From 650f4754a9b251b91fe044af970b5944d69482e7 Mon Sep 17 00:00:00 2001
From: Thierry Vignaud <tvignaud@mandriva.org>
Date: Fri, 30 Jul 2004 07:33:20 +0000
Subject: sync with msec-0.44

---
 perl-install/security/help.pm | 5 +++++
 perl-install/security/l10n.pm | 1 +
 perl-install/security/msec.pm | 2 +-
 3 files changed, 7 insertions(+), 1 deletion(-)

(limited to 'perl-install')

diff --git a/perl-install/security/help.pm b/perl-install/security/help.pm
index 3176c5749..707fdd482 100644
--- a/perl-install/security/help.pm
+++ b/perl-install/security/help.pm
@@ -30,6 +30,11 @@ Else only /etc/issue is allowed."),
 
 'allow_user_list' => N("Allow/Forbid the list of users on the system on display managers (kdm and gdm)."),
 
+'allow_xauth_from_root' => N("Allow/forbid to export display when
+passing from the root account to the other users.
+
+See pam_xauth(8) for more details.'"),
+
 'allow_x_connections' => N("Allow/Forbid X connections:
 
 - ALL (all connections are allowed),
diff --git a/perl-install/security/l10n.pm b/perl-install/security/l10n.pm
index 17e9bb017..de39c3d41 100644
--- a/perl-install/security/l10n.pm
+++ b/perl-install/security/l10n.pm
@@ -17,6 +17,7 @@ sub fields() {
             'allow_remote_root_login' => N("Allow remote root login"),
             'allow_root_login' => N("Direct root login"),
             'allow_user_list' => N("List users on display managers (kdm and gdm)"),
+            'allow_xauth_from_root' => N("Export display when passing from root to the other users"),
             'allow_x_connections' => N("Allow X Window connections"),
             'allow_xserver_to_listen' => N("Authorize TCP connections to X Window"),
             'authorize_services' => N("Authorize all services controlled by tcp_wrappers"),
diff --git a/perl-install/security/msec.pm b/perl-install/security/msec.pm
index b06078aed..569e601ef 100644
--- a/perl-install/security/msec.pm
+++ b/perl-install/security/msec.pm
@@ -98,7 +98,7 @@ sub list_functions {
 					enable_dns_spoofing_protection enable_ip_spoofing_protection
 					enable_log_strange_packets enable_promisc_check no_password_aging_for)],
 	    'system' =>  [qw(allow_autologin allow_issues allow_reboot allow_remote_root_login
-                         allow_root_login allow_user_list allow_x_connections allow_xserver_to_listen
+                         allow_root_login allow_user_list allow_xauth_from_root allow_x_connections allow_xserver_to_listen
                          authorize_services enable_at_crontab enable_console_log
                          enable_msec_cron enable_pam_wheel_for_su enable_password enable_security_check
                          enable_sulogin password_aging password_history password_length set_root_umask
-- 
cgit v1.2.1