06-151-0/+2
| | | | | | terminate protocol on password change failure git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1703 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix problem with returning wrong error code when ↵Arthur de Jong2012-06-151-3/+7
| | | | | | changing password with wrong old password (thanks Anton Helwart) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1702 ef36b2f9-881f-0410-afb5-c4e39611909c
* reword section on bug reporting and add a reference to ↵Arthur de Jong2012-05-251-4/+8
| | | | | | the ignorecase option on the case sensitivity section git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1701 ef36b2f9-881f-0410-afb5-c4e39611909c
* include list of required libraries and do not put ↵Arthur de Jong2012-05-251-5/+6
| | | | | | information on AUTHORS file on the patch requirements git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1700 ef36b2f9-881f-0410-afb5-c4e39611909c
* get files ready for 0.8.9 release0.8.9Arthur de Jong2012-05-206-8/+101
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1695 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement extra range checking of all numeric valuesArthur de Jong2012-05-208-33/+38
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1694 ef36b2f9-881f-0410-afb5-c4e39611909c
* get rid of a few compiler warnings on FreeBSDArthur de Jong2012-05-184-8/+11
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1693 ef36b2f9-881f-0410-afb5-c4e39611909c
* provide a compatibility version of struct spwd for ↵Arthur de Jong2012-05-112-1/+29
| | | | | | systems without it git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1690 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix fallback definition of SUN_LEN() (fixes r1686)Arthur de Jong2012-05-111-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1688 ef36b2f9-881f-0410-afb5-c4e39611909c
* provide a compatibility definition of SUN_LEN() for ↵Arthur de Jong2012-05-095-4/+40
| | | | | | systems that lack it git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1686 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove duplicate debug from log messageArthur de Jong2012-05-091-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1685 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement PAM authorisation check using pam_authz_search ↵Arthur de Jong2012-05-041-3/+57
| | | | | | option git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1684 ef36b2f9-881f-0410-afb5-c4e39611909c
* ignore user-supplied DN for PAM requests and don't send ↵Arthur de Jong2012-05-041-25/+24
| | | | | | it back git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1683 ef36b2f9-881f-0410-afb5-c4e39611909c
* move expression handling to own moduleArthur de Jong2012-05-044-140/+187
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1682 ef36b2f9-881f-0410-afb5-c4e39611909c
* ensure search also works without attribute mapArthur de Jong2012-05-041-1/+3
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1681 ef36b2f9-881f-0410-afb5-c4e39611909c
* small code style improvementsArthur de Jong2012-05-041-18/+22
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1680 ef36b2f9-881f-0410-afb5-c4e39611909c
* allow the pam_authz_search option to be specified ↵Arthur de Jong2012-05-045-63/+88
| | | | | | multiple times git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1679 ef36b2f9-881f-0410-afb5-c4e39611909c
* don't try to close _SC_OPEN_MAX file descriptorArthur de Jong2012-05-041-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1678 ef36b2f9-881f-0410-afb5-c4e39611909c
* move all PAM_AUTHTOK_RECOVERY_ERR compatibility ↵Arthur de Jong2012-05-022-12/+4
| | | | | | definitions to compat/pam_compat.h git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1677 ef36b2f9-881f-0410-afb5-c4e39611909c
* documentation touch-upsArthur de Jong2012-04-291-79/+67
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1673 ef36b2f9-881f-0410-afb5-c4e39611909c
* get files ready for 0.8.8 release0.8.8Arthur de Jong2012-04-276-4/+33
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1662 ef36b2f9-881f-0410-afb5-c4e39611909c
* add a schema file that some people use for PAMArthur de Jong2012-04-272-2/+22
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1660 ef36b2f9-881f-0410-afb5-c4e39611909c
* split the functionality to read everything from the ↵Arthur de Jong2012-04-263-14/+30
| | | | | | stream into a separate function and don't assume we use non-blocking IO (fix r1637) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1659 ef36b2f9-881f-0410-afb5-c4e39611909c
* support alternative unknown user responseArthur de Jong2012-04-261-0/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1658 ef36b2f9-881f-0410-afb5-c4e39611909c
* get files ready for 0.8.7 release0.8.7Arthur de Jong2012-04-226-8/+136
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1653 ef36b2f9-881f-0410-afb5-c4e39611909c
* update files from recent automakeArthur de Jong2012-04-092-81/+134
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1649 ef36b2f9-881f-0410-afb5-c4e39611909c
* increase buffer for pam_authz_search as suggested by ↵Arthur de Jong2012-03-231-2/+2
| | | | | | Chris J Arges git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1643 ef36b2f9-881f-0410-afb5-c4e39611909c
* support the upper and lower functions in attribute ↵Arthur de Jong2012-03-161-2/+17
| | | | | | mapping expressions git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1642 ef36b2f9-881f-0410-afb5-c4e39611909c
* refactor some of the attribute mapping code to introduce ↵Arthur de Jong2012-03-163-39/+118
| | | | | | a mapping instance that does the hard work and support the lower() and upper() attribute mapping functions git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1641 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement a getpeercred() functionArthur de Jong2012-03-161-2/+7
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1640 ef36b2f9-881f-0410-afb5-c4e39611909c
* always try to log the ldap error, the diagnostic message ↵Arthur de Jong2012-03-161-42/+68
| | | | | | and errno if available in a consistent format git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1639 ef36b2f9-881f-0410-afb5-c4e39611909c
* put both tio_skip() and tio_close() within if (fixes ↵Arthur de Jong2012-03-161-1/+5
| | | | | | r1637) and clarify documentation of one part of the code git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1638 ef36b2f9-881f-0410-afb5-c4e39611909c
* read any remaining available data from the stream when ↵Arthur de Jong2012-03-143-6/+39
| | | | | | closing the connection in a normal way to prevent Broken pipe messages in nslcd git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1637 ef36b2f9-881f-0410-afb5-c4e39611909c
* ensure that we don't try to read more than SSIZE_MAX bytesArthur de Jong2012-03-141-2/+9
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1636 ef36b2f9-881f-0410-afb5-c4e39611909c
* document the fact that each thread opens it's own ↵Arthur de Jong2012-03-132-0/+3
| | | | | | connection (patch by Chris Hiestand) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1635 ef36b2f9-881f-0410-afb5-c4e39611909c
* make whether or not to do case-sensitive filtering ↵Arthur de Jong2012-03-1312-11/+42
| | | | | | configurable (patch by Matthew L. Dailey) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1634 ef36b2f9-881f-0410-afb5-c4e39611909c
* update from latest automakeArthur de Jong2012-03-134-108/+89
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1633 ef36b2f9-881f-0410-afb5-c4e39611909c
* when doing DNS queries for SRV records recognise default ↵Arthur de Jong2012-03-101-3/+14
| | | | | | ldap and ldaps ports git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1632 ef36b2f9-881f-0410-afb5-c4e39611909c
* add missing include for _POSIX_HOST_NAME_MAX (thanks Mel ↵Arthur de Jong2012-03-101-1/+2
| | | | | | Flynn) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1631 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix log message for invalid pam_authz_search as reported ↵Arthur de Jong2012-03-101-1/+1
| | | | | | by Matt Rae git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1628 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove extra newline from log messageArthur de Jong2012-03-051-4/+4
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1627 ef36b2f9-881f-0410-afb5-c4e39611909c
* provide more detailed logging information for ↵Arthur de Jong2012-03-052-3/+19
| | | | | | ldap_start_tls_s() failures (based on a patch by Mel Flynn) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1626 ef36b2f9-881f-0410-afb5-c4e39611909c