| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: pam_ssh | Distribution: SUSE Linux Enterprise 16 |
| Version: 2.3 | Vendor: openSUSE |
| Release: bp160.1.13 | Build date: Wed May 18 10:13:45 2022 |
| Group: Productivity/Networking/SSH | Build host: reproducible |
| Size: 328063 | Source RPM: pam_ssh-2.3-bp160.1.13.src.rpm |
| Packager: https://bugs.opensuse.org | |
| Url: http://sourceforge.net/projects/pam-ssh/ | |
| Summary: PAM Module for SSH Authentication | |
This module provides single sign-on behavior. The user types a passphrase when logging in and is allowed in if it decrypts the user s SSH private key. An ssh-agent is started and keys are added. For the entire session, the user types no more passwords.
BSD-3-Clause
* Wed May 18 2022 pgajdos@suse.com
- use pam macros [bsc#1190960]
* Tue Mar 15 2022 David Anes <david.anes@suse.com>
- Update source packages from upstream
* Sat Mar 12 2022 Callum Farmer <gmbr3@opensuse.org>
- Add tmpfiles.d conf for /run/pam_ssh
* Mon Jun 08 2020 Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>
- Use -fcommon flag to build with GCC 10.
* Tue Jan 15 2019 Wolfgang Rosenauer <wr@rosenauer.org>
- Update to 2.3
* cleanup some leftovers from dropping SSH1 support in code and
documentation
* Wed Jan 09 2019 Wolfgang Rosenauer <wr@rosenauer.org>
- Update to 2.2
* upstream OpenSSL 1.1 compatibility
(drop pam_ssh-openssl11.patch)
* upstream removed support for SSH1 and RSA1 protocols
* Fri Dec 01 2017 dimstar@opensuse.org
- Explicitly call autoreconf: an implicit call requires the same
version automake/autoconf to be present that was used to
originally bootstrap the tarball (version 1.13).
* Thu Nov 30 2017 vcizek@suse.com
- Add support for building with OpenSSL 1.1 (bsc#1066988)
* partly based on https://github.com/openssh/openssh-portable/pull/48
* add pam_ssh-openssl11.patch
* Fri Jun 05 2015 mpluskal@suse.com
- Update to 2.1
* session/login/default keys lexical sort order
* add ED25519 key support
* updated openssh embedded code to 6.7p1
- Cleanup spec file with spec-cleaner
* Sun Mar 08 2015 p.drouand@gmail.com
- Update to version 2.01
* pam_ssh.1: updated man page to reflect the current implementation
- Remove gpg-offline require and verification; OBS handles it
- Use download Url as source
* Mon Nov 18 2013 wr@rosenauer.org
- update to 2.0
* added support for ECDSA keys
* ssh-agent is now spawned in a different improved way
* ssh-agent is not started anymore for users without keys
* support try_first_password PAM option
* still ask for passphrase even if user does not exist
* expect keys used for login in ~/.ssh/login-keys.d directory
(see README; this behaviour will cause old setups to fail
since the default keys are not used anymore for auth)
* "keyfiles" option has been removed and all found keys
which can be opened using the provided passphrase will be
added to the agent
* alternative keys not used for login purposes and not named
like the default keys will be decrypted and saved for the
agent when placed in ~/.ssh/session-keys.d directory
* when there is no controlling tty now use the PID to
create the session file
* return PAM_SESSION_ERR from within the session part
instead of PAM_AUTH_ERR
* honour TMPDIR for ssh-agent
* start ssh-agent with GID of the group given at
compile time to the new configure option
- -with-ssh-agent-group
- switched archive to XZ
- verify detached signature
* Thu Jun 06 2013 vcizek@suse.com
- restore credentials before exitting from pam_sm_open_session
* fixes bnc#823484
* added James Carter's pam_ssh-1.97-no_tty_stay_as_user.patch
* Mon Apr 29 2013 wr@rosenauer.org
- update to 1.98
* bugfix update obsoleting
- pam_ssh-1.97-empty_passphrase_segfault.patch
- pam_ssh-1.97-setgid.patch
- pam_ssh-1.97-sigmask.patch
- pam_ssh-double-free.patch
* Sat Jan 12 2013 coolo@suse.com
- remove suse_update_config
* Thu Jan 12 2012 vcizek@suse.com
- added patch that prevents segfault when empty passphrase is
supplied (bnc#741541)
* Mon Nov 28 2011 jengelh@medozas.de
- Remove redundant/unwanted tags/section (cf. specfile guidelines)
- Use %_smp_mflags for parallel building
* Sun Nov 27 2011 coolo@suse.com
- add libtool as buildrequire to avoid implicit dependency
* Sun Oct 30 2011 mkubecek@suse.cz
- pam_ssh-1.97-sigmask.patch:
Clear signal mask before executing ssh-agent as pam_ssh code can
be called from kdm with blocked TERM signal which would be
inherited by ssh-agent (bnc#727246).
