Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | - gdm.conf is now called custom.conf | Andreas Hasenack | 2008-01-10 | 1 | -1/+1 |
| | |||||
* | - add set_user_umask() for fs (pixel) | Olivier Thauvin | 2007-08-18 | 1 | -0/+20 |
| | |||||
* | - fixing #12353 according solution found in dup #29016 | Olivier Thauvin | 2007-03-02 | 1 | -2/+2 |
| | |||||
* | - fix #27956 | Olivier Thauvin | 2007-03-02 | 1 | -1/+1 |
| | |||||
* | - hopefully fix #12190 | Olivier Thauvin | 2006-08-25 | 1 | -2/+5 |
| | |||||
* | - remove X11R6 reference | Olivier Thauvin | 2006-08-04 | 1 | -7/+7 |
| | |||||
* | fix #19206 by really generating /var/lib/msec/security.conf | Frederic Lepied | 2005-11-14 | 1 | -4/+5 |
| | |||||
* | enable_pam_root_from_wheel: fixed too laxist config in level 2 (bug #18403). | Frederic Lepied | 2005-09-19 | 1 | -10/+26 |
| | |||||
* | removed print statement. | Frederic Lepied | 2005-09-08 | 1 | -1/+0 |
| | |||||
* | allow_xserver_to_listen: adapt to new way of specifying X server arguments ↵ | Frederic Lepied | 2005-09-08 | 1 | -9/+22 |
| | | | | for kdm (bug #15759). | ||||
* | fixed security.conf path (bug #18271). | Frederic Lepied | 2005-09-08 | 1 | -1/+1 |
| | |||||
* | password_aging: fix for empty max field. | Frederic Lepied | 2005-08-17 | 1 | -5/+8 |
| | |||||
* | password_aging: really fix bug #17477 by not parsing the output of chage ↵ | Frederic Lepied | 2005-08-16 | 1 | -35/+20 |
| | | | | anymore. | ||||
* | password_aging: never means -1 | Frederic Lepied | 2005-08-12 | 1 | -1/+1 |
| | |||||
* | allow_user_list: fixed kdmrc settings. | Frederic Lepied | 2005-08-12 | 1 | -5/+8 |
| | | | | | | support new inittab syntax for single user mode. fix parsing of new chage output (bug #17477). | ||||
* | fixed wrong kdmrc values (bug #16268). | Frederic Lepied | 2005-08-09 | 1 | -2/+2 |
| | | | | | follow new Single user need in inittab. | ||||
* | new function enable_pam_root_from_wheel to allow transparent root access | Frederic Lepied | 2005-06-17 | 1 | -1/+28 |
| | | | | | for the wheel group members. | ||||
* | password_history: touch opasswd to have it work. | Frederic Lepied | 2005-03-21 | 1 | -2/+2 |
| | |||||
* | better doc for allow_remote_root_login. | Frederic Lepied | 2005-02-21 | 1 | -1/+3 |
| | |||||
* | allow_reboot: remove consolehelper links instead of files in | Frederic Lepied | 2004-09-30 | 1 | -5/+6 |
| | | | | | /etc/security/console.apps. | ||||
* | control CTRL+ALT-DEL in allow_reboot | Frederic Lepied | 2004-09-30 | 1 | -1/+7 |
| | |||||
* | Mandrakelinux | Frederic Lepied | 2004-07-29 | 1 | -1/+1 |
| | |||||
* | added allow_xauth_from_root | Frederic Lepied | 2004-07-29 | 1 | -0/+24 |
| | |||||
* | fixed system-auth growing line forever (bug #7853) (Michael Scherer) | Frederic Lepied | 2004-02-14 | 1 | -1/+1 |
| | |||||
* | make it lib64 aware wrt pam files rewriting | Frederic Lepied | 2004-02-12 | 1 | -21/+21 |
| | |||||
* | allow_xserver_to_listen: corrected startx modifications (Gavin Porter) | Frederic Lepied | 2003-11-18 | 1 | -3/+3 |
| | |||||
* | document same_level | Frederic Lepied | 2003-10-09 | 1 | -2/+5 |
| | |||||
* | Rework same_level to be able to put the priority on the config file. | Frederic Lepied | 2003-10-08 | 1 | -40/+56 |
| | | | | | | This is realized by inspecting the stack trace and using a global associative array. | ||||
