Accepted libpam-krb5 1.2.0-3 (source i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 8 Mar 2006 16:58:13 -0800
Source: libpam-krb5
Binary: libpam-krb5
Architecture: source i386
Version: 1.2.0-3
Distribution: unstable
Urgency: low
Maintainer: Sam Hartman <hartmans@debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description:
libpam-krb5 - PAM module for MIT Kerberos
Closes: 350556 354133
Changes:
libpam-krb5 (1.2.0-3) unstable; urgency=low
.
* Only call krb5_kuserok when the account to which we're authenticating
is a local account to allow use of pam_krb5 for application
authentication of users without local accounts. (Closes: #354133)
* Restructure the code to do user validation after obtaining their
initial tickets. This eliminates a lot of confusing special cases and
deferred checking and makes it easier to audit the code.
* Don't create the ticket cache until after successful authentication.
Otherwise, we leave files behind in /tmp.
* Document what principals libpam_krb5.so looks for in the system keytab
to do ticket validation. (Closes: #350556)
Files:
098380530754ddc51baa7dd90577a473 657 net optional libpam-krb5_1.2.0-3.dsc
df30cafbd5bd9b245cee29f289a19676 18543 net optional libpam-krb5_1.2.0-3.diff.gz
6ce8e9846cfac220e428504987ce7c39 33172 net optional libpam-krb5_1.2.0-3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
iD8DBQFED34y+YXjQAr8dHYRArchAKCqL9Y6gW9YFopJaRvH9Aj7WN9C2wCfVb9i
8R6bVvYF4aVVhIo9mq6co70=
=podE
-----END PGP SIGNATURE-----
Accepted:
libpam-krb5_1.2.0-3.diff.gz
to pool/main/libp/libpam-krb5/libpam-krb5_1.2.0-3.diff.gz
libpam-krb5_1.2.0-3.dsc
to pool/main/libp/libpam-krb5/libpam-krb5_1.2.0-3.dsc
libpam-krb5_1.2.0-3_i386.deb
to pool/main/libp/libpam-krb5/libpam-krb5_1.2.0-3_i386.deb
Reply to: