![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.netbsd.org] / pkgsrc / security / courier-authlib
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.14 / (download) - annotate - [select for diffs], Tue Jun 15 23:10:44 2010 UTC (23 months, 1 week ago) by pettai
Branch: MAIN
CVS Tags: pkgsrc-2012Q1-base,
pkgsrc-2012Q1,
pkgsrc-2011Q4-base,
pkgsrc-2011Q4,
pkgsrc-2011Q3-base,
pkgsrc-2011Q3,
pkgsrc-2011Q2-base,
pkgsrc-2011Q2,
pkgsrc-2011Q1-base,
pkgsrc-2011Q1,
pkgsrc-2010Q4-base,
pkgsrc-2010Q4,
pkgsrc-2010Q3-base,
pkgsrc-2010Q3,
pkgsrc-2010Q2-base,
pkgsrc-2010Q2,
HEAD
Changes since 1.13: +6 -6
lines
Diff to previous 1.13 (colored)
courier-authlib-0.63.0: * authldapescape.c: Factor out LDAP string escape function. * authldap.schema: Various fixes * authldap.ldif (olcObjectClasses): Create LDIF format schema from authldap.schema * authoption.c (auth_getoptionenvint): For account options that are parsed to an int, an option value that begins with t, T, y, or Y is evaluated as 1, other alphabetic values as 0; so that 'true' or 'yes' get evaluated as 1. (See the Changelog for the previous releases) Based on patch(es) from PR pkg/42989 by Brian Candler
Revision 1.13 / (download) - annotate - [select for diffs], Thu Jul 2 12:23:44 2009 UTC (2 years, 10 months ago) by obache
Branch: MAIN
CVS Tags: pkgsrc-2010Q1-base,
pkgsrc-2010Q1,
pkgsrc-2009Q4-base,
pkgsrc-2009Q4,
pkgsrc-2009Q3-base,
pkgsrc-2009Q3,
pkgsrc-2009Q2-base,
pkgsrc-2009Q2
Changes since 1.12: +6 -6
lines
Diff to previous 1.12 (colored)
Update courier-authlib to 0.62.2.
Include security fix for CVE-2008-2380 and requested by PR#41023
(approved by wiz@).
0.62.2
This release corrects a makefile compatibility problem with bash 4.
0.62.1
This release correct a couple of minor compiler warnings and errors.
* cryptpassword.c: Fix compiler warnings
* checkpasswordsha1.c: Fix compiler warnings.
* authldaplib.c (auth_ldap_enumerate): Fix typo.
0.62.0
This release adds support for additional hash functions, and an
update to the Postgres driver that removes potentional SQL injection
vulnerabilities in some circumstances.
* authpgsqllib.c: Use PQescapeStringConn() instead of removing all
apostrophes from query parameters. This fixes a potential SQL injection
vulnerability if the Postgres database uses a non-Latin locale.
* Added support for {SSHA}-encrypted passwords. Based on a patch
by Zou bin <zb@bisp.com>.
* Added support for {SHA512} hash function
Revision 1.12 / (download) - annotate - [select for diffs], Sun Sep 28 22:15:30 2008 UTC (3 years, 7 months ago) by tonnerre
Branch: MAIN
CVS Tags: pkgsrc-2009Q1-base,
pkgsrc-2009Q1,
pkgsrc-2008Q4-base,
pkgsrc-2008Q4,
pkgsrc-2008Q3-base,
pkgsrc-2008Q3
Changes since 1.11: +5 -6
lines
Diff to previous 1.11 (colored)
Upgrade courier-authlib to version 0.61.0 in order to fix CVE-2008-2667, finally. While here, fix PLIST and depkglint a bit. Also, fix the horrid abuse of libtool. Changes since 0.60.2: * courier-authlib.spec: Dummy provides: for symlinks, to allow upgrade with older packages that require <libname>.so.0. * Makefile.am: Switch to versionless shared libraries. Install all shared libraries just as <libname>.so. make install manually removes *.so.0.0 files that were left over from previous versions, and installs a temporary *.so.0 symlink to *.so, for temporary binary ABI compatibility with 0.60. The symlinks will be removed in 0.62. * Cleanup: always compile md5, sha* and hmac stuff, and remove all conditionally-compiled cruft. Move SASL list to an internal header. Add client-side support for AUTH EXTERNAL. * authsasl.c (auth_sasl_ex): auth_sasl_ex() supercedes auth_sasl(), invokes auth_sasl() for non-EXTERNAL SASL methods, implements EXTERNAL by going through the motions, then setting up a dummy authentication request. * authdaemon.c (auth_generic): Check for the dummy EXTERNAL authentication request, and handle it by invoking auth_getuserinfo(), rather than sending it down the pipe. This avoid having to implement a stub in every authentication module. * authmysqllib.c: Use mysql_set_character_set() instead of SET NAMES * authmysqllib.c: Fix domain-less queries. * Makefile: Drop the unmaintained authvchkpw module. * authmysqllib.c: Cleanup. Use mysql_real_escape_string instead of crude filtering. * Makefile.am: Use _LIBADD properly. * configure.in: More portability fixes.
Revision 1.11 / (download) - annotate - [select for diffs], Mon Oct 15 15:37:01 2007 UTC (4 years, 7 months ago) by jlam
Branch: MAIN
CVS Tags: pkgsrc-2008Q2-base,
pkgsrc-2008Q2,
pkgsrc-2008Q1-base,
pkgsrc-2008Q1,
pkgsrc-2007Q4-base,
pkgsrc-2007Q4,
cwrapper,
cube-native-xorg-base,
cube-native-xorg
Changes since 1.10: +7 -7
lines
Diff to previous 1.10 (colored)
Update security/courier-authlib to 0.60.1. Changes from version 0.59.3
include:
* MYSQL_CHARACTER_SET option.
* Allow underscores, colons and plusses, in account names.
* Add {MD5RAW} hash method.
* Fix runtime problems with hardcoded file descriptors in the daemon
code by using OPEN_MAX instead.
Revision 1.10 / (download) - annotate - [select for diffs], Wed Sep 5 17:06:55 2007 UTC (4 years, 8 months ago) by jlam
Branch: MAIN
CVS Tags: pkgsrc-2007Q3-base,
pkgsrc-2007Q3
Changes since 1.9: +2 -1
lines
Diff to previous 1.9 (colored)
Move variable declarations to start of block to appease older C compilers.
Revision 1.9 / (download) - annotate - [select for diffs], Fri Aug 10 17:57:21 2007 UTC (4 years, 9 months ago) by jlam
Branch: MAIN
Changes since 1.8: +6 -6
lines
Diff to previous 1.8 (colored)
Update security/courier-authlib to 0.59.3. Changes from version 0.58 include: * authpipe.c (auth_pipe_pre): Fix leak when authpipe module is enabled, but the actual authpipe script/external prog is not installed. * authmysqlrc: Implement SSL-encrypted MySQL connections * authldaplib.c (l_simple_bind_s): Fix anon binds. * authldaplib.c (auth_ldap_enumerate): Fix LDAP account enumeration * userdb/makeuserdb.in: Added the -f option to makeuserdb * authldaplib.c: Try to recover when the LDAP server closes the persistent socket, for inactivity.
Revision 1.8 / (download) - annotate - [select for diffs], Tue Jan 3 03:50:45 2006 UTC (6 years, 4 months ago) by jlam
Branch: MAIN
CVS Tags: pkgsrc-2007Q2-base,
pkgsrc-2007Q2,
pkgsrc-2007Q1-base,
pkgsrc-2007Q1,
pkgsrc-2006Q4-base,
pkgsrc-2006Q4,
pkgsrc-2006Q3-base,
pkgsrc-2006Q3,
pkgsrc-2006Q2-base,
pkgsrc-2006Q2,
pkgsrc-2006Q1-base,
pkgsrc-2006Q1
Changes since 1.7: +4 -5
lines
Diff to previous 1.7 (colored)
Update security/courier-authlib to 0.58. Changes from version 0.57 include: * Re-enable pam_acct_mgmt hook. * Add support for shadow password expiration. * Configurable daemon socket timeout, * Add a section for LDAP environment variable options. * Replace LDAP_SERVER and LDAP_PORT settings with LDAP_URI, which obsoletes LDAP_TLS. * Fix LDAP error checking.
Revision 1.7 / (download) - annotate - [select for diffs], Thu Aug 11 00:03:16 2005 UTC (6 years, 9 months ago) by jlam
Branch: MAIN
CVS Tags: pkgsrc-2005Q4-base,
pkgsrc-2005Q4,
pkgsrc-2005Q3-base,
pkgsrc-2005Q3
Changes since 1.6: +7 -6
lines
Diff to previous 1.6 (colored)
Update security/courier-authlib to 0.57. Changes from version 0.55
include:
* authlib: create the authtest and authpasswd manual pages.
* authdaemon.c (auth_generic): Silly bug in auth_generic().
* authldaplib.c (auth_ldap_do3): Fix call of authcryptpasswd().
* authpgsqllib.c (auth_pgsql_setpass): Ditto.
* authmysqllib.c (auth_mysql_setpass): Ditto.
* authmysqllib.c (auth_mysql_setpass): Fix a memory leak.
* authpipe: more fixes to the authpipe module.
* authpipe: various fixes to the authpipe module.
* authpipe.c (auth_pipe_pre): Fix zombies created by the authpipe
module.
* New authpipe authentication module.
* authldap.schema: Add mailhost to the recommended LDAP schema.
* README_authlib.sgml: Document updated authpipe protocol.
* cryptpassword.c (authcryptpasswd): Fix handling of encryption hints.
* checkpassword.c (do_authcheckpassword): Ignore {CRYPT} prefix on
crypted passwords.
* checkpasswordsha1.c (authcheckpasswordsha1): Fix {SHA256} passwords.
* authdaemond.c: Strip full name/gecos field after the first comma.
* authdaemond: Pass LOGGEROPTS option to authdaemond.
* liblog/logger.c: Fix wrong args to setuidgid().
* liblog/logger.c: Added -droproot option to courierlogger.
* liblock/lockdaemon.c: Try to recover if upgraded daemon process runs
under a different uid.
* Changed -uid and -gid options to -user and -group for consistency
with couriertcpd. Change them to affect courierlogger itself,
after it has spawned any child.
* Optional default domain for authentication requests.
* Fix the error code when an empty password is provided.
Revision 1.6 / (download) - annotate - [select for diffs], Thu Mar 24 07:13:14 2005 UTC (7 years, 2 months ago) by jlam
Branch: MAIN
CVS Tags: pkgsrc-2005Q2-base,
pkgsrc-2005Q2
Changes since 1.5: +2 -2
lines
Diff to previous 1.5 (colored)
Strip off any leading "-Wl," in the compiler and linker flags before the courier Makefile adds it to all of the flags again. This avoids situations where you end up with a flag that looks like "-Wl,-Wl,...". This should fix the problem noted in pkg/29777.
Revision 1.5 / (download) - annotate - [select for diffs], Tue Mar 22 03:53:33 2005 UTC (7 years, 2 months ago) by jlam
Branch: MAIN
Changes since 1.4: +4 -4
lines
Diff to previous 1.4 (colored)
Update security/courier-authlib to courier-authlib-0.55. Changes from
version 0.54 include:
* authsystem.passwd.in: Explicitly set LC_ALL to en_US
* SASL: Added CRAM-SHA256 authentication method (experimental).
* courierauthdebug.h: Macro dprintf conflicts with new glibc.
Revision 1.4 / (download) - annotate - [select for diffs], Fri Mar 18 20:20:48 2005 UTC (7 years, 2 months ago) by jlam
Branch: MAIN
CVS Tags: pkgsrc-2005Q1-base,
pkgsrc-2005Q1
Changes since 1.3: +2 -2
lines
Diff to previous 1.3 (colored)
Avoid possibly linking everything against -lintl when PostgreSQL support is built into courier-authlib -- -lintl is only needed by the authpgsql authentication module. This avoids problems when linking clients with -lcourierauth and the linker thinks -lintl is needed when it really doesn't. Bump the PKGREVISION to 3.
Revision 1.3 / (download) - annotate - [select for diffs], Thu Feb 24 13:10:05 2005 UTC (7 years, 3 months ago) by agc
Branch: MAIN
Changes since 1.2: +2 -1
lines
Diff to previous 1.2 (colored)
Add RMD160 digests.
Revision 1.2 / (download) - annotate - [select for diffs], Fri Feb 18 22:12:43 2005 UTC (7 years, 3 months ago) by jlam
Branch: MAIN
Changes since 1.1: +4 -3
lines
Diff to previous 1.1 (colored)
Update security/courier-authlib to 0.54. Changes from version 0.53 include: * userdb/makeuserdb.in: Report dangling symlinks.
Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Thu Feb 10 03:21:30 2005 UTC (7 years, 3 months ago) by jlam
Branch: TNF
CVS Tags: pkgsrc-base
Changes since 1.1: +0 -0
lines
Diff to previous 1.1 (colored)
Import courier-authlib-0.53 as security/courier-authlib.
The Courier authentication library provides authentication services for
other Courier applications. In this context, the term "authentication"
refers to the following functions:
1. Take a userid or a loginid, and a password. Determine whether the
loginid and the password are valid.
2. Given a userid, obtain the following information about the userid:
A. The account's home directory.
B. The numeric system userid and groupid that owns all files
associated with this account.
C. The location of the account's maildir.
D. Any maildir quota defined for this account. See the Courier
documentation for more information on maildir quotas.
E. Other miscellaneous account-specific options.
3. Change the password associated with a loginid.
4. Obtain a complete list of all loginids.
Revision 1.1 / (download) - annotate - [select for diffs], Thu Feb 10 03:21:30 2005 UTC (7 years, 3 months ago) by jlam
Branch: MAIN
Initial revision