3 shadow-4.0.18.1 -> shadow-4.0.18.2 UNRELEASED
6 - useradd: Allow non numerical group identifier to be specified with
7 useradd's -g option. Applied Debian patch 397_non_numerical_identifier.
8 Thanks also to Greg Schafer <gschafer@zip.com.au>.
9 - chgpasswd, chpasswd: Fix chpasswd and chgpasswd stack overflow. Based on
10 the Fedora's shadow-4.0.18.1-overflow.patch and Debian's
11 495_salt_stack_smash patches.
12 - newgrp: Don't ask for a password if there are no group passwords. Just
14 - The permissions of the suid binaries is now configurable in
15 src/Makefile.am. Note that changing the permissions is not recommended.
16 - newgrp.c: Declare the child and pid variable at the beginning of a block.
17 This fixes a compilation issue with gcc 2.95. The intent is the same as
18 Gentoo's patch shadow-4.0.12-gcc2.patch.
19 - login_nopam: Add support for systems with no innetgr(). On those
20 systems, username with an @ will be treated like any other username
21 (i.e. lookup in the local database for an user with an @). Thanks to
22 Mike Frysinger for the patch.
23 - Add support for uClibc with no l64a().
24 - userdel/usermod: Fix infinite loop caused by erroneous group file
25 containing two entries with the same name. (The fix strategy differs
27 (https://bugzilla.redhat.com/show_bug.cgi?id=240915)
28 - userdel: Abort if an error is detected while updating the passwd or group
29 databases. The passwd or group files will not be written.
30 - usermod: Update the group database before flushing the nscd caches.
31 - usermod: Make sure the group modifications will be allowed before
32 writing the passwd files.
33 - Flush the nscd tables using nscd -i instead of the private glibc socket.
34 (RedHat patches shadow-4.0.16-nscd.c and shadow-4.0.17-notInheritFd.patch)
35 - usermod: Make usermod options independent of the argument order.
36 - newgrp: Do not request a password when a user uses newgrp to switch to
37 her primary group. Debian patch 497_newgrp_primary_group.
38 - passwd: -l/-u options: edit the shadow account expiry field *in
39 addition* to editing the password field. Debian patch 494_passwd_lock.
40 - pwck: Remove the SHADOWPWD preprocessor check. Some check for /etc/shadow
43 shadow-4.0.18.1 -> shadow-4.0.18.2 28-10-2007
46 - usermod: fixed handle -a option (by Benno Schulenberg
47 <bensberg@justemail.net>),
48 - useradd: improved auditing support
49 (https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=211659),
50 - groupadd, groupdel, groupmod, useradd, userdel, usermod: flush nscd cashes
51 after close /etc/{group,passwd} files,
52 - su: If compiled without PAM support, enforce the limits from /etc/limits
53 when one of the -, -l, or --login options is set, even if called by root.
54 - limits: Support for 2 new resource limits: max nice value, and max real
55 time priority. The resource limits are not used when compiled with PAM.
57 - updated translations: fi, ja, nl, tl, zh_CN.
58 - groupadd.8, groupmod.8, login.1, useradd.8, userdel.8, usermod.8: grammar
59 mistakes and other corrections (by Schulenberg <bensberg@justemail.net>),
61 shadow-4.0.18 -> shadow-4.0.18.1 03-08-2006
64 - groupmems: fixed compilation when PAM is disabled
65 (by Johannes Winkelmann <jw@smts.ch>),
66 - fixed missing man pages in dist tar ball necessary on build when
69 shadow-4.0.17 -> shadow-4.0.18 01-08-2006
72 - su: fixed set enviroment too early when using PAM, so move it to !USE_PAM
73 (patch submitted by Mike Frysinger <vapier@gentoo.org>),
74 - groupadd, groupmod, useradd, usermod: fixed UID/GID overflow (fixed
75 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=198920)
76 - passwd, useradd, usermod: fixed inactive/mindays/warndays/maxdays overflow
77 (simillar to RH#198920),
78 - groupmems: rewrited for use PAM and getopt_long() and now it is enabled
79 for build and install (patch by George Kraft <gk4@swbell.net>),
80 - S/Key: removed assign getpass() to libshadow_getpass() on autoconf level
81 (patch by Ulrich Mueller <ulm@kph.uni-mainz.de>; http://bugs.gentoo.org/139966),
82 - usermod: back to previous -a option semantics and clarify -a behavior
83 on documentation level (by Greg Schafer <gschafer@zip.com.au>),
84 - chsh, groupmod: rewrited for use getopt_long().
85 - updated translations: ca, cs, da, eu, fr, gl, hu, ko, pl, pt, ru, sv, tr, uk, vi.
87 - fr and ru man pages are up to date,
88 - partially translated sv man pages set added
89 (by Daniel Nylander <info@danielnylander.se>),
90 - pl chage(1), chsh(1), groupmod(8): translation finished.
92 shadow-4.0.16 -> shadow-4.0.17 10-07-2006
95 - userdel, usermod: fixed segfault on remove home directory when it can't
96 be removed; for example when it is /dev/null (fixed http://bugs.gentoo.org/139148),
97 - improved SELinux detection on autoconf level (based on patch by
98 Dan Yefimov <dan@D00M.lightwave.net.ru>),
99 - removed using private implementation getpass() libc function
100 (now getpass() is used also when S/KEY support is enabled),
101 - move nologin do $(sbindir),
102 - useradd: fixed mail spool file creation (bug cached by Frans Pop
104 fixed http://bugs.debian.org/374705),
105 - updated translations: cs, da, de, ko, nb, nl, pt, ro, ru, sk, sv, vi,
106 - new translations: dz, km, ne.
108 - ru man pages up to date,
109 - lastlog(8): updated pl translation,
110 - faillog(5): added missing information about fail_locktime element of
111 faillog struct (by Thorsten Kukuk <kukuk@suse.de>),
112 - updated translations: eu, fr, pl.
113 - reverted using docbook.sourceforge.net in XSL url.
115 shadow-4.0.15 -> shadow-4.0.16 05-06-2006
118 - userdel: better fix for old CERT VU#312962 (which was fixed in shadow 4.0.8):
119 fixed forgoten checking of the return value from fchown() before
120 proceeding with the fchmod() (based on Owl patch prepared by
121 Rafal Wojtczuk <nergal@owl.openwall.com>),
122 - userdel: use login.defs::MAIL_DIR instead hardcoded /var/mail in created
123 mailbox path (based on Owl fixes submited
124 by Solar Designer <solar@openwall.com>),
125 - by default do not use libshadow_getpass() as getpass() replacemement.
126 Use libshadow_getpass() only when S/KEY support is enabled.
127 Current glibc getpass() handles correctly longer than 8 characters
128 passwords and libshadow_getpass() is used only because libc getpass()
129 do not handles password prompting with echo enabled,
130 - move login.defs::MD5_CRYPT_ENAB to non-PAM part,
131 - userdel: rewrited for use getopt_log(),
132 - install default/template configuration files:
133 -- if shadow is configured with use PAM install /etc/pam.d/* files,
134 -- if shadow do not uses PAM install /etc/{limits,login.acces} files,
135 -- install /etc/login.defs and /etc/default/useradd files,
136 - fixed handle relative symlinks too in lib/commonio.c
137 (merge patch from Fedora),
138 - properly notify nscd to flush its cache
139 (https://bugzilla.redhat.com/bugzilla/186803),
140 - useradd, usermod: fixes for verify return values mkdir() and chown()
141 on copy files (merge 482_libmisc_copydir_check_return_values Debian
143 - login, su (non-PAM variant): export MAIL only when MAIL_CHECK_ENAB
144 is enabled (Mike Frysinger <vapier@gentoo.org>),
145 - pgck, grpck: warn when the members of a group differ in /etc/groups
146 and /etc/gshadow (fixed http://bugs.debian.org/75181),
147 - su: fixed exit with a status 0 when the invoked command is terminated
148 by a signal which was not catched
149 (fixed by Eero Häkkinen <eero17@bigfoot.com>),
150 - login: cancel login timeout after authentication so that patient people
151 timing out on network directory services can log in with local
152 accounts (http://bugs.debian.org/107148),
153 - chgpasswd: fixes for build correctly with --disable-shadowgrp
154 (patch by Johannes Winkelmann <jw@tks6.net>).
