Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/sys-apps/shadow
Commit message (Collapse)AuthorAgeFilesLines
* sys-apps/shadow: fix cracklib dictonary pathMikle Kolyada2020-08-212-2/+2
| | | | | | Closes: https://bugs.gentoo.org/714012 Package-Manager: Portage-2.3.103, Repoman-2.3.23 Signed-off-by: Mikle Kolyada <zlogene@gentoo.org>
* sys-apps/shadow: Disable cracklib defaultMikle Kolyada2020-08-212-2/+6
| | | | | | | | | | | | | Built-in cracklib support is just an alternative to the stack installed by the sys-auth/pambase package. If shadow is built with USE=pam, then it will prefer pam configuration files over cracklib, so cracklib is useless as an option. The pam use flag is enabled in the linux profiles by default, which covers most use cases. Package-Manager: Portage-2.3.103, Repoman-2.3.23 Signed-off-by: Mikle Kolyada <zlogene@gentoo.org>
* sys-apps/shadow: Security cleanupLars Wendler2020-04-214-582/+0
| | | | | | Bug: https://bugs.gentoo.org/702252 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* */*: downgrade m68k down to ~m68kSergei Trofimovich2020-04-211-1/+1
| | | | | | | | | m68k and ~m68k trees are inconsistent. Let's drop keywords down to ~m68k only. Profiles already accept both keywords: ACCEPT_KEYWORDS="m68k ~m68k" Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>
* */*: Drop stable ia64 keywordsMatt Turner2020-04-032-2/+2
| | | | Signed-off-by: Matt Turner <mattst88@gentoo.org>
* */*: Discontinue Gentoo SuperH portMikle Kolyada2020-03-264-4/+4
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --ignore-arches Signed-off-by: Mikle Kolyada <zlogene@gentoo.org>
* sys-apps/shadow: stable 4.8-r4 for hppa, bug #702252Rolf Eike Beer2020-03-181-1/+1
| | | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="hppa" Signed-off-by: Rolf Eike Beer <eike@sf-mail.de> Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>
* sys-apps/shadow: depend on >=sys-kernel/linux-headers-4.14Mike Gilbert2020-03-173-3/+3
| | | | | | Bug: https://bugs.gentoo.org/708810 Package-Manager: Portage-2.3.92_p3, Repoman-2.3.20_p118 Signed-off-by: Mike Gilbert <floppym@gentoo.org>
* sys-apps/shadow: arm64 stable (bug #702252)Mart Raudsepp2020-03-171-1/+1
| | | | | Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Mart Raudsepp <leio@gentoo.org>
* sys-apps/shadow: Revbumps to fix pam usage of chpasswd and newusersMichael Weiser2020-03-163-0/+11
| | | | | | Closes: https://bugs.gentoo.org/712372 Package-Manager: Portage-2.3.94, Repoman-2.3.21 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: depend on >=sys-kernel/linux-headers-4.19Mike Gilbert2020-03-113-18/+24
| | | | | | Closes: https://bugs.gentoo.org/708810 Package-Manager: Portage-2.3.92_p3, Repoman-2.3.20_p118 Signed-off-by: Mike Gilbert <floppym@gentoo.org>
* sys-apps/shadow: ppc64 stable wrt bug #702252Agostino Sarubbo2020-03-081-1/+1
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="ppc64" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* sys-apps/shadow: ia64 stable wrt bug #702252Agostino Sarubbo2020-03-081-1/+1
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="ia64" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* sys-apps/shadow: x86 stable wrt bug #702252Agostino Sarubbo2020-03-081-1/+1
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="x86" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* sys-apps/shadow: ppc stable wrt bug #702252Agostino Sarubbo2020-03-081-1/+1
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="ppc" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* sys-apps/shadow: arm stable wrt bug #702252Agostino Sarubbo2020-03-081-1/+1
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="arm" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* sys-apps/shadow: sparc stable wrt bug #702252Agostino Sarubbo2020-03-081-1/+1
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="sparc" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* sys-apps/shadow: amd64 stable wrt bug #702252Mikle Kolyada2020-03-081-1/+1
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="amd64" Signed-off-by: Mikle Kolyada <zlogene@gentoo.org>
* sys-apps/shadow: s390 stable wrt bug #702252Agostino Sarubbo2020-03-081-1/+1
| | | | | | Package-Manager: Portage-2.3.89, Repoman-2.3.20 RepoMan-Options: --include-arches="s390" Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* */*: Bump copyright on files touched this yearMichał Górny2020-02-111-1/+1
