-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Wed, 8 Mar 2006 16:58:13 -0800 Source: libpam-krb5 Binary: libpam-krb5 Architecture: source i386 Version: 1.2.0-3 Distribution: unstable Urgency: low Maintainer: Sam Hartman <hartmans@debian.org> Changed-By: Russ Allbery <rra@debian.org> Description: libpam-krb5 - PAM module for MIT Kerberos Closes: 350556 354133 Changes: libpam-krb5 (1.2.0-3) unstable; urgency=low . * Only call krb5_kuserok when the account to which we're authenticating is a local account to allow use of pam_krb5 for application authentication of users without local accounts. (Closes: #354133) * Restructure the code to do user validation after obtaining their initial tickets. This eliminates a lot of confusing special cases and deferred checking and makes it easier to audit the code. * Don't create the ticket cache until after successful authentication. Otherwise, we leave files behind in /tmp. * Document what principals libpam_krb5.so looks for in the system keytab to do ticket validation. (Closes: #350556) Files: 098380530754ddc51baa7dd90577a473 657 net optional libpam-krb5_1.2.0-3.dsc df30cafbd5bd9b245cee29f289a19676 18543 net optional libpam-krb5_1.2.0-3.diff.gz 6ce8e9846cfac220e428504987ce7c39 33172 net optional libpam-krb5_1.2.0-3_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iD8DBQFED34y+YXjQAr8dHYRArchAKCqL9Y6gW9YFopJaRvH9Aj7WN9C2wCfVb9i 8R6bVvYF4aVVhIo9mq6co70= =podE -----END PGP SIGNATURE----- Accepted: libpam-krb5_1.2.0-3.diff.gz to pool/main/libp/libpam-krb5/libpam-krb5_1.2.0-3.diff.gz libpam-krb5_1.2.0-3.dsc to pool/main/libp/libpam-krb5/libpam-krb5_1.2.0-3.dsc libpam-krb5_1.2.0-3_i386.deb to pool/main/libp/libpam-krb5/libpam-krb5_1.2.0-3_i386.deb
