Bug#358697: marked as done (pam_unix: the obscure option cannot be enabled)

Sun, 26 Aug 2007 22:09:32 -0700 

Your message dated Sun, 26 Aug 2007 22:04:42 -0700
with message-id <[EMAIL PROTECTED]>
and subject line pam_unix: the obscure option cannot be enabled
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message --- 
Package: libpam-modules
Version: 0.79-3.1
Severity: normal
Tags: patch

Hello,

The pam_unix 'obscure' option cannot be enabled.


In Linux-PAM/modules/pam_unix/support.h, there are two flags which concern
the 'obscure' option: UNIX_NOOBSCURE_CHECKS and UNIX_OBSCURE_CHECKS.

The first one is enabled by default, and there is no way to disable it.
Linux-PAM/modules/pam_unix/obscure.c checks if UNIX_NOOBSCURE_CHECKS
is set, but never checks wether the 'obscure' option was specified.



The attached patch removes the UNIX_NOOBSCURE_CHECKS flag from
UNIX_DEFAULTS, and tests if the 'obscure' option was not specified (instead
of testing wether the UNIX_NOOBSCURE_CHECKS flag is used, which is always
true).


After applying this patch, the UNIX_NOOBSCURE_CHECKS is no more used  and
could be removed. I can send another patch which does this (but it will
quite bigger).


Kind Regards,
-- 
Nekral

--- End Message ---
--- Begin Message --- 
Version: 0.99.7.1-2

Hi Nicolas,

Hmm, I noticed there was a problem with the 'obscure' option while preparing
the latest upload to unstable, but didn't notice that it was the same as
this bug.  So this bug is fixed now with a different patch in unstable, but
your patch is better so I'll include that in the next upload.

Anyway, this bug is fixed now in unstable, which means people can start
complaining instead that the obscure options are now enabled and the default
min/max password length settings are insane ;)

Cheers,
-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
[EMAIL PROTECTED]                                   http://www.debian.org/

--- End Message ---

Reply via email to