* | better doc for no_password_aging_for and set_security_conf | Frederic Lepied | 2003-08-22 | 1 | -5/+15 |
| | | | | | allow to pass a number in set_umask | ||||
* | be carefull to use 1 or 0 instead of True and False in set_zero_one_variable | Frederic Lepied | 2003-08-22 | 1 | -1/+7 |
| | |||||
* | corrected inverted descriptions | Frederic Lepied | 2003-03-07 | 1 | -3/+3 |
| | |||||
* | put description on one line not to modify draksec_help.py | Frederic Lepied | 2003-02-17 | 1 | -2/+1 |
| | |||||
* | reworded CHECK_PASSWD description | Frederic Lepied | 2003-02-17 | 1 | -1/+2 |
| | |||||
* | fix mseclib man page and draksec help (parsers drop first two bytes... :-() | Thierry Vignaud | 2003-02-03 | 1 | -2/+2 |
| | |||||
* | password_aging: chage is l10n now so use LC_ALL=C before calling it. | Frederic Lepied | 2002-11-20 | 1 | -2/+2 |
| | |||||
* | allow_reboot: X-\*-Core => X-:\*-Core | Frederic Lepied | 2002-09-17 | 1 | -2/+2 |
| | |||||
* | - allow_user_list handles Selected when not changing security level. | Frederic Lepied | 2002-09-17 | 1 | -18/+38 |
| | | | | | - allow_reboot handles Root when not changing security level. | ||||
* | allow_user_list: lookup ShowUsers in the X-*-Greeter section of kdmrc. | Frederic Lepied | 2002-09-05 | 1 | -2/+2 |
| | |||||
* | removed debug output | Frederic Lepied | 2002-09-05 | 1 | -1/+0 |
| | |||||
* | CHECK_SUID_GROUP => CHECK_SGID | Frederic Lepied | 2002-09-03 | 1 | -1/+1 |
| | |||||
* | writeable => writable | Frederic Lepied | 2002-08-30 | 1 | -1/+2 |
| | |||||
* | allow_reboot: used section X-:0-Core instead of X-:*-Greeter for kdmrc. | Frederic Lepied | 2002-08-25 | 1 | -3/+6 |
| | | | | | password_history: create /etc/security/opasswd if it doesn't exist. | ||||
* | corrected without_password | Frederic Lepied | 2002-08-11 | 1 | -1/+1 |
| | |||||
* | password_length use system-auth instead of passwd pam file. | Frederic Lepied | 2002-08-11 | 1 | -17/+148 |
| | | | | | new function: password_history. | ||||
* | added fields to describe how arguments are used (to be used by shadow.py) | Frederic Lepied | 2002-07-30 | 1 | -6/+61 |
| | |||||
* | fixed typo in allow_root_login | Frederic Lepied | 2002-07-29 | 1 | -1/+1 |
| | |||||
* | (set_zero_one_variable): corrected bug when the variable doesn't exist before | Frederic Lepied | 2002-07-28 | 1 | -1/+3 |
| | | | | | setting it. | ||||
* | finalized no security lowering feature. | Frederic Lepied | 2002-07-27 | 1 | -28/+68 |
| | |||||
* | * (more functions): don't lower security when not changing secure level. | Frederic Lepied | 2002-07-27 | 1 | -154/+424 |
| | |||||
* | * (set_zero_one_variable): factorize sysctl.conf manipulation functions. | Frederic Lepied | 2002-07-24 | 1 | -60/+137 |
| | | | | | | | | | | | | | | * (accept_broadcasted_icmp_echo): split from accept_icmp_echo. * (set_umask): factorize set_root_umask and set_user_umask. * (enable_dns_spoofing_protection): split from enable_ip_spoofing_protection. * (allow_remote_root_login): split from allow_root_login. * (allow_autologin set_umask set_zero_one_variable allow_remote_root_login): don't lower security when not changing security level. * (allow_xserver_to_listen): split from allow_x_connections for better granularity. * (enable_ip_spoofing_protection): when disabling ip spoofing protection put back net.ipv4.conf.all.rp_filter to 0 (David Harris). |