155 - updated translations: cs, da, es, eu, fi, fr, gl, hu, id, pt, ru, sk, sv, vi.
156 - new translations: hu.
158 - new cs man pages: groupmems(8), groupmod(8), grpck(8), gshadow(5)
159 (by Miroslav Kure <kurem@upcase.inf.upol.cz>),
160 - regenerate roff man pages using docbook-style-xsl-1.70.1,
161 - bunch of cleanups in chfn(1), faillog(8), gpasswd(1), groupadd(8),
162 groupmems(8), limits(5), login(1), login.defs(5), newgrp(1), passwd(1),
163 passwd(5) and su(1) (by Yuri Kozlov <kozlov.y@gmail.com>),
164 - update pl vipw(8) man page,
165 - added chgpasswd(8) ru man page,
166 - updated ru login.defs(5), passwd(1), userdel(8), usermod(8) man pages,
167 - pw_auth(3) man page removed (outdated),
168 - install limits(5), login.access(5) and porttime(5) man pages only when
169 shadow is builded with PAM support disabled,
170 - passwd(1): better document how password strength is checked
171 (fixed http://bugs.debian.org/115380),
172 - usermod(8): added missing -a option description
173 (by Christian Perrier <bubulle@debian.org>),
174 - hu chsh(1), lugin(1), newgrp(1): fixed typos
175 (by Koblinger Egmont <egmont@uhulinux.hu>),
176 - login.defs(5): remove information about CREATE_HOME (patch by
177 Mike Frysinger <vapier@gentoo.org>),
178 - chgpasswd(8): new man page.
180 shadow-4.0.14 -> shadow-4.0.15 13-03-2006
183 - do not install translated man pages if shadow is configured with
185 (based patch submited by Mike Frysinger <vapier@gentoo.org>),
186 - added fixes for detect BSD's S/Key with updated the skeychallenge()
187 function for take a fourth argument in case BSD version (patch submited by
188 Mike Frysinger <vapier@gentoo.org>),
189 - login: default UMASK if not specified in login.defs is 022 (pointed by
190 Peter Vrabec <pvrabec@redhat.com>),
191 - chgpasswd: new tool (by Jonas Meurer <mejo@debian.org>),
192 - lastlog: print the usage and exit if an additional argument is profided to
193 lastlog (merge 488_laslog_verify_arguments Debian patch),
194 - login, newgrp, nologin, su: do not link with libselinux (merge
195 490_link_selinux_only_when_needed Debian patch),
196 - chage, chfn, chsh, passwd: fixed confusing error message if /proc is not
197 mounted (http://bugs.debian.org/352494 patch Nicolas François
198 <nicolas.francois@centraliens.net>),
199 - login (merge 433_login_more_LOG_UNKFAIL_ENAB Debian patch):
200 - TOO MANY LOGIN... logged if PAM_MAXTRIES or failcount >= retries (was
201 onl test PAM_MAXTRIES),
202 - print to stderr (in addition to syslog) in case of maximum number of
204 - always prints the number of tries in the syslog entry.
205 - add special handling for PAM_ABORT
206 - add an entry to failog, as when USE_PAM is not defined. (#53164)
207 - changed pam_end to PAM_END. This is certainly was a mistake. PAM_END is
208 pam_close_seesion + pam_end. Here, the session is still not open, we
209 don't have to close it.
210 - a HAVE_PAM_FAIL_DELAY is missing,
211 - su: fixed pam session support (patch from Topi Miettinen; fixed #57526,
212 #55873, 57532 Debian bugs),
213 - userdel: user's group is already removed by update_groups().
214 remove_group() is not needed (bug introduced in 4.0.14 on merge FC fixes).
215 Fixed by Nicolas François <nicolas.francois@centraliens.net>,
216 - useradd: allways remove group and gshadow databases lock, Fixed by Nicolas
217 François <nicolas.francois@centraliens.net>
218 (http://bugs.debian.org/348250)
220 - corrected prototypes in lib/prototypes.h (thre is no audit_help_log();
221 added audit_logger() prototype),
222 - useradd: fixed excess audit_logger() argument,
223 - chage: added missing \n on display password status if password must be
225 - useradd: fixed allow non-unique UID (http://bugs.debian.org/351281),
226 - variouse code cleanups for make possible compilation of shadow with -Wall
227 -Werror (by Alexander Gattin <xrgtn@yandex.ru>),
228 - su: move exit() outside libmisc/shell.c::shell() for handle shell() errors
229 on higher level (now is better visable where some programs exit with 126
230 and 127 exit codes); added new shell() parameter (char *const envp[])
231 which allow fix preserving enviloment in su on using -p, (patch by
232 Alexander Gattin <xrgtn@yandex.ru>),
233 - su: added handle -c,--command option for GNU su compliance (merge
234 437_su_-c_option Debian patch),
235 - login: added translate login prompt string (suggested by Evgeniy
237 - updated translations: ca, cs, da, el, es, eu, gl, fi, fr, it, nb, nl, pt,
238 pt_BR, ro, ru, sk, sv, tl, vi, zh_CN,
239 - new translations: gl.
241 - ru man pages: added new nologin(8) and updated all other man pages (by
242 Yuri Kozlov <kozlov.y@gmail.com>),
243 - chsh(1), su(1): update fi translations generated from XML files
244 (Tommi Vainikainen <thv+debian@iki.fi>),
245 - expiry(1), faillog(5), faillog(8), gpasswd(1), groupadd(8), groupdel(8),
246 logoutd(8), nologin(8), vipw(8): added new cs man pages, (by Miroslav Kure
247 <kurem@upcase.inf.upol.cz>)
248 - login.defs(5): default UMASK if not specified in login.defs is 022
249 (pointed by Peter Vrabec <pvrabec@redhat.com>),
250 - useradd(8): better document that -d will not add the user's home directory
251 if it does not already exist (http://bugs.debian.org/154996),
252 - nologin(8) man pages added (merge 478_nologin.8.xml Debian patch).
254 shadow-4.0.13 -> shadow-4.0.14 03-01-2006
257 - fixes in handling login.defs: $MAIL_FILE is used in userdel and usermod,
258 $MD5_CRYPT_ENAB is used by crypt_make_salt, which is used by chpasswd,
259 gpasswd and newusers.
260 Both variables moved to PAM not dependent (447_missing_login.defs_variables
262 - chage: fix chage display when the last change field is set to 0.
263 This is consistent with PAM (merge 427_chage_expiry_0 Debian patch),
264 - su: if an password is expired, su should propose to change this password
265 (fixed http://bugs.debian.org/321384),
266 - login: added auditing support (based on Fedora patch for login from util-linux),
267 - useradd: merge PUG fixes from RedHat patch,
268 - nologin: new program,
269 - vipw: added a "quiet" mode (http://bugs.debian.org/190252),
270 - newgrp: added auditing support (by Steve Grubb <sgrubb@redhat.com>),
271 - switch over to a new logging function (by Steve Grubb <sgrubb@redhat.com>),
272 - userdel: fix incorrect audit record in userdel
273 (https://bugzilla.redhat.com/bugzilla/174392),
274 - userdel: remove the user's group unless it is not really a user-private group
275 for better PUG support (based on FC patch),
276 - userdel: make the -f option force the removal of the user's group (even if it
277 is the primary group of another user)
278 (merge 453_userdel_-f_removes_group Debian patch),
279 - usermod: rewrited for use getopt_long() (Christian Perrier <bubulle@kheops.frmug.org>),
280 - grpck: fixed segmentation fault on using -s when /etc/gshadow is empty (fix by
281 Tomasz Lemiech <szpajder@staszic.waw.pl>),
282 - passwd: remove handle -f, -g and -s options.
283 - added handle -s/--shell, -m/-p/preserve-environment options like GNU su
284 (based on patches from Debian submited by
285 Nicolas François <nicolas.francois@centraliens.net>)
286 - su: export $USER and $SHELL as well as $HOME (http://bugs.debian.org/11003 and
287 http://bugs.debian.org/11189),
288 - su, vipw: rewrited for use getopt_long(),
289 - su: log successful/failed through syslog (http://bugs.debian.org/190215),
290 - updated translations: ca, cs, da, eu, fi, fr, it, pl, pt, ru, sv, tl, vi,
291 - new translations: gl.
293 - added es, ko vigr(8) and vipw(8), hu lastlog(8), ko vipw(8), zh_CN su(1),
294 zh_TW chpasswd(8) and su(1),
295 - added tr man pages: chage(1), chfn(1), groupadd(8), groupdel(8), groupmod(8),
296 login(1), passwd(1), passwd(5), shadow(5), su(1) useradd(8), userdel(8),
298 - passwd5): added es, hu, pt_BR, zh_CN zh_TW translations,
299 - added full set (up to date) fr man pages
300 (by Nicolas François <nicolas.francois@centraliens.net>),
301 - pwck(1): document -q option,
302 - WARNING: all translated man pages are now in UFT-8,
303 - added full set of ru man pages (by Yuri Kozlov <kozlov.y@gmail.com>),
304 - login(1): better explain the respective roles of login, init and getty with regards
305 to the utmp file (merge 440_manpages-login.1 Debian patch),
306 - login(1): document how to initiate a trusted path on linux
307 (http://bugs.debian.org/305600),
308 - userdel(8): document the -f option; document the group removal behavior (merge
309 455_userdel.8.xml Debian patch),
310 - groupadd(8), useradd(8): document that useradd/groupadd refuse adding entries already in an
311 external database (http://bugs.debian.org/282184),
312 - updated it groupdel(8), passwd(1), pwconv(8), useradd(8), userdel(8), usermod(8) man pages
313 (merge 205_it-manpages Debian patch),
314 - added fi chfn(1), chsh(1), passwd(1), su(1),
315 - newusers(8): added it translation,
316 - newgrp(1): added de, es, zh_CN, zh_TW translations.
318 shadow-4.0.12 -> shadow-4.0.13 10-10-2005
321 - chage: removed duplicated pam_start(),
322 - chfn, chsh: finished PAM support usin pam_start() and co.,
323 - userdel: userdel should not remove the group which is primary for someone else
324 (fix by Nicolas François <nicolas.francois@centraliens.net>
325 http://bugs.debian.org/295416),
326 - login: use "%c" in strftime() output (based on patch from
327 http://bugs.debian.org/89902 by Christian Perrier <bubulle@debian.org>),
328 - fixedlib/commonio.c: don't assume selinux is enabled if is_selinux_enabled()
329 returns -1 (merge isSelinuxEnabled FC patch by Jeremy Katz <katzj@redhat.com>),
330 - login, su (non-PAM case): fixed setup max address space limits (added missing break
331 statement in case) spoted by Lasse Collin <lasse.collin@tukaani.org>,
332 - auditing support added. Patch prepared by Peter Vrabec <pvrabec@redhat.com> basing
333 on work by Steve Grubb from http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=159215
334 Now auditing support have commands: chage, gpasswd, groupadd, groupdel, groupmod,
335 useradd, userdel, usermod.
336 - chage, chfn, chsh, passwd: change to use new selinux API for
337 selinux_check_passwd_access() (patch from Fedora by Dan Walsh <dwalsh@redhat.com>),
338 - use #ident preprocesor directive istead RCID macro with content similar
339 to example described in ident(1) man page (modern compilers like latest GCC
340 removes not used functions by global optimization).
341 So "ident /usr/bin/passwd" will show again some useable informations
342 - su: fixed twice copy enviroment which causes auth problems
343 (bug was introduced in 4.0.12; fix by Nicolas François <nicolas.francois@centraliens.net>),
344 - chage: differentiate the different failure causes by the exit value
345 This will permit to adduser Debian script to detect if chage failed because the
346 system doesn't have shadowed passwords (fix for http://bugs.debian.org/317012),
347 - merge 010_more-i18ned-messages Debian patch which adds i18n support for few
348 more messages (orginaly patch was prepared by Guillem Jover <guillem@debian.org>),
349 - lastlog: added handle -b option which allow print only lastlog records older than
350 specified DAYS (fix by <miles@lubin.us>),
351 - chpasswd, gpasswd, newusers: fixed libmisc/salt.c for use login.defs::MD5_CRYPT_ENAB
352 only if PAM support is disabled (fix by John Gatewood Ham <zappaman@buraphalinux.org>),
353 - passwd: rewrited for use getopt_long(),
354 - newgrp: when newgrp process sits between parent and child shells, it should
355 propagate STOPs from child to parent and CONTs from parent to child,
356 otherwise e.g. bash's "suspend" command won't work
357 Fixed Debian http://bugs.debian.org/314727
358 - updated translations: da, es, fr, pt, ro, ru.
360 - chsh(1), groupadd(8), newusers(8), pwconv(8), useradd(8), userdel(8), usermod(8):
361 added missing references to /etc/login.defs and login.defs(5)
362 (Christian Perrier <bubulle@kheops.frmug.org>),
363 - passwd(5): rewrited based on work by Greg Wooledge <greg@wooledge.org>
364 http://bugs.debian.org/328113
365 - login(1): added securetty(5) to SEE ALSO section
366 (fixed Debian bug http://bugs.debian.org/325773),
367 - groupadd(8), useradd(8): fix regular expression describing alloved login/group
368 names (pointed by Nicolas François <nicolas.francois@centraliens.net>)
369 (correct is [a-z_][a-z0-9_-]*[$]),
370 - groupadd(8), useradd(8): documents in CAVEATS section the limitations shadow
371 places on user and group names (fix by Mike Frysinger <vapier@gentoo.org>).
372 - chage(1), groupadd(8): document -h,--help option.
374 shadow-4.0.11.1 -> shadow-4.0.12 22-08-2005
377 - newgrp, login: remove using login.defs::CLOSE_SESSIONS variable and allways
379 - fixed configure.in: realy enable shadow group support by default (pointed by
380 Greg Schafer <gschafer@zip.com.au> and Peter Vrabec <pvrabec@redhat.com>),
381 - login.defs: removed handle QMAIL_DIR variable,
382 - login: allow regular user to login on read-only root file system (not only for root)
383 Patch by Nicolas François <nicolas.francois@centraliens.net>
384 Fix for http://bugs.debian.org/52069
385 - gpasswd, grpck, grpconv, grpuconv: added flushing group nscd cache,
386 - pwck, pwconv: added flushing passwd nscd cache,
387 - usermod: fixed handle -p option (patch by Peter Vrabec <pvrabec@redhat.com>),
388 - chage: use -1 as value for disable password inactivity, expiration date and
389 checking an password validation.
