diff options
| author | Yu Ke <ke.yu@intel.com> | 2011-02-28 19:34:45 +0800 |
|---|---|---|
| committer | Saul Wold <sgw@linux.intel.com> | 2011-03-01 10:01:40 -0800 |
| commit | 87e8e1b31c3b37b82766fff00050930e04c37219 (patch) | |
| tree | 1cb6214f8612b9eeed44c9d31d80ce8f34e32376 /meta/recipes-extended/shadow/files/pam.d/chsh | |
| parent | f68e7a365f5626a462a151710ea151dd460a1683 (diff) | |
| download | poky-87e8e1b31c3b37b82766fff00050930e04c37219.tar.gz | |
shadow: upgrade to 4.1.4.3 to fix security vulnerability
For CVE-2011-0721: http://lists.debian.org/debian-security-announce/2011/msg00030.html
Signed-off-by: Yu Ke <ke.yu@intel.com>
Diffstat (limited to 'meta/recipes-extended/shadow/files/pam.d/chsh')
| -rw-r--r-- | meta/recipes-extended/shadow/files/pam.d/chsh | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/meta/recipes-extended/shadow/files/pam.d/chsh b/meta/recipes-extended/shadow/files/pam.d/chsh new file mode 100644 index 0000000000..8fb169f64e --- /dev/null +++ b/meta/recipes-extended/shadow/files/pam.d/chsh | |||
| @@ -0,0 +1,19 @@ | |||
| 1 | # | ||
| 2 | # The PAM configuration file for the Shadow `chsh' service | ||
| 3 | # | ||
| 4 | |||
| 5 | # This will not allow a user to change their shell unless | ||
| 6 | # their current one is listed in /etc/shells. This keeps | ||
| 7 | # accounts with special shells from changing them. | ||
| 8 | auth required pam_shells.so | ||
| 9 | |||
| 10 | # This allows root to change user shell without being | ||
| 11 | # prompted for a password | ||
| 12 | auth sufficient pam_rootok.so | ||
| 13 | |||
| 14 | # The standard Unix authentication modules, used with | ||
| 15 | # NIS (man nsswitch) as well as normal /etc/passwd and | ||
| 16 | # /etc/shadow entries. | ||
| 17 | auth include common-auth | ||
| 18 | account include common-account | ||
| 19 | session include common-session | ||