Bug#161867: linuxconf: 2 violations of Debian PAM mini-policy
Package: linuxconf
Version: 1.26r4-2
Severity: normal
Hi,
according to /usr/share/doc/libpam0g/Debian-PAM-MiniPolicy.gz
/etc/pam.d/linuxconf-pair is wrong in 2 respects:
1. it uses a full path to the PAM module (/lib/security/pam_pwdb.so
instead of pam_pwdb.so):
>The file should _not_ reference the full path of the modules. It only needs
>to reference the basename (eg. "pam_unix.so"). This will ensure that the
>program continues to work even if the module location changes, since
>libpam itself will resolve the location.
2. it uses pam_pwdb.so instead of pam_unix.so:
>Under no circumstances should any program in Debian use the pam_pwdb.so
>module by default. Instead the pam_unix.so module should be used. Most
>programs with RedHat support/default files will reference pam_pwdb.so in
>their example files. Do not use this. There are several problems with
>regard to pam_pwdb.so:
>...
-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux jophur 2.4.18-k7 #1 Sun Apr 14 13:19:11 EST 2002 i686
Locale: LANG=fr_FR@euro, LC_CTYPE=fr_FR@euro
Versions of packages linuxconf depends on:
ii libc6 2.2.5-14.3 GNU C Library: Shared libraries an
ii libdb3 3.2.9-17 Berkeley v3 Database Libraries [ru
ii libgd1 1.8.4-20 GD Graphics Library
ii libncurses5 5.2.20020112a-8 Shared libraries for terminal hand
ii libpam0g 0.72-35 Pluggable Authentication Modules l
ii libpng2 1.0.12-6 PNG library - runtime
ii libstdc++2.10-glibc2.2 1:2.95.4-11 The GNU stdc++ library
ii libxml1 1:1.8.17-2 GNOME XML library
ii logrotate 3.6.5-1 Log rotation utility
ii netbase 4.07 Basic TCP/IP networking system
ii python2.1 2.1.3-10 An interactive object-oriented scr
ii sysvinit 2.84-3 System-V like init.
ii xlibs 4.2.1-0pre1v1 X Window System client libraries
ii zlib1g 1:1.1.4-4 compression library - runtime
-- no debconf information
Reply to: