Hi all, Per https://bugzilla.redhat.com/show_bug.cgi?id=2428862
duo_unix needs to be updated to >= 2.1.0 by February 2 due to old versions' CA bundles expiring. This is mostly compatible with the old 1.1.2 version we package, with this one exception: https://github.com/duosecurity/duo_unix/releases/tag/duo_unix-2.0.0 https://github.com/duosecurity/duo_unix/pull/233 and the change is sensible > Changed the behavior of su when the target user is not root. The target user will need to complete 2FA rather than the original user. (previously when you su, you need the password of the target user but your own 2FA which negates ... the point of 2FA) Out of caution we want to flag this in epel-devel following https://docs.fedoraproject.org/en-US/epel/epel-policy-incompatible-upgrades/ Given the time crunch we will submit this to testing while discussion is ongoing, so this can get some testing while discussion is ongoing, once the rebase PR is scratch-built https://src.fedoraproject.org/rpms/duo_unix/pull-request/3 (it was delayed yesterday due to a transient issue building for EPEL 9 - https://forge.fedoraproject.org/epel/releng/issues/78) Best regards, -- _o) Michel Lind _( ) https://keyoxide.org/5dce2e7e9c3b1cffd335c1d78b229d2f7ccc04f2 README: https://fedoraproject.org/wiki/User:Salimma#README
signature.asc
Description: This is a digitally signed message part
-- _______________________________________________ epel-devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
