Bug#358697: pam_unix: the obscure option cannot be enabled

Thu, 23 Mar 2006 17:08:37 -0800 

Hi,

Sorry, I forgot the attachment.

Best Regards,
-- 
Nekral

diff -rauN ../orig/pam-0.79/debian/patches-applied/007_modules_pam_unix 
./pam-0.79/debian/patches-applied/007_modules_pam_unix
--- ../orig/pam-0.79/debian/patches-applied/007_modules_pam_unix        
2006-03-23 23:51:29.000000000 +0100
+++ ./pam-0.79/debian/patches-applied/007_modules_pam_unix      2006-03-24 
01:46:12.000000000 +0100
@@ -309,8 +309,7 @@
 +/* UNIX_OBSCURE_CHECKS */  {"obscure",         _ALL_ON_,            
0x2000000},
  };
  
--#define UNIX_DEFAULTS  (unix_args[UNIX__NONULL].flag)
-+#define UNIX_DEFAULTS  (unix_args[UNIX__NONULL].flag | 
unix_args[UNIX_NOOBSCURE_CHECKS].flag)
+ #define UNIX_DEFAULTS  (unix_args[UNIX__NONULL].flag)
  
  
  /* use this to free strings. ESPECIALLY password strings */
@@ -545,7 +544,7 @@
 +              return "Bad: new password is too short";
 +
 +      /* Remaining checks are optional. */
-+      if (on(UNIX_NOOBSCURE_CHECKS,ctrl))
++      if (off(UNIX_OBSCURE_CHECKS,ctrl))
 +              return NULL;
 +
 +      if ((msg = password_check(old, new, pwdp)) != NULL)
diff -rauN ../orig/pam-0.79/Linux-PAM/modules/pam_unix/obscure.c 
./pam-0.79/Linux-PAM/modules/pam_unix/obscure.c
--- ../orig/pam-0.79/Linux-PAM/modules/pam_unix/obscure.c       2006-03-23 
23:51:29.000000000 +0100
+++ ./pam-0.79/Linux-PAM/modules/pam_unix/obscure.c     2006-03-24 
00:50:40.000000000 +0100
@@ -169,7 +169,7 @@
                return "Bad: new password is too short";
 
        /* Remaining checks are optional. */
-       if (on(UNIX_NOOBSCURE_CHECKS,ctrl))
+       if (off(UNIX_OBSCURE_CHECKS,ctrl))
                return NULL;
 
        if ((msg = password_check(old, new, pwdp)) != NULL)
diff -rauN ../orig/pam-0.79/Linux-PAM/modules/pam_unix/support.h 
./pam-0.79/Linux-PAM/modules/pam_unix/support.h
--- ../orig/pam-0.79/Linux-PAM/modules/pam_unix/support.h       2006-03-23 
23:51:29.000000000 +0100
+++ ./pam-0.79/Linux-PAM/modules/pam_unix/support.h     2006-03-24 
00:50:01.000000000 +0100
@@ -128,7 +128,7 @@
 /* UNIX_NULLOK_SECURE */   {"nullok_secure",   _ALL_ON_^(0x200),    0x4000000},
 };
 
-#define UNIX_DEFAULTS  (unix_args[UNIX__NONULL].flag | 
unix_args[UNIX_NOOBSCURE_CHECKS].flag)
+#define UNIX_DEFAULTS  (unix_args[UNIX__NONULL].flag)
 
 
 /* use this to free strings. ESPECIALLY password strings */

Reply via email to