| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-10-08 | Fix Debian build failing on AX_CHECK_COMPILE_FLAG | Daniel Gollub | |
| 2014-10-02 | C compiler hardening options | Pawel Krawczyk | |
| Add checks for C compiler hardening options (stack protector etc) and use them if available. | |||
| 2014-10-02 | Fix always true condition | Pawel Krawczyk | |
| The condition was checking tac_prompt which is a static array, so it will always return some address. Now checking the value of the first element of the array, which can be zero on non-zero. | |||
| 2014-09-18 | Merge pull request #14 from gollub/fix_debian_packaging | Paweł Krawczyk | |
| Fix Debian packaging due to README markdown rename | |||
| 2014-09-18 | Merge pull request #13 from gollub/shared_libtac | Paweł Krawczyk | |
| [RFC] Build and install libtac as shared library | |||
| 2014-09-18 | Merge pull request #15 from grwlf/master | Paweł Krawczyk | |
| allow authorization without protocol defined | |||
| 2014-09-18 | allow authorization without protocol defined | Sergey Mironov | |
| Protocol is only required for certain subset of services, mainly for ppp. We allow authorization with empty protocol if user wants to use other service names, like 'ssh' From the http://tools.ietf.org/html/draft-grant-tacacs-02 page 30: The protocol attribute is intended for use with PPP. When service equals "ppp" and protocol equals "lcp", the message describes the PPP link layer service. For other values of protocol, this describes a PPP NCP (network layer service). A single PPP session can support multiple NCPs | |||
| 2014-09-05 | Fix include directory in pkg-config file | Daniel Gollub | |
| All headers are stored in the libtac sub-directory. | |||
| 2014-08-28 | Introduce pkg-config file for libtac | Daniel Gollub | |
| 2014-08-28 | debian: Introduce shahred library packaging libtac | Daniel Gollub | |
| 2014-08-28 | Fix Debian packaging due to README markdown rename | Daniel Gollub | |
| Regression introduced with ea841487 | |||
| 2014-08-27 | Build and install libtac as shared library | Daniel Gollub | |
| Additional install public headers for libtac shared library. SO-Versioning is initially set to 0:0:0. | |||
| 2014-04-22 | Added macro dir and fix readme issue | Jeroen Nijhof | |
| 2014-04-22 | Added install instruction | jeroennijhof | |
| 2014-04-22 | Markup extention | Jeroen Nijhof | |
| 2014-04-22 | Use markup for README | Jeroen Nijhof | |
| 2014-04-22 | Merge pull request #8 from walterdejong/master | jeroennijhof | |
| Thanks guys! But the pam_sm_authenticate() function was indeed looping over the tac_plus servers for authentication. The problem is when a tac_plus server is not working correctly you will be denied during authentication but I agree we need to find a better solution for that issue. | |||
| 2014-04-18 | Merge pull request #10 from jeroennijhof/hotfix_9 | jeroennijhof | |
| Fix issue with automake 1.9 | |||
| 2014-04-16 | Fix issue with automake 1.9 | Jeroen Nijhof | |
| 2014-02-19 | cleanup redundant code | Walter de Jong | |
| 2014-02-19 | bugfix: do not try other server when AUTHEN_STATUS_FAIL | Walter de Jong | |
| The loop would continue to try other servers even when a server has indicated that the authentication failed (wrong password!!) Also, try talk the protocol as much as possible. The PAM status is AUTHINFO_UNAVAIL unless a tacacs server has responded with PASS (-> PAM status SUCCESS) or FAIL (-> PAM status ERR) | |||
| 2014-02-19 | delete extraneous whitespace | Walter de Jong | |
| 2014-02-19 | Merge branch 'master' of github.com:walterdejong/pam_tacplus | Walter de Jong | |
| 2014-02-19 | run libtoolize too | Walter de Jong | |
| 2014-02-17 | Added postinst and prerm for pam-auth-update | Jeroen Nijhof | |
| 2014-01-31 | Added automake subdir-objects option1.3.8 | Jeroen Nijhof | |
| 2013-12-20 | Fixed mismatch between compat and debhelper version | Jeroen Nijhof | |
| 2013-12-17 | Release version 1.3.8 | Jeroen Nijhof | |
| 2013-07-01 | A lot of cleanups and improvements by Walter de Jong | Jeroen Nijhof | |
| 2013-06-06 | run libtoolize too | Walter de Jong | |
| 2013-04-28 | active_server can not be a pointer, data lost after authentication. | Jeroen Nijhof | |
| 2013-04-28 | /dev/urandom improvements, thanks Walter. Fixed active_server check | Jeroen Nijhof | |
| 2013-04-28 | Merge pull request #6 from walterdejong/master | chalcy0n | |
| cleanup stuff | |||
| 2013-03-29 | abort() on erroneous input parameters | Walter de Jong | |
| 2013-03-29 | xstrcpy() belongs in libtac | Walter de Jong | |
| 2013-03-29 | xstrcpy() aborts on argument too long | Walter de Jong | |
| Which may be dumb, but it's better than bluntly truncating a string | |||
| 2013-03-29 | removed double xcalloc() function; do not leak memory for these small ↵ | Walter de Jong | |
| buffers; added safe xstrcpy() | |||
| 2013-03-28 | fixes various memory leaks, really | Walter de Jong | |
| 2013-03-28 | server is a struct { address, key } | Walter de Jong | |
| 2013-03-28 | added FIXME remark about leaking memory | Walter de Jong | |
| 2013-03-28 | just them prototypes | Walter de Jong | |
| 2013-03-28 | more stuff belongs in headers | Walter de Jong | |
| 2013-03-28 | stuff belongs in an include file | Walter de Jong | |
| 2013-03-28 | added FIXME remark for ifdef for existence of /dev/urandom | Walter de Jong | |
| 2013-03-28 | magic is always inited | Walter de Jong | |
| 2013-03-28 | handle read() errors | Walter de Jong | |
| 2013-03-28 | remove unnecessary ifdef __platform__ constructions | Walter de Jong | |
| 2013-03-28 | Merge pull request #5 from walterdejong/master | chalcy0n | |
| some code cleanups | |||
| 2013-03-27 | same thing, but less confusing | Walter de Jong | |
| Note that this does not change anything in regards to buffer overflowing | |||
| 2013-03-27 | ignore vim swap files | Walter de Jong | |
 |
index : pam_tacplus.git | |
| (mirror of https://github.com/vyos/pam_tacplus.git) |
| summaryrefslogtreecommitdiff |