./security/pam-yubico, Pluggable Authentication Module for Yubikey validation

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 2.27nb7, Package name: pam-yubico-2.27nb7, Maintainer: pettai

The Yubico PAM module provides an easy way to integrate the Yubikey
into your existing user authentication infrastructure.


Required to run:
[security/libyubikey] [security/ykpers] [security/ykclient]

Required to build:
[pkgtools/cwrappers]

Master sites:

Filesize: 79.467 KB

Version history: (Expand)


CVS history: (Expand)


   2023-11-08 14:21:43 by Thomas Klausner | Files touched by this commit (2377)
Log message:
*: recursive bump for icu 74.1
   2023-10-25 00:11:51 by Thomas Klausner | Files touched by this commit (2298)
Log message:
*: bump for openssl 3
   2023-04-19 10:12:01 by Adam Ciarcinski | Files touched by this commit (2359) | Package updated
Log message:
revbump after textproc/icu update
   2023-03-12 15:15:50 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
pam-yubico: update to 2.27.

* Version 2.27 (released 2021-04-09)

** Add always_prompt configuration option.

** Add client certificate support for ldap.

** Add starttls support for ldap.

** Add ldap_bind_as_user support.

** Parsing, cleanliness and string fixes.

** Documentation and spelling fixes.

* Version 2.26 (released 2018-04-20)

** Make sure to close authfile (CVE-2018-9275).

** Fix compiler warnings.

** Open file descriptors with O_CLOEXEC.

** Use mkostemp() instead of mkstemp().

* Version 2.25 (released 2018-03-27)

** Documentation updates.

** Only do OTP validation if it's a token that might be valid.

** Return early in case user has no valid tokens.

** Ldap, compare values only with yubi_attr attributes.

** Add nullok parameter.

* Version 2.24 (released 2016-11-25)

** Debug mode changed, allows file output with debug_file.

** Fixup returning user-unknown correctly.

* Version 2.23 (released 2016-06-15)

** Fix an issue where a failure to set permissions was wrongly outputted.

* Version 2.22 (released 2016-05-23)

** Documentation improvements.

** Retain ownership and permission of challenge files (issue #92).

** Make dependency on yubico-c-client 2.15 clearer.

* Version 2.21 (released 2016-02-19)

** Add proxy support for yubico-c-client.

** Check that conv is set before trying to use it
fixes a crash bug with the osx loginwindow.

** Add building of a mac installer.

* Version 2.20 (released 2015-09-22)

** Add cainfo option to allow usage of a cabundle instead of path.

** Support comments in authfile.

** For challenge response with system-wide directory, write the files as root
instead of the user.

* Version 2.19 (released 2015-03-23)

** Add new ldap functionality
ldap_bind_user and ldap_bind_password for authenticated binds
ldap_filter for using subtree search and a filter
ldap_cacertfile to use a specific cacert for ldaps

* Version 2.18 (released 2015-02-12)

** Fix a memory leak of the pam response data.

** Add more tests.

** Add version flag to ykpamcfg.
   2022-10-26 12:32:08 by Thomas Klausner | Files touched by this commit (687)
Log message:
*: bump PKGREVISION for libunistring shlib major bump
   2021-12-08 17:07:18 by Adam Ciarcinski | Files touched by this commit (3063)
Log message:
revbump for icu and libffi
   2021-10-26 13:18:07 by Nia Alarie | Files touched by this commit (605)
Log message:
security: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes

Unfetchable distfiles (fetched conditionally?):
./security/cyrus-sasl/distinfo \ 
cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
   2021-10-07 16:54:50 by Nia Alarie | Files touched by this commit (606)
Log message:
security: Remove SHA1 hashes for distfiles