390 Based on patch by Peter Vrabec <pvrabec@redhat.com> which fixes:
391 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=109499
392 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=137498
393 and on 427_chage_expiry_0 Debian patch (fix for http://bugs.debian.org/78961)
394 - useradd: do not copy files from skel directory if home directory exist and write
395 warning message about not copying skel files
396 Patch by Peter Vrabec <pvrabec@redhat.com> which fixes:
397 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=143150
398 https://bugzilla.redhat.com/beta/show_bug.cgi?id=158574
399 https://bugzilla.redhat.com/beta/show_bug.cgi?id=80242
400 - su: ignore SIGINT while authenticating. A ^C could defeat the waiting
401 period and permit brute-force attacks (fixed http://bugs.debian.org/288827),
402 - uClibc fixes (by Martin Schlemmer <azarah@nosferatu.za.org>):
403 added require ngettext (added [need-ngettext] to AM_GNU_GETTEXT() parameters)
404 and stub prototype for ngettext() in lib/prototypes.h (neccessary if shadow
405 compiled with disabled NLS support)
406 - groupadd: rewrited for use getopt_long(),
407 - groupadd, groupdel, groupmod, userdel: do OPENLOG() before pam_start(),
408 - groupadd: fixed double OPENLOG(),
409 - removed lib/{grpack,gspack,pwpack,sppack}.c and prototypes from lib/prototypes.h
411 - newusers: added flushing passwd and group nscd caches,
412 - passwd, pwunconv, userdel, vipw: remove flushing shadow nscd cache (nscd do not caches
414 - pwck: now pwck OPENLOG with correct name ("pwck" instead "pwsk")
415 (fix by Alexander Gattin <arg@online.com.ua>),
416 - pwck, grpck: replace all puts() with printf() - it fixes problems with extra blank
417 lines printed in some messages
418 (fix by Alexander Gattin <arg@online.com.ua>),
419 - passwd: use separated message "Password set to expire." instead "Password changed."
420 on "passwd -e" (fix by Christian Perrier <bubulle@debian.org),
421 - updated translations: cs, de, fi, fr, nl, pl, pt, ru, sk.
423 - regenerate all roff man pages using DocBook XSLT Stylesheets 1.69.1,
424 - usermod(8): give the correct range for system users (0-999 instead of 0-99),
425 (http://bugs.debian.org/286258)
426 - chage(8): better description -1 value passwd in -E, -I and -M options,
427 - regenerate all roff man pages using DocBook XSLT Stylesheets 1.69.0.
429 shadow-4.0.11 -> shadow-4.0.11.1 21-07-2005
432 - fixed configure.in: now is possible build shadow with enabled/disabled shadow group
433 support (thanks for report symptoms of the bug to Greg Schafer <gschafer@zip.com.au>),
434 - updated translations: sv.
436 shadow-4.0.10 -> shadow-4.0.11 18-07-2005
439 - su: ignore SIGINT while authenticating. A ^C could defeat the waiting period and
440 permit brute-force attacks. Also ignore SIGQUIT.
441 Fixed: http://bugs.debian.org/52372 and http://bugs.debian.org/288827
442 - useradd: rewrited for use getopt_long(),
443 - newgrp: add fix for handle splitted NIS groups: extends the functionality that,
444 if the requested group is given, all groups of the same GID are tested for
445 membership of the requesting user.
446 (fix by Christian Mudra <C.Mudra@science-computing.de>)
447 - fix nscd_flush_cache(): for some reason doing the INVALIDATE call with two
448 write()'s fails. Do one writev() call instead.
449 http://bugs.gentoo.org/show_bug.cgi?id=80413
450 (submited by Martin Schlemmer <azarah@gentoo.org>)
451 - merge nscd-socket-path patch from Fedora: newer glibc's have a different nscd socket
452 location (/var/run/nscd/socket instead /var/run/.nscd_socket),
453 - S/Key support is back,
454 - usermod: added -a option. This flag can only be used in conjunction with the -G
455 option. It cause usermod to append user to the current supplementary group list.
456 (patch by Peter Vrabec <pvrabec@redhat.com>)
457 - chage: added missing \n in error messages,
458 - useradd, groupadd: change -O option to -K and document it in man page,
459 - su, sulogin, login: fixed erroneous warning messages when used with PAM about some
460 login.defs variables (fix by DJ Lucas <dj@linuxfromscratch.org>),
462 -- stop with error message if crypt() not found,
463 -- remove --with{,out}-libcrypt switch,
464 -- move all autoheader templates from acconfig.h to configure.in,
465 - login: setup limits and umask (using login.defs ULIMITS and UMASK variables) only when
466 PAM support is disabled (it is task for pam_limits and pam_umask modules),
467 - sulogin, login: use SYSLOG macro instead syslog() which saves the locale, sets the
468 locale to C, sends the message and restores the locale
469 (fix by Nicolas François <nicolas.francois@centraliens.net>).
470 - updated translations: cs, da, de, es, fi, pl, pt, ro, ru, sk.
472 - pwck(8): document -q option (based on Debian patch for fix http://bugs.debian.org/309408)
473 - pwck(8): rewrited OPTIONS section and better SYNOPSIS,
474 - lastlog(8): document that lastlog is a sparse file, and don't need to be rotated
475 http://bugs.debian.org/219321
476 - login(8): better explain the respective roles of login, init and getty with regards
477 to the utmp file (based on 441_manpages-shadow.5 Debian patch),
478 - shadowconfig(8): removed (will be maintained in Debian shadow pkg repository),
479 - groupadd(8): document -o option,
480 - in SEE ALLSO section in groupadd(8), groupdel(8), groupmod(8), userdel(8), usermod(8)
481 added refer to gpasswd(8) (suggested by Mike Frysinger <vapier@gentoo.org>).
483 shadow-4.0.9 -> shadow-4.0.10 28-06-2005
487 - userdel: now deletes user groups from /etc/gshdow as well as /etc/group.
488 Fix by Nicolas François <nicolas.francois@centraliens.net>.
489 http://bugs.debian.org/99442
490 - usermod: when relocating a user's home directory, don't fail and remove the new
491 home directory if we can't remove the old home directory for some
492 reason; the results can be spectularly poort if, for instance, only
493 the rmdir() fails. Patch prepared by Timo Lindfors <lindi-spamtrap@newmail.com>.
494 http://bugs.debian.org/166369
495 - su: fix syslogs to be less ambiguous. Use old:new format instead of old-new
496 because '-' can appear in usernames
497 http://bugs.debian.org/213592
498 - removed not used now libmisc/setup.c,
499 - login: use also UTMPX API instead UTMP on failure (login was affected for this
500 when shadow was builded without PAM support)
501 patch by Nicolas François <nicolas.francois@centraliens.net>
502 - login: the PAM session needs to be closed as root, thus before change_uid()
503 http://bugs.debian.org/53570 http://bugs.debian.org/195048 http://bugs.debian.org/211884
504 - login: made login's -f option also able to use the username after -- if none
505 was passed as it's optarg
506 http://bugs.debian.org/53702
507 - login: check for hushed login and pass PAM_SILENT if true,
508 http://bugs.debian.org/48002
509 - login: fixed username on succesful login (was using the normal username,
510 when it should have used pam_user) http://bugs.debian.org/47819
511 - remove using SHADOWPWD #define so now shadow is allways builded with shadow
513 - chage: rewrited for use getopt_long(),
514 - updated translations: ca, cs, da, fi, pl, ru, zh_TW.
516 - most of the man pages now are generated from XML files so in case submiting any
517 chages to this resources please make diff to XML files,
518 - chfn: give more details about the influence of login.defs on what's allowed to
521 shadow-4.0.8 -> shadow-4.0.9 23-05-2005
524 - passwd: fixed segfault in non-PAM connfiguration
525 (submited by Greg Schafer <gschafer@zip.com.au>),
526 - newgrp: fixed NULL pointer dereference - getlogin() and ttyname() can
527 return NULL which is not checked (http://bugs.debian.org/162303),
528 - updated translations: ro, ru,
529 - added new translations: vi,
530 - lib/getdef.c: leaves the table as it is, and changes from the binary search to
531 a sequential one (Lucas Correia Villa Real <lucasvr@gobolinux.org>),
532 - lastlog: fixed --help message (s,--login,--user,) http://bugs.debian.org/249611.