| | | | | | | Update the copyright notice on all files that were touched since January 1st but did not have the notice updated. Signed-off-by: Michał Górny <mgorny@gentoo.org>
* sys-apps/shadow-4.8.1-r1: add slot operator to libcryptPatrick McLean2020-02-061-1/+1
| | | | | | Copyright: Sony Interactive Entertainment Inc. Package-Manager: Portage-2.3.87, Repoman-2.3.20 Signed-off-by: Patrick McLean <chutzpah@gentoo.org>
* sys-apps/shadow-4.8.1-r1: Revbump, add dep on virtual/libcryptPatrick McLean2020-02-061-0/+1
| | | | | | Copyright: Sony Interactive Entertainment Inc. Package-Manager: Portage-2.3.87, Repoman-2.3.20 Signed-off-by: Patrick McLean <chutzpah@gentoo.org>
* sys-apps/shadow: fix su blockerMike Gilbert2020-02-023-5/+5
| | | | | Package-Manager: Portage-2.3.86_p1, Repoman-2.3.20_p43 Signed-off-by: Mike Gilbert <floppym@gentoo.org>
* */*: Drop stable alpha keywordsMatt Turner2020-01-251-1/+1
| | | | Signed-off-by: Matt Turner <mattst88@gentoo.org>
* sys-apps/shadow: Removed oldLars Wendler2020-01-251-236/+0
| | | | | Package-Manager: Portage-2.3.85, Repoman-2.3.20 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: Bump to version 4.8.1Lars Wendler2020-01-252-0/+233
| | | | | Package-Manager: Portage-2.3.85, Repoman-2.3.20 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: Revbump to fix up PAM configurationMichael Weiser2020-01-192-0/+240
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | shadow includes a number of administrative account management binaries like useradd, chage and chpasswd, traditionally only useable by root. In shadow they can be compiled with PAM support and installed setuid. PAM configuration can then be used to delegate account management to users other than root. The previous config contained the pam_rootok module to provide default behaviour of allowing account management when called as root. But it also contained pam_permit which would allow everyone else to also do account management without any authentication. To close this loophole we remove pam_permit from the config. Also, chpasswd, chgpasswd and newusers are batch-mode mass-change tools meant for scripting. They only contain PAM support if configure flag --enable-account-tools-setuid is in effect and are then installed setuid root. They should use the same restrictive PAM configuration as their siblings. But with setuid user management tools and PAM support within them disabled by commit f569e607 we can stop installing the configuration files as well. chfn and chsh are intended to be called by the user as self-service tools. For this reason they're always installed setuid root and contain PAM support. They should be allowed to work but maybe not without some prior authentication to avoid attacks such as someone finding an unlocked session and using chfn to redirect phone calls intended for the user to himself. The existing passwd config seems perfect for that and is aptly named in that both tools change user information normally stored in /etc/passwd. groupmems is another user self-service tool. It allows the user to add people to their user-private group, allowing them trusted access to normally private files. It is not installed setuid like chfn and chsh but always contains PAM support. Upstream installs a locked down PAM config by default. Since default shell profiles on Gentoo do not change umask to 0002 when a private user group is in use, impact will only be to allow read access to those additional users by default. Since the idea of adding more users to the user *private* group is questionable, go with upstream's default of locking the PAM config down so that an admin not only needs to make the binary suid but also adjust the PAM config, in the process hopefully considering what they're doing. Bug: https://bugs.gentoo.org/702252 Closes: https://github.com/gentoo/gentoo/pull/14032 Reviewed-by: Mikle Kolyada <zlogene@gentoo.org> Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: Revbump to no longer install binaries SUID-rootLars Wendler2019-12-171-2/+3
| | | | | | | Thanks-to: Michael Weiser <michael@weiser.dinsnail.net> Bug: https://bugs.gentoo.org/702252 Package-Manager: Portage-2.3.82, Repoman-2.3.20 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: Minor ebuild adjustmentLars Wendler2019-12-021-1/+1
