Prepare for releasing Ourouparia on Thursday.
git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@806 185d5e19-27fe-0310-9dcf-9bff6b9f3609
This commit is contained in:
parent
2ae3b8b727
commit
95a55b95cf
15
HISTORY
15
HISTORY
|
@ -1,12 +1,21 @@
|
||||||
OpenPAM ?????????? 2014-??-??
|
OpenPAM ?????????? 2014-??-??
|
||||||
|
|
||||||
|
- FEATURE: Add a pam_oath module that implements RFC 4226 (HOTP) and
|
||||||
|
RFC 6238 (TOTP).
|
||||||
|
============================================================================
|
||||||
|
OpenPAM Ourouparia 2014-09-11
|
||||||
|
|
||||||
|
- ENHANCE: When executing a chain, require at least one service
|
||||||
|
function to succeed. This mitigates fail-open scenarios caused by
|
||||||
|
misconfigurations or missing modules.
|
||||||
|
|
||||||
|
- ENHANCE: Make sure to overwrite buffers which may have contained an
|
||||||
|
authentication token when they're no longer needed.
|
||||||
|
|
||||||
- BUGFIX: Under certain circumstances, specifying a non-existent
|
- BUGFIX: Under certain circumstances, specifying a non-existent
|
||||||
module (or misspelling the name of a module) in a policy could
|
module (or misspelling the name of a module) in a policy could
|
||||||
result in a fail-open scenario. (CVE-2014-3879)
|
result in a fail-open scenario. (CVE-2014-3879)
|
||||||
|
|
||||||
- FEATURE: Add a pam_oath module that implements RFC 4226 (HOTP) and
|
|
||||||
RFC 6238 (TOTP).
|
|
||||||
|
|
||||||
- FEATURE: Add a search path for modules. This was implemented in
|
- FEATURE: Add a search path for modules. This was implemented in
|
||||||
Nummularia but inadvertantly left out of the release notes.
|
Nummularia but inadvertantly left out of the release notes.
|
||||||
|
|
||||||
|
|
4
RELNOTES
4
RELNOTES
|
@ -1,6 +1,6 @@
|
||||||
|
|
||||||
Release notes for OpenPAM ????????
|
Release notes for OpenPAM Ourouparia
|
||||||
==================================
|
====================================
|
||||||
|
|
||||||
This release corresponds to the code used in FreeBSD HEAD as of the
|
This release corresponds to the code used in FreeBSD HEAD as of the
|
||||||
release date, and is also expected to work on almost any POSIX-like
|
release date, and is also expected to work on almost any POSIX-like
|
||||||
|
|
|
@ -39,7 +39,7 @@
|
||||||
#define SECURITY_OPENPAM_VERSION_H_INCLUDED
|
#define SECURITY_OPENPAM_VERSION_H_INCLUDED
|
||||||
|
|
||||||
#define OPENPAM
|
#define OPENPAM
|
||||||
#define OPENPAM_VERSION 20130907
|
#define OPENPAM_VERSION 20140911
|
||||||
#define OPENPAM_RELEASE "Nummularia"
|
#define OPENPAM_RELEASE "Ourouparia"
|
||||||
|
|
||||||
#endif /* !SECURITY_OPENPAM_VERSION_H_INCLUDED */
|
#endif /* !SECURITY_OPENPAM_VERSION_H_INCLUDED */
|
||||||
|
|
Loading…
Reference in New Issue