534 shadow-4.0.7 -> shadow-4.0.8 26-04-2005
537 - remove not working OPIE and SKEY support,
538 - chage, useradd, usermod: reduce multiple OPENLOG() calls,
539 - passwd: fix #61313 Debian bug: "passwd -S root" (as a normal user) should not
540 display "You may not change the password for root.",
541 - vipw: fixed race condition (Debian #242407 bug; fix by Alexander Gattin
542 <arg@online.com.ua>),
543 - configure.in: add using AC_GNU_SOURCE macro for kill compilation warnings about
544 implicit declaration of function `fseeko',
545 - faillog: changed faillog record display format for allow fit in 80 columns all
547 - removed NDBM code (unused),
548 - fixed use of SU_WHEEL_ONLY in su. Now su realy is avalaible for wheel group
549 members. Thanks to Mike Frysinger <vapier@gentoo.org> for report:
550 http://bugs.gentoo.org/show_bug.cgi?id=80345
551 - drop never finished kerberos and des_rpc support (for kerberos support back firs
552 must be prepared modularization),
553 - fixed UTMP path detection (by Kelledin <kelledin@users.sf.net>),
554 - useradd: rewrited group count to dynamic (by John Newbigin
555 <jnewbigin@ict.swin.edu.au>),
556 - login: fixed create lastlog entry fo users never loged in on non-PAM
557 variant of login (fix by <oracular@ziplip.com>),
558 - remove handle login.defs::NOLOGIN_STR (never used),
559 - useradd: fixes a potential security problem when mailbox is created in
561 Patch and comment by Koblinger Egmont <egmont@uhulinux.hu>:
562 Only two arguments are passed to the open() call though it expects three
563 because O_CREAT is present. Hence the permission of the file first becomes
564 some random garbage found on the stack, and an attacker can perhaps open
565 this file and hold it open for reading or writing before the proper
566 fchmod() is executed. (Actually, we could also pass the final "mode" to
567 the open() call and then save the consequent fchmod().)
568 - SELinux changes: added changes in chage, chfn, chsh, passwd for allow
569 construct more grained user password/accuunt properties on SELinux
570 policies level. Patch originally based on RH changes (submited by Chris
571 PeBenito <pebenito@gentoo.org>),
572 - added SELinux changes: in libmisc/copydir.c (based on Fedora patch),
573 - updated translations: cs, da, es, eu, fi, fr, it, ko, nl, pl, pt, sk, uk,
574 - added new translations: tl,
575 - reindent all source code using -l80,
577 - it man pages (by Danilo Piazzalunga <danilopiazza@libero.it>):
578 -- updated: chfn.1, chsh.1, groups.1, grpck.8, grpconv.8,
579 grpunconv.8, id.1, lastlog.8, login.1, newgrp.1, pwunconv.8, shadow.5,
581 -- new: chage.1, chpasswd.8, expiry.1, faillog.5, faillog.8, getspnam.3,
582 logoutd.8, porttime.5, pwck.8, shadow.3, shadowconfig.8, su.1,
583 - passwd(1): fix #160477 Debian bug: improve -S output description,
584 - newgrp(1): fix #251926, #166173, #113191 Debian bugs: explain why editing /etc/group
585 (without gshadow) doesn't permit to use newgrp,
586 - newgrp(1): newgrp uses /bin/sh (not bash),
587 - faillog(8): updated after rewrited faillog command for use getopt_long(),
588 - login(1): removed fragment about abilities pass enviroment variables in login prompt,
589 - gshadow(5): new file (by Nicolas Nicolas François <nicolas.francois@centraliens.net>),
590 - usermod(8): fixed #302388 Debian bug: added separated -o option description,
592 shadow-4.0.6 -> shadow-4.0.7 26-01-2005
594 - updated translations: da, es, fi, it, nl, pl, pt,
595 - added zh_TW translation (from Debian resources),
596 - remove unused now files in lib/ directory,
597 - switch faillog to use getopt_long(),
598 - added de vigr(8), vipw(8) man pages (from Debian resources),
599 - added ro, sq translations (from Debian resources),
600 - fixed large file support in lastlog and faillog:
601 -- added AC_SYS_LARGEFILE macro to autoconf,
602 -- use fseeko() instead fseek() and remove casting file offsets to unsigned
605 -- rewrited source code using the same style as in chpasswd.c,
606 -- open lastlog file after finish parse comman line optiomns
607 (now --help otput can be displayd for users without lastlog
608 file read permission),
609 -- cleanups in lastlog(8) man page using the same style as in
612 -- switch chpasswd to use getopt_long() and adds a --md5 option
613 (by Ian Gulliver <ian@penguinhosting.net>),
614 -- rewrited chpasswd(8) man page.
616 shadow-4.0.5 -> shadow-4.0.6 08-11-2004
618 - su: fixed adding of pam_env env variables to enviroment
619 (Martin Schlemmer <azarah@nosferatu.za.org>),
620 - autoconf: fixed filling MAIL_SPOOL_DIR and MAIL_SPOOL_FILE variables
621 which was allways empty (Gregorio Guidi <g.guidi@sns.it>),
622 - realuy closse security bug in libmisc/pwdcheck.c,
623 - added missing template/example PAM service config files for chfn, chsh and
625 - do not translate variable names from /etc/default/useradd during
628 shadow-4.0.4.1 -> shadow-4.0.5 27-10-2004
630 - change libmisc to private static library,
631 - added SELinux support (basing on patch from Gentoo),
632 - chage: more verbose/human readable -l output. This output is much more
633 beter for send directly via email for each users as message with account
634 status (for example as message with warning about account/password expiration),
635 - login: fixed handle -f option: now it works correctly without specify "-h
636 <host>" if open login session localy is required (thanks for help
637 investigate bug for Krzysztof Kotlenga),
638 - userdel: when removing a user with userdel, userdel was always exits with 1 (fixed).
639 Based on http://bugs.gentoo.org/show_bug.cgi?id=66687,
640 - useradd: added handle /etc/defaults/useradd::CREATE_MAIL_SPOOL={yes|no}.
641 Now on adding user account can be also created empty user mail spool.
642 Curent code handle only mailbox.
643 TODO: add handle create user mail spool in maildir format.
644 - useradd: when placing symlinks into /etc/skel copy_tree of
645 libmisc/copydir.c will properly create the symlink in the destination
646 directory but not change the ownership to the target user/group. This
647 makes httpd Option SymlinkIfOwnerMatch break for default weg pages
648 including symlinks placed into /etc/skel/public_html for example.
649 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=66819
650 - su: add pam_open_session() support. If builded without PAM support
651 propagate $DISPLAY and $XAUTHORITY enviroment variables.
652 Based on http://www.gentoo.org/cgi-bin/viewcvs.cgi/sys-apps/shadow/files/shadow-4.0.4.1-su-pam_open_session.patch?rev=1.1
653 - applied 036_pam_access_with_preauth.patch Debian patch submited by Bjorn
654 Torkelsson <Bjorn.Torkelsson@hpc2n.umu.se>: add support for PAM account
655 management to restrict access using pam_access when login is invoked with -f.
656 - applied Owl patches by Solar Designer <solar@openwall.com>:
657 shadow-4.0.4.1-owl-pam-auth.diff:
658 Moved the PAM authentication in user management commands after
659 command-line parsing, made it use separate service names for each command.
660 Use constant strings rather than argv[0] for syslog ident in the user
662 shadow-4.0.4.1-owl-tmp.diff:
663 Remove using mktemp() if mkstemp() prototype not found (use allways mkstemp()),
664 shadow-4.0.4.1-owl-check-reads.diff:
665 Add checking for read errors in commonio and vipw/vigr (not doing so could
666 result in data loss when the records are written back),
667 - fixed securirty bug in libmisc/pwdcheck.c which allow unauthorized
668 account properties modification.
669 Affected tools: chfn and chsh.
670 Bug was discovered by Martin Schulze <joey@infodrom.org>.
671 - added it translation (by Danilo Piazzalunga <danilopiazza@libero.it>),
672 - added sk translation (by Peter Mann <Peter.Mann@tuke.sk>, submited by Christian
673 Perrier <bubulle@kheops.frmug.org>),
674 - added es translation (by Ruben Porras <nahoo82@telefonica.net>),
675 - updated ko translation (by Changwoo Ryu <cwryu@debian.org>),
676 - added fi translation (by Tommi Vainikainen <thv@iki.fi>),
677 - new translations: bs, ca, da, eu, he, id, nb, nl, nn, pt, pt_BR, tr,
678 zh_CN (stolen from Debian),
679 - remove adduser(8) roff include man page to useradd(8).
