Package: libpam-blue
Version: 0.9.0-3
Severity: wishlist
Tags: upstream patch
Dear Maintainer,
libpam-blue returns PAM_AUTH_ERR when a user attempts to login but has
no entry in
/etc/security/bluescan.conf.
The enclosed patch modifies libpam-blue to return PAM_USER_UNKNOWN in
this case.
This does not break existing functionality, but enables new
functionality. For example, the typical pam configuration
auth [success=ok default=die] pam_blue.so
will continue to make libpam-blue mandatory for all users. And the
configuration
auth [success=ok default=ignore] pam_blue.so
will continue to make libpam-blue sufficient for all users in the config
file.
But with the patch, the admin can also set libpam-blue to be needed only
for users listed in the configuration file:
auth [success=ok user_unknown=ignore default=die] pam_blue.so
Thanks!
Best,
Rob
--- libpam-blue-0.9.0-orig/src/bluepmain.c 2007-05-18 06:23:28.000000000
-0400
+++ libpam-blue-0.9.0/src/bluepmain.c 2013-11-21 18:21:38.705209582 -0500
@@ -118,7 +118,7 @@
user = NULL;
lst_destroy(lst);
syslog (LOG_ERR, "%s", reterror);
- return PAM_AUTH_ERR;
+ return PAM_USER_UNKNOWN;
} else {
/* TODO: add some error return codes for speparate logging */
-- System Information:
Debian Release: 7.2
APT prefers stable
APT policy: (990, 'stable'), (500, 'testing-updates'), (500,
'stable-updates'), (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-4-686-pae (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages libpam-blue depends on:
ii bluez 4.99-2
ii libbluetooth3 4.99-2
ii libc6 2.13-38
libpam-blue recommends no packages.
libpam-blue suggests no packages.
-- Configuration Files:
/etc/security/bluesscan.conf changed [not included]
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
