diff options
Diffstat (limited to 'source/a')
| -rwxr-xr-x | source/a/aaa_elflibs/aaa_elflibs.SlackBuild | 2 | ||||
| -rw-r--r-- | source/a/aaa_elflibs/symlinks-to-tracked-libs | 1 | ||||
| -rw-r--r-- | source/a/shadow/HOME_MODE.xml | 43 | ||||
| -rw-r--r-- | source/a/shadow/login.defs | 18 | ||||
| -rwxr-xr-x | source/a/shadow/shadow.SlackBuild | 7 |
5 files changed, 64 insertions, 7 deletions
diff --git a/source/a/aaa_elflibs/aaa_elflibs.SlackBuild b/source/a/aaa_elflibs/aaa_elflibs.SlackBuild index 8df16ea1f..7e7f2cd07 100755 --- a/source/a/aaa_elflibs/aaa_elflibs.SlackBuild +++ b/source/a/aaa_elflibs/aaa_elflibs.SlackBuild @@ -23,7 +23,7 @@ cd $(dirname $0) ; CWD=$(pwd) PKGNAM=aaa_elflibs VERSION=${VERSION:-15.0} -BUILD=${BUILD:-20} +BUILD=${BUILD:-21} # Automatically determine the architecture we're building on: if [ -z "$ARCH" ]; then diff --git a/source/a/aaa_elflibs/symlinks-to-tracked-libs b/source/a/aaa_elflibs/symlinks-to-tracked-libs index b8960c768..8b6d9b3af 100644 --- a/source/a/aaa_elflibs/symlinks-to-tracked-libs +++ b/source/a/aaa_elflibs/symlinks-to-tracked-libs @@ -11,6 +11,7 @@ /lib/libelf.so.1 /lib/libfuse.so.2 /lib/libgpm.so.2 +/lib/libkeyutils.so.1 /lib/libkrb5support.so.0 /lib/libkrb5.so.3 /lib/libk5crypto.so.3 diff --git a/source/a/shadow/HOME_MODE.xml b/source/a/shadow/HOME_MODE.xml new file mode 100644 index 000000000..c2926d31d --- /dev/null +++ b/source/a/shadow/HOME_MODE.xml @@ -0,0 +1,43 @@ +<!-- + Copyright (c) 1991 - 1993, Julianne Frances Haugh + Copyright (c) 1991 - 1993, Chip Rosenthal + Copyright (c) 2007 - 2009, Nicolas François + All rights reserved. + + Redistribution and use in source and binary forms, with or without + modification, are permitted provided that the following conditions + are met: + 1. Redistributions of source code must retain the above copyright + notice, this list of conditions and the following disclaimer. + 2. Redistributions in binary form must reproduce the above copyright + notice, this list of conditions and the following disclaimer in the + documentation and/or other materials provided with the distribution. + 3. The name of the copyright holders or contributors may not be used to + endorse or promote products derived from this software without + specific prior written permission. + + THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS + ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT + LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A + PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT + HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, + SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT + LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, + DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY + THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT + (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE + OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. +--> +<varlistentry> + <term><option>HOME_MODE</option> (number)</term> + <listitem> + <para> + The mode for new home directories. If not specified, + the <option>UMASK</option> is used to create the mode. + </para> + <para> + <command>useradd</command> and <command>newusers</command> use this + to set the mode of the home directory they create. + </para> + </listitem> +</varlistentry> diff --git a/source/a/shadow/login.defs b/source/a/shadow/login.defs index 0e137a35a..022dd36fb 100644 --- a/source/a/shadow/login.defs +++ b/source/a/shadow/login.defs @@ -190,15 +190,23 @@ ERASECHAR 0177 KILLCHAR 025 #ULIMIT 2097152 -# Default initial "umask" value. -# UMASK is also used by useradd and newusers to set the mode of new home -# directories. +# +# Default initial "umask" value used by login(1) on non-PAM enabled systems. +# Default "umask" value for pam_umask(8) on PAM enabled systems. +# UMASK is also used by useradd(8) and newusers(8) to set the mode for new +# home directories if HOME_MODE is not set. # 022 is the default value, but 027, or even 077, could be considered -# better for privacy. There is no One True Answer here: each sysadmin -# must make up her mind. +# for increased privacy. There is no One True Answer here: each sysadmin +# must make up their mind. UMASK 022 # +# HOME_MODE is used by useradd(8) and newusers(8) to set the mode for new +# home directories. +# If HOME_MODE is not set, the value of UMASK is used to create the mode. +#HOME_MODE 0700 + +# # Password aging controls: # # PASS_MAX_DAYS Maximum number of days a password may be used. diff --git a/source/a/shadow/shadow.SlackBuild b/source/a/shadow/shadow.SlackBuild index d3fd6d14b..4264a24da 100755 --- a/source/a/shadow/shadow.SlackBuild +++ b/source/a/shadow/shadow.SlackBuild @@ -24,7 +24,7 @@ cd $(dirname $0) ; CWD=$(pwd) PKGNAM=shadow VERSION=${VERSION:-$(echo $PKGNAM-*.tar.xz | rev | cut -f 3- -d . | cut -f 1 -d - | rev)} -BUILD=${BUILD:-2} +BUILD=${BUILD:-1} # Automatically determine the architecture we're building on: if [ -z "$ARCH" ]; then @@ -82,6 +82,11 @@ zcat $CWD/shadow.CVE-2005-4890.relax.diff.gz | patch -p1 --verbose || exit 1 # short version up to the first '.' on the login prompt: zcat $CWD/shadow.login.display.short.hostname.diff.gz | patch -p1 --verbose || exit 1 +# Add missing file: +if [ ! -r man/login.defs.d/HOME_MODE.xml ]; then + zcat $CWD/HOME_MODE.xml.gz > man/login.defs.d/HOME_MODE.xml +fi + chown -R root:root . find . \ \( -perm 777 -o -perm 775 -o -perm 711 -o -perm 555 -o -perm 511 \) \ |