681 shadow-4.0.4 => shadow-4.0.4.1 14-01-2004
682 - bug fixes in automake files for generate correct tar ball on "make dist":
683 added mising "EXTRA_DIST = $(man_MANS)" in man/*/Makefile.am.
685 shadow-4.0.3 => shadow-4.0.4 14-01-2004
688 - added missing information about -f options in groupadd usage mesage
689 (document this also in man page),
690 - removed TCFS support (tcfs is dead),
691 - convert all po/*.po files to utf-8,
692 - one TODO entry gone: fix nscd flushing databases on change (use
693 per service flushing method instead HUPing nscd process),
694 - removed old AUTH_METHODS dependent code,
695 - chage: now all code depend on SHADOWPWD. If shadow will not be configured
696 on autoconf level for using shadow possword chage is olny stub which
697 informs "chage not configured for shadow password support."
699 - login: remove handle login.defs::DIALUPS_CHECK_ENAB code,
700 - login: remove handle login.defs::NO_PASSWORD_CONSOLE code,
701 - ALL tools, libraries: remove old SVR4, SVR4_SI86_EUA BSD_QUOTA and ATT_AGE
703 - ALL: ready for gettext 0.11.5, automake 1.7.4, autoconf 2.57,
704 - logoutd, userd: handle also utmpx if avalaile,
705 - newgrp: fix for non-PAM version
706 Use CLOSE_SESSIONS depending code only when USE_PAM.
707 The problem was reported by Mattias Webjorn Eriksson using Slackware
708 8.1 and reproduced it using slackware-current (9.0beta) (fix submited by
709 Simon Williams <simon@no-dns-yet.org.uk>),
710 - fix in too_many_failures() function: incorrect if() condition in non-PAM
711 dependent code in fail login handling (fixed by Krzysztof
712 Oledzki <ole@ans.pl>),
714 - install groups(1) man page (moved from EXTRA_DIST to man_MANS),
715 - removed pwauth(8), d_passwd(5), dialups(5) man pages,
716 - remove text about password aging from passwd(5) (based on Debian changes),
717 - document useradd and groupadd -M option in en and pl man pages
718 (by Jakub Mikusek <mick3y@o.k.pl>).
719 - added ru passwd(1) man page from KSI resources,
720 - added es man pages found in Conectiva distribution resources,
721 - added chch(1), chfn(1) man pages from chinese man pages translation
723 - added id(1) man page czech man pages translation project,
724 - updated ja man pages and added expiry(1),
725 - removed old doc/ANNOUNCE,
726 - updated german passwd(1), chsh(1) and login(1) man page and added chfn(1)
727 (by Josef Spillner <josef@ggzgamingzone.org>),
728 - many other cleanups and unifications in man pages.
730 shadow-4.0.2 => shadow-4.0.3 13-03-2002
732 - added variouse cs, de, fr, id, it, ko man pages found mainly in national
733 man pages translations projects (this documents are not synced with
734 current en version but you know .. "Documentations is lik sex. When it is
735 good it very very good. Whet it is bad it is better than nothing."). Any
736 changes for syncing this are welcome and for anyone who will want maintain
737 this documents directly I can give cvs write access to project resources.
738 - added new de translation (by Frank Schmid <frank@cs-schmid.de>).
739 - fixed building --with-shared: swapped utent (in src/login.c and
740 libmisc/utmp.c) and pwent (in libmisc/suauth.c and src/su.c)
741 definition/extern (by Dimitar Zhekov <jimmy@is-vn.bg>).
742 - minor changes and updates in man pages (also merged
743 shadow-4.0.0-owl-man.patch by Solar Designer <solar@openwall.com>).
745 shadow-4.0.1 => shadow-4.0.2 17-02-2002
747 - resolve many fuzzy translations also all this which may cause problems on
748 displaing long uid/gid,
749 - allow use "$" on ending in cereated by useradd usermname accounts for allow
750 create machine acounts for samba (thanks to Jerome Borsboom
751 <borsboom@tch.fgg.eur.nl> for point this problem in 4.0.1),
752 - fix small but ugly bug in configure.in in libpam_mics library detection.
754 shadow-4.0.0 => shadow-4.0.1
756 - added ability to log session closes in newgrp
757 (Joseph Parmelee <jparmele@wildbear.com>),
758 - add -pcs to .indent.pro file and reindent all code in src/,
759 - remove "\n" from all SYSLOG() messages,
760 - finish integrate AGING code into SHADOWPW,
761 - remove handle old HAVE_USERSEC_H code,
762 - updated ja and added hu man pages,
763 - applied patches by Solar Designer <solar@openwall.com>:
764 shadow-4.0.0-owl-chage-drop-priv.diffd
765 shadow-4.0.0-owl-chage-ro-no-lock.diff:
766 Added locks which are needed when doing r/w accesses, not when running
767 as root. If root does read-only, there's no lock needed. Added missing
768 "#include <errno.h>" for above (me).
769 shadow-4.0.0-owl-warnings.diff
770 Olny one fix from this patch was aplayd because other was fixed few days
772 shadow-4.0.0-owl-check_names.diff
773 Merge only prat this patch with checking login name matching; checking
774 is login string isn't longer than possible it will be good prepare using
775 probably _POSIX_LOGIN_NAME_MAX from <bits/posix1_lim.h>,
776 shadow-4.0.0-owl-chage-drop-priv.diff
777 shadow-4.0.0-owl-pam-auth.diff
778 Merge part with reorder initialize PAM and checkin is chage is runed by
779 root or not - now chage can be runed from non-root account for checking
780 by user own account information (if PAM enabled).
781 - fixes for handle/print correctly 32bit uid/gid (Thorsten Kukuk <kukuk@suse.de>),
782 - implemented functions for better reloading the nscd cache (per NSS map)
783 (Thorsten Kukuk <kukuk@suse.de>),
784 - fixed warnings "not used but defined" on compile using gcc 3.0.x
785 (bulletpr00ph <bullet@users.sourceforge.net>),
786 - added ja, ko translations found in SuSE,
787 - added symlinks: newgrp -> sg, vipw -> vigr,
788 - added vigr(1) man page as roff .so link to vipw(1),
789 - added sg(1) man page as roff .so link to newgrp(1),
790 - installed fix for SEGV when using pwck -s on /etc/passwd file with
793 shadow-20001016 => shadow-4.0.0 06-01-2002
795 - fix bug discovered and fixed by Marcel Ritter
796 <Marcel.Ritter@rrze.uni-erlangen.de>
797 Due to a big buffer size in lib/commonio.c this error does only appear
798 if a line gets longer than 4096 bytes (there are probably very few people
799 stumbling across this).
800 Ths bug can be exposed by trashing /etc/groups file using useradd with script:
805 while [ $NUM -le 1000 ]; do
806 useradd -g demogroup -G demogroup -p "NONE" user$NUM
809 - remove limit 32 to groups per user by (the same user can belong to
810 more than 32 groups) by use sysconf(_SC_NGROUPS_MAX) instead constant
811 NGROUPS_MAX (patch by Radu Constantin Rendec <radu.rendec@ines.ro>)
812 NOTE: it probably need testing on other system for add
813 some condition for using sysconf(_SC_NGROUPS_MAX) or NGROUPS_MAX constant,
814 - added -s option to {pw,grp}ck to sort checked files by UID/GID,
815 - drop detecting is pam_strerror() need one or two arguments. Instead using
816 PAM_STRERROR() macro use directly pam_strerror() function with two
817 arguments. pam_strerror() with one argument is obsoleted,
818 - adde ja man pages (probably some man pages need update),
819 - much better automake support,
820 - added pt_BR man pages for gpasswd(1), groupadd(8), groupdel(8),
821 groupmod(8), shadow(5) (man pages for other nations also are welcome),
822 - mamny small fixes and updates nad improvements in man pages,
823 - aplayed Debian patch to man pages for shadowconfig,
824 - remove limit to 6 chars logged tty name (012_libmisc_sulog.c.diff Debian
827 shadow-20001012 -> shadow-20001016:
828 - conditionaly disabled body reload_nscd() because not every
829 version of nscd can handle it (this can be enabled by define
830 ENABLE_NSCD_SIGHUP) (Marek Michałkiewicz <marekm@linux.org.pl>)
831 - fixes on autoconf/automake level for dist target,
832 - Julianne F. Haugh new contact adress.
