diff options
author | Dave Olson <olson@cumulusnetworks.com> | 2017-06-16 15:49:56 -0700 |
---|---|---|
committer | Dave Olson <olson@cumulusnetworks.com> | 2017-06-16 16:18:07 -0700 |
commit | 3a47df99b207d85469d0a3126aacf491ba61c1d4 (patch) | |
tree | b32ecb55edf4e2712bb3f0877a875b4477acbb4b /debian | |
parent | a11bbaeb6b0635dd852fb511a28f67da80327fef (diff) | |
download | libpam-radius-auth-3a47df99b207d85469d0a3126aacf491ba61c1d4.tar.gz libpam-radius-auth-3a47df99b207d85469d0a3126aacf491ba61c1d4.zip |
Added debian directory from jessie 1.3.16, with changelog updates
Cleaned up to use simpler rules file as part of that import.
Also newer compat level, etc.
Diffstat (limited to 'debian')
-rw-r--r-- | debian/README.Debian | 5 | ||||
-rw-r--r-- | debian/changelog | 222 | ||||
-rw-r--r-- | debian/compat | 1 | ||||
-rw-r--r-- | debian/control | 16 | ||||
-rw-r--r-- | debian/copyright | 54 | ||||
-rw-r--r-- | debian/libpam-radius-auth.postinst | 6 | ||||
-rw-r--r-- | debian/libpam-radius-auth.prerm | 9 | ||||
-rw-r--r-- | debian/pam_example | 64 | ||||
-rw-r--r-- | debian/radius | 14 | ||||
-rwxr-xr-x | debian/rules | 22 | ||||
-rw-r--r-- | debian/source/format | 1 |
11 files changed, 414 insertions, 0 deletions
diff --git a/debian/README.Debian b/debian/README.Debian new file mode 100644 index 0000000..d0bf25b --- /dev/null +++ b/debian/README.Debian @@ -0,0 +1,5 @@ +NOTE: The Debian version of libpam-radius-auth uses as default configuration +file /etc/pam_radius_auth.conf. +Upstream has a default set to /etc/raddb/server that does not fit in Debian. +Be aware that the documentation references has not been changed and they +reflect upstream setups. diff --git a/debian/changelog b/debian/changelog new file mode 100644 index 0000000..978af83 --- /dev/null +++ b/debian/changelog @@ -0,0 +1,222 @@ +libpam-radius-auth (1.4.0) unstable; urgency=low + + * Many changes. See USAGE and git log for details. + + -- Alan T. DeKok <aland@freeradius.org> Wed, 17 Dec 2014 17:00:59 -0500 + +libpam-radius-auth (1.3.17) unstable; urgency=low + + * Allow any number of retries, instead of only up to 3. + * Add ruser option, to authenticate as PAM_RUSER instead of PAM_USER, + to allow applications such as 'su' to authenticate as the real user. + Patch from David Mitchell. + * Add 'localifdown' option. + + -- Arran Cudbard-Bell <a.cudbardb@freeradius.org> Wed, 24 Oct 2012 08:18:01 +0100 + +commit 0c3af1fb2a1ae1befb7a8e366406ded63cb9fa59 + + Note 1.4.0 + +libpam-radius-auth (1.3.16-4.4) unstable; urgency=low + + * Non-maintainer upload to fix pending l10n issues. + * Remove debconf stuff that deals with a prehistoric transition. + Closes: #414926, #482458, #483032, #483081 + * [Lintian] Set debhelper compatibility level in debian/compat + * [Lintian] No longer ignore errors in "make clean" + * [Lintian] Remove debian/conffiles that only contains a file in /etc + which is anyway automatically added + + -- Christian Perrier <bubulle@debian.org> Thu, 22 May 2008 19:14:50 +0200 + +libpam-radius-auth (1.3.16-4.3) unstable; urgency=low + + * NUM with maintainers consent + * Add German debconf translation. (Closes: #410536) + + -- Helge Kreutzmann <debian@helgefjell.de> Mon, 12 Feb 2007 18:01:57 +0100 + +libpam-radius-auth (1.3.16-4.2) unstable; urgency=low + + * NMU + * Add Spanish debconf translation. (Closes: #405445) + + -- Javier Ruano <Javier.ruano@estudiante.uam.es> Thu, 4 Jan 2007 14:08:51 +0100 + +libpam-radius-auth (1.3.16-4.1) unstable; urgency=low + + * Non-maintainer upload. + * Remove bashisms in debian/rules. (Closes: #379498) + + -- Christine Spang <spang@mit.edu> Wed, 23 Aug 2006 07:14:29 -0400 + +libpam-radius-auth (1.3.16-4) unstable; urgency=low + + * Add alternate Depends to unblock debconf-2.0 transition. + (Closes: #332003) + + * Add Vietnamese debconf translation. + (Closes: #312442) + + * Add Czech debconf translation. + (Closes: #316889) + + * Add Swedish debconf translation. + (Closes: #333145) + + * Bump standard version. No changes. + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Sat, 15 Oct 2005 18:13:44 +0200 + +libpam-radius-auth (1.3.16-3) unstable; urgency=high + + * [SECURITY] Fix Denial of service: + - Add patch 002.CAN2005-0108.diff. (CAN2005-0108) + + * Add french debconf translation. (Closes: #268027) + + * Add dutch debconf translation. (Closes: #274897) + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Wed, 19 Jan 2005 10:42:18 +0100 + +libpam-radius-auth (1.3.16-2) unstable; urgency=high + + * Acknowledge NMU. Thanks Michael for your help! (Closes: #266924) + * Remove spurious "echo foo1" from debian/config ;) + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Mon, 23 Aug 2004 07:46:17 +0200 + +libpam-radius-auth (1.3.16-1.2) unstable; urgency=high + + * NMU: SECURITY: clarify logic in preinst + + -- Michael Stone <mstone@debian.org> Sat, 21 Aug 2004 11:26:34 -0400 + +libpam-radius-auth (1.3.16-1.1) unstable; urgency=high + + * NMU: SECURITY: fix incorrect permissions on /etc/pam_radius_auth.conf + + -- Michael Stone <mstone@debian.org> Sat, 21 Aug 2004 09:50:17 -0400 + +libpam-radius-auth (1.3.16-1) unstable; urgency=low + + * New upstream release + * New standard version: 3.6.1 + * Removed patches that were accepted by upstream + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Wed, 29 Oct 2003 07:12:50 +0100 + +libpam-radius-auth (1.3.15-8) unstable; urgency=low + + * New standard version 3.5.10 + * fixed clean target in debian/rules + * fixed a call to the linker to avoid unresolved symbols on some archs + (Thanks to Jochen Friedrich <jochen@scram.de>) + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Sun, 18 May 2003 10:05:07 +0200 + +libpam-radius-auth (1.3.15-7) unstable; urgency=low + + * The "fixed in NMU" upload fix (Closes: #188314) + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Tue, 15 Apr 2003 07:05:44 +0200 + +libpam-radius-auth (1.3.15-6) unstable; urgency=low + + * Bumped standard version to: 3.5.9 + * username (253 bytes) and password (128 bytes) length + are now RFC2138 compliant (Closes: #188314) + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Thu, 10 Apr 2003 22:13:50 +0200 + +libpam-radius-auth (1.3.15-5) unstable; urgency=low + + * Reincluded the original INSTALL + * Included index.debian.html to point to the correct files. + * Added README.Debian with notes about configfile + location (Closes: #180576) + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Mon, 10 Mar 2003 18:36:33 +0100 + +libpam-radius-auth (1.3.15-4) unstable; urgency=low + + * removed dh_testroot from debian/rules (build section) + to permit normal users to compile the package again + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Thu, 16 Jan 2003 19:41:06 +0100 + +libpam-radius-auth (1.3.15-3) unstable; urgency=low + + * fixed a compilation warning for gcc3.2 + * lintian and linda cleanup + * removed symlink in /usr/doc + * added two examples in the doc section + * updated to Standards-Version: 3.5.8 + * new debian/rules to use debhelper + * moved *.diff in debian/patches + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Thu, 16 Jan 2003 17:11:29 +0100 + +libpam-radius-auth (1.3.15-2) unstable; urgency=low + + * New maintainer upload, closes: #151254 + * s/-Bshareable/-shared/g, closes: #156962 + * made Suggests: point to radius-server, closes: #153987 + + -- Fabio M. Di Nitto <fabbione@fabbione.net> Thu, 24 Oct 2002 22:35:23 +0200 + +libpam-radius-auth (1.3.15-1) unstable; urgency=high (for big endians) + + * New upstream release. + * It now compiles correctly for big endian architectures, closes: #149323 + * Also it compiles correctly for 64-bit architectures. + * Removed misleading note in conffile, closes: #144502 + + -- Piotr Roszatycki <dexter@debian.org> Tue, 11 Jun 2002 12:38:40 +0200 + +libpam-radius-auth (1.3.14-1) unstable; urgency=low + + * New upstream release, closes: #108189 + + -- Piotr Roszatycki <dexter@debian.org> Mon, 27 Aug 2001 19:44:08 +0200 + +libpam-radius-auth (1.3.13-1) unstable; urgency=low + + * New upstream release + * Lintian clean + + -- Piotr Roszatycki <dexter@debian.org> Tue, 10 Jul 2001 16:10:09 +0200 + +libpam-radius-auth (1.3.11-3) unstable; urgency=low + + * Removed yada from Debian source, closes: #89268 + + -- Piotr Roszatycki <dexter@debian.org> Tue, 13 Mar 2001 13:26:32 +0100 + +libpam-radius-auth (1.3.11-2) unstable; urgency=low + + * New yada and standards. + * Updates Build-Depends, closes: #84941 + + -- Piotr Roszatycki <dexter@debian.org> Thu, 15 Feb 2001 18:47:23 +0000 + +libpam-radius-auth (1.3.11-1) unstable; urgency=low + + * New upstream release + + -- Piotr Roszatycki <dexter@debian.org> Wed, 19 Jul 2000 18:43:52 +0200 + +libpam-radius-auth (1.3.10-2) unstable; urgency=medium + + * New upstream source from CVS server. + * This version works well with ppp. + + -- Piotr Roszatycki <dexter@debian.org> Tue, 18 Jul 2000 17:29:06 +0200 + +libpam-radius-auth (1.3.10-1) unstable; urgency=low + + * UNRELEASED + * Initial Debian version. + + -- Piotr Roszatycki <dexter@debian.org> Sat, 15 Jul 2000 15:30:45 +0200 diff --git a/debian/compat b/debian/compat new file mode 100644 index 0000000..ec63514 --- /dev/null +++ b/debian/compat @@ -0,0 +1 @@ +9 diff --git a/debian/control b/debian/control new file mode 100644 index 0000000..b8090ae --- /dev/null +++ b/debian/control @@ -0,0 +1,16 @@ +Source: libpam-radius-auth +Maintainer: Fabio M. Di Nitto <fabbione@fabbione.net> +Section: libs +Priority: extra +Standards-Version: 3.9.6 +Build-Depends: libpam0g-dev | libpam-dev, debhelper (>= 4.1.16) + +Package: libpam-radius-auth +Architecture: any +Depends: ${shlibs:Depends} +Suggests: radius-server +Description: The PAM RADIUS authentication module + This is the PAM to RADIUS authentication module. It allows any PAM-capable + machine to become a RADIUS client for authentication and accounting + requests. You will, however, need to supply your own RADIUS server to + perform the actual authentication diff --git a/debian/copyright b/debian/copyright new file mode 100644 index 0000000..8d52194 --- /dev/null +++ b/debian/copyright @@ -0,0 +1,54 @@ +This package was debianized by Fabio M. Di Nitto <fabbione@fabbione.net> on +Thu, 31 Oct 2002 09:56:49 +0100 + +It was downloaded from ftp://ftp.freeradius.org/pub/radius/ + +Copyright (extracted from pam_radius_auth.c): + +/* + * This module is a merger of an old version of pam_radius.c, and + * code which went into mod_auth_radius.c, with further modifications + * by Alan DeKok of CRYPTOCard Inc.. + * + * The original pam_radius.c code is copyright (c) Cristian Gafton, 1996, + * <gafton@redhat.com> + * + * The additional code is copyright (c) CRYPTOCard Inc, 1998. + * + * All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * 1. Redistributions of source code must retain the above copyright + * notice, and the entire permission notice in its entirety, + * including the disclaimer of warranties. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in the + * documentation and/or other materials provided with the distribution. + * 3. The name of the author may not be used to endorse or promote + * products derived from this software without specific prior + * written permission. + * + * ALTERNATIVELY, this product may be distributed under the terms of + * the GNU Public License, in which case the provisions of the GPL are + * required INSTEAD OF the above restrictions. (This clause is + * necessary due to a potential bad interaction between the GPL and + * the restrictions contained in a BSD-style copyright.) + * + * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED + * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES + * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE + * DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, + * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES + * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR + * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, + * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) + * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED + * OF THE POSSIBILITY OF SUCH DAMAGE. + * + */ + +On Debian GNU/Linux systems, the complete text of the GNU General +Public License can be found in /usr/share/common-licenses/GPL file. diff --git a/debian/libpam-radius-auth.postinst b/debian/libpam-radius-auth.postinst new file mode 100644 index 0000000..4b0d38e --- /dev/null +++ b/debian/libpam-radius-auth.postinst @@ -0,0 +1,6 @@ +#! /bin/sh + +set -e + +# needed for install, upgrade, remove, and purge, including aborts +pam-auth-update --package diff --git a/debian/libpam-radius-auth.prerm b/debian/libpam-radius-auth.prerm new file mode 100644 index 0000000..19f03ae --- /dev/null +++ b/debian/libpam-radius-auth.prerm @@ -0,0 +1,9 @@ +#!/bin/sh + +set -e + +if [ "$1" = remove ]; then + pam-auth-update --package --remove radius +fi + +#DEBHELPER# diff --git a/debian/pam_example b/debian/pam_example new file mode 100644 index 0000000..1ab27e8 --- /dev/null +++ b/debian/pam_example @@ -0,0 +1,64 @@ +This is a simple and safe example on how to enable radius +authentication to the console login on a Debian system and +you are too lazy to read the USAGE documentation. + +Edit /etc/pam.d/login + +The default looks like: + +[SNIP] + +# Disallows other than root logins when /etc/nologin exists +# (Replaces the `NOLOGINS_FILE' option from login.defs) +auth requisite pam_nologin.so + +# This module parses /etc/environment (the standard for setting +# environ vars) and also allows you to use an extended config +# file /etc/security/pam_env.conf. +# (Replaces the `ENVIRON_FILE' setting from login.defs) +auth required pam_env.so + +# Standard Un*x authentication. The "nullok" line allows passwordless +# accounts. +@include common-auth + +[SNIP] + + +Insert the following line: + +auth sufficient pam_radius_auth.so + +AFTER + +auth required pam_env.so + +and BEFORE + +# Standard Un*x authentication. The "nullok" line allows passwordless +# accounts. +@include common-auth + +so that it will looks like: + +[SNIP] + +# This module parses /etc/environment (the standard for setting +# environ vars) and also allows you to use an extended config +# file /etc/security/pam_env.conf. +# (Replaces the `ENVIRON_FILE' setting from login.defs) +auth required pam_env.so + +##### RADIUS ##### +auth sufficient pam_radius_auth.so + +# Standard Un*x authentication. The "nullok" line allows passwordless +# accounts. +@include common-auth + +[SNIP] + +Try now to login in one of the consoles using the radius password. +If it fails the system will prompt again for a password. This time +provide the local one. + diff --git a/debian/radius b/debian/radius new file mode 100644 index 0000000..5389ed1 --- /dev/null +++ b/debian/radius @@ -0,0 +1,14 @@ +Name: RADIUS authentication +Default: yes +Priority: 257 +Auth-Type: Primary +Auth: + [authinfo_unavail=ignore success=end default=ignore] pam_radius_auth.so + +Account-Type: Primary +Account: + [authinfo_unavail=ignore success=end perm_denied=bad default=ignore] pam_radius_auth.so + +Session-Type: Additional +Session: + [authinfo_unavail=ignore success=ok default=ignore] pam_radius_auth.so diff --git a/debian/rules b/debian/rules new file mode 100755 index 0000000..4e68084 --- /dev/null +++ b/debian/rules @@ -0,0 +1,22 @@ +#!/usr/bin/make -f + +CFLAGS = $(shell dpkg-buildflags --get CFLAGS) +# -Wnostrict-aliasing for md5.c +ifneq (,$(findstring noopt,$(DEB_BUILD_OPTIONS))) + CFLAGS += -O0 +else + CFLAGS += -O2 +endif +CFLAGS+=-g3 -Wno-strict-aliasing -DCONF_FILE=\"/etc/pam_radius_auth.conf\" + +ifeq ($(DEB_HOST_GNU_CPU),(hppa|m68k|mips|powerpc|s390|sparc|sparc64|sheb)) + CFLAGS += -DHIGHFIRST +endif +export CFLAGS + +%: + dh $@ + +override_dh_auto_configure: + ./configure + diff --git a/debian/source/format b/debian/source/format new file mode 100644 index 0000000..af745b3 --- /dev/null +++ b/debian/source/format @@ -0,0 +1 @@ +3.0 (git) |