| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-09-18 | allow authorization without protocol defined | Sergey Mironov | |
| Protocol is only required for certain subset of services, mainly for ppp. We allow authorization with empty protocol if user wants to use other service names, like 'ssh' From the http://tools.ietf.org/html/draft-grant-tacacs-02 page 30: The protocol attribute is intended for use with PPP. When service equals "ppp" and protocol equals "lcp", the message describes the PPP link layer service. For other values of protocol, this describes a PPP NCP (network layer service). A single PPP session can support multiple NCPs | |||
| 2013-04-28 | /dev/urandom improvements, thanks Walter. Fixed active_server check | Jeroen Nijhof | |
| 2013-03-29 | abort() on erroneous input parameters | Walter de Jong | |
| 2013-03-29 | xstrcpy() belongs in libtac | Walter de Jong | |
| 2013-03-29 | removed double xcalloc() function; do not leak memory for these small ↵ | Walter de Jong | |
| buffers; added safe xstrcpy() | |||
| 2013-03-28 | fixes various memory leaks, really | Walter de Jong | |
| 2013-03-28 | server is a struct { address, key } | Walter de Jong | |
| 2013-03-28 | added FIXME remark about leaking memory | Walter de Jong | |
| 2013-03-28 | just them prototypes | Walter de Jong | |
| 2013-03-28 | more stuff belongs in headers | Walter de Jong | |
| 2013-03-28 | added FIXME remark for ifdef for existence of /dev/urandom | Walter de Jong | |
| 2013-03-28 | magic is always inited | Walter de Jong | |
| 2013-03-28 | handle read() errors | Walter de Jong | |
| 2013-03-27 | same thing, but less confusing | Walter de Jong | |
| Note that this does not change anything in regards to buffer overflowing | |||
| 2013-03-27 | if key is set | Walter de Jong | |
| 2013-03-22 | fix C++/C99 style comments | Walter de Jong | |
| 2012-10-02 | errno = 0 on AIX with non-blocking IO, we need to fix this in a | Jeroen Nijhof | |
| better way | |||
| 2012-09-16 | Rearrange header file include for libtac | Jeroen Nijhof | |
| 2012-09-08 | Bumped version to 1.3.8 and renamed rem_addr to r_addr | Jeroen Nijhof | |
| 2012-07-25 | tac_encryption fully handled by libtac | Jeroen Nijhof | |
| 2012-06-12 | Handle attributes which contains no value | Jeroen Nijhof | |
| 2012-05-19 | Explicity setting *attr to NULL after free(), thanks to Anthony Low | Jeroen Nijhof | |
| 2012-03-18 | Changed e-mail and improved accounting | Jeroen Nijhof | |
| 2011-08-23 | magic.c: magic_inited only used with linux | chalcyon | |
| 2011-08-20 | Added _pam_get_rhost() and _pam_get_user() | Jeroen | |
| 2011-08-19 | Finally got rid of all goto illness! | Jeroen | |
| 2011-08-19 | Major contribution by Darren Besler | Jeroen | |
| 2011-04-25 | Removed encrypt option just check if there is a secret (key). | Jeroen | |
| Removed first_hit option because you can get the same behaviour by using only one server. Added multiple secret support, you can now specify different secrets (keys) for different servers. connect.c: improved connection error handling by using getpeername() to check if connection is still valid. This was needed since we are using non-blocking sockets. Properly handle multiple servers when authenticating, patch from Gregg Nemas, thanks! | |||
| 2010-12-22 | Initial commit | Jeroen Nijhof | |
 |
index : pam_tacplus.git | |
| (mirror of https://github.com/vyos/pam_tacplus.git) |
| summaryrefslogtreecommitdiff |