834 shadow-20000902 => shadow-20001012
836 - removed /redhat directory with obsoleted files (partialy rewrited spec
837 file is now in root directory),
838 - aplayed shadow-19990827-group.patch patch from RH wich prevents adduser
839 overwrite previously existing groups in adduser,
840 - added PAM support for chage (bind to "chage" PAM config file) also
841 added PAM support for all other small tools like chpasswd, groupadd,
842 groupdel, groupmod, newusers, useradd, userdel, usermod (bind to common
843 "shadow" PAM config file) - this modificaytions mainly based on
844 modifications prepared by Janek Rękojarski <baggins@pld.org.pl>,
845 - many small fixes and improvments in automake (mow "make dist"
847 - added cs translation (Jiri Pavlovsky <Jiri.Pavlovsky@ff.cuni.cz>).
849 shadow-20000826 => shadow-20000902
851 This is probably the last release from me.
852 Tomasz Kloczko <kloczek@rudy.mif.pg.gda.pl> is the new maintainer.
855 (I'm still interested to know what is going on with this package,
856 which is fairly important to many Linux distributions, so please
857 Cc: marekm@linux.org.pl in any related discussions - just don't
858 expect me to respond quickly...)
860 Previous warning still applies - be careful!
862 - applied some of the Red Hat patches (revised slightly), thanks to
863 Bernhard Rosenkraenzer <bero@redhat.de>: fix for truncated long
864 lines (>8K) in /etc/group, send SIGHUP to nscd (caching daemon
865 in glibc 2.1.x) after changing anything, add usermod -L and -U
866 options, remove LOG_CONS from openlog(), chage -d and -E handles
867 dates in yyyy-mm-dd format ('/' is not required)
870 shadow-19990827 => shadow-20000826
872 WARNING: this release is not tested (other than that it compiles for me),
873 please be careful. Previous release was a year ago, so it is really time
874 to release something and start looking for a new, better maintainer...
875 (I've been extremely busy recently. Credit for most of the real work,
876 such as complete PAM support, should go to Ben Collins <bcollins@debian.org>
877 who maintains this package for Debian.)
879 - merged most of the changes from Debian (not all of them yet, PAM support
880 should be complete but is not tested - need to upgrade to potato first)
881 - added Polish translations of manual pages from PLD
882 - change sulog() to not depend on global variables oldname, name
883 - try to not follow symbolic links when deleting files recursively
884 in userdel (still not perfect, safest to do it in single user mode)
885 - removed workarounds for ancient (pre-ANSI) C compilers - use gcc!
886 (a few ANSI C constructs were used already, and no one complained)
887 - updated author's e-mail address (jfh@bga.com -> jfh@austin.ibm.com)
889 shadow-19990709 => shadow-19990827
891 - upgrade to autoconf-2.13, automake-1.4, libtool-1.3.3
892 - i18n: added French translation by Vincent Renardias <vincent@ldsol.com>
893 - i18n: added Swedish translation by Kristoffer Brånemyr <ztion@swipnet.se>
894 - logoutd no longer reads /etc/logoutd.mesg at startup - instead, read
895 it when sending to luser's tty (no need to reload with SIGHUP)
896 - added support for "usergroups" feature often found in Linux distributions
897 (if USERGROUPS_ENAB in login.defs set to "yes", uid != 0, uid == gid, and
898 username == groupname, then set umask to 002 instead of 022)
899 - Debian: pwck and grpck are now run from a daily cron job (root will
900 receive an e-mail if something is wrong), and at system startup
901 - added support for setting umask in /etc/limits
902 - when using OPIE, re-prompt with echo on after empty password was entered
903 - GETPASS_ASTERISKS now run time configurable (login.defs)
904 - getpass() now uses stdin and stderr (not stdout) if it can't open /dev/tty
905 - getpass() allows all input to be erased using Control-U, and beeps when
906 too many characters are entered
907 - removed obsolete sgtty support, in 1999 everyone should have termios :)
908 - Debian: tar wrapper no longer needed to build packages as non-root user
909 (install libtricks, and use "dpkg-buildpackage -rfakeroot" instead)
910 - Debian: changes for GNU Hurd by Marcus Brinkmann <brinkmd@debian.org>:
911 dpkg-architecture, cross compilation, only build passwd, add
912 etc/login.defs.hurd conffile, conditionalize CBAUD
913 - newgrp sets $HOME before running the new shell
914 - both "sg group command" (usage message) and "sg group -c command"
915 (man page) work, updated both the usage message and the man page :)
916 - i18n: added missing _() for some translatable strings
918 shadow-19990607 => shadow-19990709
920 - added PAM support to chfn and chsh (thanks to Thorsten Kukuk)
921 - fixed a bug in newgrp if the user is in >= 17 groups
922 - added @LIBSKEY@ to LDADD for all programs (for some reason,
923 almost all programs need it if skey/opie support is enabled)
924 - changed grpconv/grpunconv to compile with --disable-shadowgrp
925 - changed faillog to do something (assume -p) with no options specified
926 - updated version of the udbachk passwd/shadow/group file integrity
927 checker (contrib/udbachk.v012.tgz)
929 shadow-19990307 => shadow-19990607
931 - upgraded to libtool-1.2, latest config.{guess,sub}
932 - added missing #include "defines.h" in libmisc/login_desrpc.c - thanks
933 to almost everyone for reporting it :-)
934 - moved PAM-related defines to pam_defs.h
935 - added some braces to if/else to avoid egcs warnings
936 - started adding PAM support to login (based on util-linux, not finished yet)
937 - changed "!" to "x" for pw_passwd in src/newusers.c
938 - a few more Y2K fixes
939 - added contrib/udbachk.tgz (passwd/shadow/group file integrity checker),
940 thanks to Sami Kerola
941 - Debian: made /etc/{limits,login.access,login.defs,porttime,securetty}
942 files all mode 0600 (Bug#38729 - login: /etc/limits is world readable)
943 - updated mailing list information (moved again, now hosted by SuSE),
944 updated README.mirrors, other minor documentation updates
945 - made getpass work with redirected stdin
946 - new readpass echoing asterisks disabled by default by popular demand
947 (can be enabled at compile time: ./configure --enable-readpass)
948 - the random number of asterisks in readpass is now more random
949 (random number generator initialization was missing)
950 - commented out --enable-md5crypt (obsolete) in configure.in
951 - when checking for libskey, link with -lcrypt if libcrypt is available
952 (otherwise the configure test for libskey fails - libskey needs libcrypt)
953 - added Package/Version ident strings (so you can use the RCS "ident"
954 command to check any binary, which version of shadow it comes from)
956 shadow-981228 => shadow-19990307
958 - added support for setting process priority in /etc/limits
959 - i18n: updated Greek translation
960 - i18n: added Polish translation by Arkadiusz Miskiewicz
961 - documented the -p option in useradd.8 and usermod.8 man pages
962 - some "const" gcc warning fixes
963 - attempt to fix lib/snprintf.c compilation problems
964 - added restart/reload/force-reload to /etc/init.d/logoutd (found by lintian)
965 - always require password for root logins (even with NO_PASSWORD_CONSOLE)
966 - workaround for RedHat's CREATE_HOME feature in /etc/login.defs
967 - changed to Y2K compatible version numbering
968 - more Y2K fixes, use the ISO 8601 date format (yyyy-mm-dd) for default
969 values of user-entered dates (you can still enter dates in any format
970 supported by GNU date)
971 - oops, added doc/README.nls to list of files to distribute
972 - added missing sanitize_env() call to src/login.c
973 - debian/rules installs /bin/login non-setuid by default, just in case...