| | | | | Package-Manager: Portage-2.3.80, Repoman-2.3.19 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow-4.8-r1: Revbump, install in /usr as well as /Patrick McLean2019-12-012-3/+25
| | | | | Package-Manager: Portage-2.3.80, Repoman-2.3.19 Signed-off-by: Patrick McLean <chutzpah@gentoo.org>
* sys-apps/shadow: Bump to version 4.8Lars Wendler2019-12-013-0/+230
| | | | | Package-Manager: Portage-2.3.80, Repoman-2.3.19 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: eautoreconf requires sys-devel/gettextLars Wendler2019-11-201-1/+1
| | | | | | | Thanks-to: Arthur Zamarin <arthurzam+gentoo@gmail.com> Closes: https://bugs.gentoo.org/700750 Package-Manager: Portage-2.3.79, Repoman-2.3.18 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: Removed oldLars Wendler2019-11-202-426/+0
| | | | | Package-Manager: Portage-2.3.79, Repoman-2.3.18 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: Introduced "su" USE flagLars Wendler2019-11-193-0/+367
| | | | | | | | | | Moved passwd from /usr/bin to /bin (again) as it breaks at least one package that has passwd path hardcoded (net-misc/scponly) Thanks-to: fling <fling@member.fsf.org> Bug: https://bugs.gentoo.org/699930 Package-Manager: Portage-2.3.79, Repoman-2.3.18 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* Revert "sys-apps/shadow: Revbump to re-add split-usr"Lars Wendler2019-11-181-8/+1
| | | | | | This reverts commit 3e71cbd8a3a3b45fe6858e5837c2e7535ea3a158. Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: Revbump to re-add split-usrLars Wendler2019-11-161-1/+8
| | | | | Package-Manager: Portage-2.3.79, Repoman-2.3.18 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: 4.7-r1: create /etc/sub{g,u}id, remove split-usrWilliam Hubbs2019-11-151-0/+212
| | | | | | Bug: https://bugs.gentoo.org/700062 Package-Manager: Portage-2.3.76, Repoman-2.3.16 Signed-off-by: William Hubbs <williamh@gentoo.org>
* sys-apps/shadow: Removed Debian's alioth HOMEPAGE URILars Wendler2019-10-282-2/+2
| | | | | | | Thanks-to: Wim Muskee <wimmuskee@gmail.com> Closes: https://bugs.gentoo.org/698710 Package-Manager: Portage-2.3.78, Repoman-2.3.17 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: migrate to sys-libs/pamMikle Kolyada2019-10-122-2/+2
| | | | | Package-Manager: Portage-2.3.76, Repoman-2.3.16 Signed-off-by: Mikle Kolyada <zlogene@gentoo.org>
* sys-apps/shadow: add support for /usr mergeMatija Skala2019-07-192-10/+14
| | | | | | Closes: https://github.com/gentoo/gentoo/pull/12477 Signed-off-by: Matija Skala <mskala@gmx.com> Signed-off-by: Mike Gilbert <floppym@gentoo.org>
* sys-apps/shadow: Bump to version 4.7Lars Wendler2019-06-172-0/+213
| | | | | Package-Manager: Portage-2.3.67, Repoman-2.3.14 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>
* sys-apps/shadow: Add ~riscv keywordMikle Kolyada2019-05-041-1/+1
| | | | | Signed-off-by: Mikle Kolyada <zlogene@gentoo.org> Package-Manager: Portage-2.3.62, Repoman-2.3.11
* */*: Remove pam-bugs@ from maintainersMichał Górny2019-03-281-5/+1
| | | | | Bug: https://bugs.gentoo.org/627640 Signed-off-by: Michał Górny <mgorny@gentoo.org>
* sys-apps/shadow: Drop unused inheritMikle Kolyada2019-01-181-2/+2
| | | | | Signed-off-by: Mikle Kolyada <zlogene@gentoo.org> Package-Manager: Portage-2.3.51, Repoman-2.3.11
* sys-apps/shadow: Ensure /bin is present before moving file into itSargun Dhillon2018-10-081-0/+1
| | | | | | | | | | | | | When building with a new prefix, sometimes the /bin directory does not exist at install time. Therefore, we need to create it before using it. You can recreate if you try to run: emerge --prefix=/test shadow Closes: https://github.com/gentoo/gentoo/pull/10107 Signed-off-by: Sargun Dhillon <sargun@sargun.me> Signed-off-by: Mike Gilbert <floppym@gentoo.org>
* sys-apps/shadow: remove unused patchMichael Mair-Keimberger2018-05-241-180/+0
|
* sys-apps/shadow: Drop oldMikle Kolyada2018-05-233-422/+0
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* sys-apps/shadow: hppa/ppc64 stable wrt bug #647790Mikle Kolyada2018-05-231-1/+1
| | | | Package-Manager: Portage-2.3.24, Repoman-2.3.6
* sys-apps/shadow: mark 4.5/4.6 m68k/s390/sh stableMike Frysinger2018-05-212-2/+2
|
* sys-apps/shadow-4.6-r0: alpha stableTobias Klausmann2018-05-141-1/+1
| | | | Gentoo-Bug: http://bugs.gentoo.org/647790