Date: Wed, 24 Jan 2001 12:36:35 -0800 (PST) From: Jacques Vidrine <nectar@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/security/pam_krb5/files patch-ab patch-ad patch-af patch-ah Message-ID: <200101242036.f0OKaa689098@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
nectar 2001/01/24 12:36:35 PST
Modified files:
security/pam_krb5/files patch-ab patch-ad patch-af patch-ah
Log:
Bug fixes and paranoia:
compat_heimdal.c:
= Stop shooting at feet when freeing a particular chunk of memory.
Found by complaints from free(), and pinpointed with MALLOC_OPTIONS=A.
pam_krb5_auth.c:
= In addition to dropping and restoring uid when delving in /tmp,
drop and restore gid.
= Explicitly set permissions on the credentials cache for good measure.
The following was
Obtained from: Sam Hartman <hartmans@mit.edu> via bugs.debian.org
support.c:
= verify_krb_v5_tgt: Do a little more to prevent KDC spoofing.
Allow for a key separate from the host key to use only for PAM.
Revision Changes Path
1.4 +3 -2 ports/security/pam_krb5/files/patch-ab
1.4 +74 -19 ports/security/pam_krb5/files/patch-ad
1.4 +83 -25 ports/security/pam_krb5/files/patch-af
1.4 +3 -3 ports/security/pam_krb5/files/patch-ah
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200101242036.f0OKaa689098>