Filed EPEL incompatible update exception request: https://pagure.io/epel/issue/360
On Thu, 2026-01-22 at 11:39 +0000, Michel Lind wrote: > Hi all, > > Per https://bugzilla.redhat.com/show_bug.cgi?id=2428862 > > duo_unix needs to be updated to >= 2.1.0 by February 2 due to old > versions' CA bundles expiring. > > This is mostly compatible with the old 1.1.2 version we package, with > this one exception: > > https://github.com/duosecurity/duo_unix/releases/tag/duo_unix-2.0.0 > > https://github.com/duosecurity/duo_unix/pull/233 > > and the change is sensible > > > Changed the behavior of su when the target user is not root. The > target user will need to complete 2FA rather than the original user. > > (previously when you su, you need the password of the target user but > your own 2FA which negates ... the point of 2FA) > > Out of caution we want to flag this in epel-devel following > https://docs.fedoraproject.org/en-US/epel/epel-policy-incompatible-upgrades/ > > Given the time crunch we will submit this to testing while discussion > is ongoing, so this can get some testing while discussion is ongoing, > once the rebase PR is scratch-built > https://src.fedoraproject.org/rpms/duo_unix/pull-request/3 > > (it was delayed yesterday due to a transient issue building for EPEL > 9 > - https://forge.fedoraproject.org/epel/releng/issues/78) > > Best regards,
signature.asc
Description: This is a digitally signed message part
-- _______________________________________________ epel-devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