* Wed May 11 2011 vcizek@novell.com
- set gid/groups before executing ssh-agent (bnc#665061)
* Mon Apr 18 2011 vcizek@novell.com
- fix for bnc#688120 (pam_ssh double free)
* Mon Feb 01 2010 jengelh@medozas.de
- package baselibs.conf
* Wed Jun 24 2009 sbrabec@suse.cz
- Supplement pam-32bit/pam-64bit in baselibs.conf (bnc#354164).
* Wed Jun 24 2009 sbrabec@suse.cz
- Supplement pam-32bit/pam-64bit in baselibs.conf (bnc#354164).
* Tue Apr 14 2009 anicka@suse.cz
- update to 1.97
* pam_get_pass.c: CVE-2009-1273
pam_ssh used a certain prompt if a user found to exist to ask
for the SSH passphrase explicitely depending on whether the
username was valid or invalid, which made it easier for remote
attackers to enumerate usernames.
- remove last patch
* Fri Apr 10 2009 anicka@suse.cz
- add fix for CVE-2009-1273 (bnc#492764) taken from Red Hat
bugzilla (#492153)
* Thu Apr 10 2008 ro@suse.de
- added baselibs.conf file to build xxbit packages
for multilib support
* Mon Jan 14 2008 anicka@suse.cz
- update to 1.96
* pam_ssh.c (key_load_private_maybe): New wrapper for
key_load_private() that checks whether the private key's
passphrase is blank.
* pam_ssh.c: if PAM returns tty_raw = NULL we shouldn't fiddle
with a per-session file. That seems to happen if the session
module is used for background system services (like cron).
* pam_ssh.c: fixed double-free issue with file closing
- remove last two patches (fixed in upstream)
* Mon Mar 05 2007 anicka@suse.de
- fix crash in pam_sm_open_session [#251053]
* Fri Nov 24 2006 max@suse.de
- Fix crashes in in the session module (#223488).
* Tue Nov 07 2006 ro@suse.de
- fix manpage permissions
* Thu Aug 03 2006 stark@suse.de
- update to version 1.94 (r23)
* improved logging
* more recover fixes
* root credentials weren't restored in some cases which caused
following pam session modules to fail
* Sat Jun 24 2006 stark@suse.de
- update to version 1.93 (r18)
* debug option works for auth and session module (#177885)
* debug option is really available now for auth and session
module (#177885)
* recover better if close_session wasn't executed (#187560)
* Wed Jun 07 2006 stark@suse.de
- logging fix is integrated now
- auth handler now accepts nullok option
* Wed May 31 2006 stark@suse.de
- update to version 1.92
* allow working as session module without authentication
(workaround for #173803)
* incorporated include fixes
- fixed syslog logging (part of #177885)
* Wed Jan 25 2006 mls@suse.de
- converted neededforbuild to BuildRequires
* Fri Oct 14 2005 ro@suse.de
- added include openssl/md5.h to cipher.c
* Mon Oct 10 2005 schubi@suse.de
- added "include <syslog.h>"
* Tue Nov 09 2004 schubi@suse.de
- Bugfixes for other architectures
* Mon Nov 08 2004 schubi@suse.de
- first version
/usr/lib/tmpfiles.d/pam_ssh.conf /usr/lib64/security/pam_ssh.so /usr/share/doc/packages/pam_ssh /usr/share/doc/packages/pam_ssh/NEWS /usr/share/doc/packages/pam_ssh/README /usr/share/doc/packages/pam_ssh/TODO /usr/share/man/man8/pam_ssh.8.gz
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Sep 30 22:45:42 2025