commit: b725e39af14b57b69a256818bc1c98f98122c6a1
Author: Mikle KOlyada <zlogene <AT> gentoo <DOT> org>
AuthorDate: Sat Dec 19 22:30:15 2020 +0000
Commit: Mikle Kolyada <zlogene <AT> gentoo <DOT> org>
CommitDate: Sat Dec 19 22:30:15 2020 +0000
URL: https://gitweb.gentoo.org/proj/pambase.git/commit/?id=b725e39a
strip pam_permit.so from system-auth
Signed-off-by: Mikle KOlyada <zlogene <AT> gentoo.org>
templates/system-auth.tpl | 4 ----
templates/system-session.tpl | 2 --
2 files changed, 6 deletions(-)
diff --git a/templates/system-auth.tpl b/templates/system-auth.tpl
index 19e08fa..01a29db 100644
--- a/templates/system-auth.tpl
+++ b/templates/system-auth.tpl
@@ -10,7 +10,6 @@ auth [success=3 default=ignore] pam_krb5.so {{
krb5_params }}
auth requisite pam_faillock.so preauth
auth [success=1 default=ignore] pam_unix.so {{
nullok|default('', true) }} {{ debug|default('', true) }} try_first_pass
auth [default=die] pam_faillock.so authfail
-auth optional pam_permit.so
{% if caps %}
-auth optional pam_cap.so
@@ -21,7 +20,6 @@ account [success=2 default=ignore]
pam_krb5.so {{ krb5_params }}
{% endif %}
account required pam_unix.so {{ debug|default('', true)
}}
account required pam_faillock.so
-account optional pam_permit.so
{% if passwdqc %}
password required pam_passwdqc.so
config=/etc/security/passwdqc.conf
@@ -45,8 +43,6 @@ password required pam_unix.so try_first_pass {{
unix_authtok|default('', true) }
password required pam_unix.so try_first_pass {{
nullok|default('', true) }} {{ unix_extended_encryption|default('', true) }} {{
debug|default('', true) }}
{% endif %}
-password optional pam_permit.so
-
{% if pam_ssh %}
session optional pam_ssh.so
{% endif %}
diff --git a/templates/system-session.tpl b/templates/system-session.tpl
index ce3afa5..2a7024b 100644
--- a/templates/system-session.tpl
+++ b/templates/system-session.tpl
@@ -9,5 +9,3 @@ session [success=1 default=ignore] pam_krb5.so {{
krb5_params }}
{% endif %}
session required pam_unix.so {{ debug|default('', true)
}}
-
-session optional pam_permit.so