974 - build Debian packages with cracklib support (depends on cracklib-runtime)
976 shadow-980724 => shadow-981228
978 - login now clears the username in argv[] (in case someone types the
979 password instead of username, by mistake)
980 - i18n support, Greek translation (Nikos Mavroyanopoulos), see README.nls
981 - updated author's e-mail address (jfh@tab.com -> jfh@bga.com)
982 - new getpass() replacement that displays *'s (Pavel Machek)
983 - no password required when logging in from ttys listed under
984 NO_PASSWORD_CONSOLE in login.defs (Pavel Machek)
985 - fixed limits code so RLIMIT_AS should work
986 - upgraded to Debian 2.0
987 - built a new machine (P2 350MHz, 64MB RAM) so the thing can be compiled
988 in reasonable time again
989 - upgraded to automake-1.3, libtool-1.0h (also new config.guess and
990 config.sub that work on i686)
991 - usermod fixed to handle group names starting with digits (not recommended)
993 shadow-980626 => shadow-980724
995 - security: login no longer gives you a root shell if setgid()
996 or initgroups() or setuid() fails for any reason, discovered
997 by Ted Hickman <thickman@sy.net>
998 - remove libshadow.so -> libshadow.so.x.x symlink after install
999 - a few int -> uid_t type cleanups
1000 - fail immediately (don't retry) in *_lock() if euid != 0
1001 - added sample PAM config files etc/pam.d/{passwd,su}
1002 - preliminary PAM support in su (untested - use at your own risk,
1003 comments and patches welcome!)
1004 - cleanup and more comments in OPIE code (Algis Rudys)
1005 - added support for TCFS (Transparent Cryptographic File System)
1006 (use ./configure --with-libtcfs, see http://tcfs.dia.unisa.it/
1007 for more info), thanks to Aniello Del Sorbo
1009 shadow-980529 => shadow-980626
1011 - fixed bug in commonio_lock() (infinite recursion if lckpwdf() not
1012 used and database cannot be locked), thanks to Jonathan Hankins
1013 - fixed bug in copy_tree() (NUL-terminate readlink() results),
1014 thanks to Lutz Schwalowsky
1015 - no need to press Enter after Ctrl-C to interrupt password prompt
1016 - removed a few harmless gcc warnings
1017 - secure RPC login disabled if <rpc/key_prot.h> not found (glibc 2.0)
1018 - faillog.8: changed /usr/adm -> /var/log
1019 - pwconv.8: documented that it may fail on invalid password files
1021 shadow-980417 => shadow-980529
1023 - fixed "interesting" strzero() bug introduced by me in 980417:
1024 strzero(cp) didn't work as intended (the macro used a local
1025 variable called "cp" - oops...); Leonard N. Zubkoff was the
1026 first person to report it - thanks!
1027 - fixed usermod -e to accept empty argument (like useradd),
1028 thanks to Martin Bene
1029 - several changes from Debian 980403-0.2, see debian/changelog
1030 - added contrib/shadow-anonftp.patch (not yet merged, sorry...)
1031 thanks to Calle Karlsson
1033 shadow-980403 => shadow-980417
1035 - fixed login session limits (again - broken since 980130)
1036 - more symbolic constants for exit status values
1037 - fixed logoutd to work with 8-character usernames in utmp
1038 (no room for terminating NUL!)
1039 - various fixes to make the code more glibc2-friendly
1040 - updated doc/cracklib26.diff (fix for empty gecos, etc.)
1041 - updated the files in redhat/ from shadow-utils-970616-11.src.rpm
1044 shadow-980130 => shadow-980403
1046 - security: su now creates the sulog file (if enabled and doesn't
1047 already exist) with umask 077
1048 - hopefully removed arbitrary group size limits (not yet for
1049 shadow groups though - sgetsgent() still needs a rewrite,
1050 but I don't want to delay this release any longer...)
1051 - fixed NULL dereference in groupmod -n
1053 shadow-971215 => shadow-980130
1055 - Debian binary packages can be built without root privileges
1056 (tar wrapper - debian/tar.c)
1057 - new subdir "redhat" (needs more work, see redhat/README)
1058 - in several places, exit(127) if exec fails with ENOENT, and
1059 exit(126) on other errors (as in ksh and bash)
1060 - renamed getpass() and md5_crypt() to libshadow_* to avoid name
1061 conflicts with libc functions - md5_crypt() is also in libcrypt.a
1062 on Linux/PPC, thanks to Anton Gluck <gluc@midway.uchicago.edu>
1063 - handle crypt() returning NULL (possible according to Single Unix
1064 Spec) more gracefully (exit instead of SIGSEGV)
1065 - fixed bug in putgrent() that showed up when realloc() moved the
1066 buffer while expanding it, thanks to Floody <flood@evcom.net>
1067 - fixed bug in login session limits (with a limit set to N logins,
1068 only N-1 logins were allowed), thanks to Floody <flood@evcom.net>
1069 - upgraded to libtool-1.0h (now recognizes GNU ld on Debian 1.3.1)
1070 - newer config.guess and config.sub (should work on x86 for x > 5)
1071 - removed doc/automake-1.0.diff (obsoleted by automake-1.2)
1072 - added doc/cracklib26.diff (some patches for cracklib-2.6)
1073 - documented more (not all yet) login.defs(5) settings
1074 - replaced more exit status numeric values with #defines
1075 - shadow-utils.spec now generated from shadow-utils.spec.in
1076 (so I don't have to edit version numbers for every new release)
1077 - groupadd -f option, based on RedHat's shadow-utils-970616-9 patch
1078 ("force" - exit(0) if the group already exists); other RedHat-
1079 specific options not added yet (best done in a perl script that
1080 runs useradd/usermod/groupadd - see Debian's adduser-3.x)
1081 - added -O option (override login.defs values) to useradd and groupadd
1082 - if usermod can't update the group file(s), exit(10) but update the
1083 password file(s) anyway (as documented by Solaris man page)
1084 - useradd should no longer set sp_expire to the current date (oops)
1085 - configure.in: added --enable-desrpc, check for gethostbyname in libc
1086 before trying libnsl (necessary for Solaris; not for Linux or Irix,
1087 even though libnsl may be present), fixed pw_age/pw_comment/pw_quota
1088 detection, setpgrp vs. setpgid, other minor tweaks
1089 - various */Makefile.am tweaks
1090 - login.defs: added FAKE_SHELL - program to run instead of the login
1091 shell, with the real shell in argv[0] (Frank Denis)
1092 - login.defs: ignore case in yes/no settings
1093 - more E_* defines instead of hardcoded numbers for exit()
1094 - added sanitize_env() for setuid programs
1095 - login_desrpc() checks for getnetname() errors
1096 - new password is not "too similar" if it is long enough
1097 - replacement strstr() was static, no one noticed :-)
1098 - {pw,spw}_lock() and {pw,spw}_unlock() track the lock count and call
1099 lckpwdf() and ulckpwdf() as needed, *_lock_first() hack removed
1100 - login sets $REMOTEHOST for remote logins
1101 - added newgrp -l option (Single Unix Spec, same as "-")
1102 - EXPERIMENTAL shared lib support using libtool (libshadow.so saves about
1103 200K of disk space on Linux/x86), enabled by default if supported by
1104 the system, use ./configure --disable-shared if it causes any problems.
1105 Warning: libshadow.so is intended for internal use by this package
1106 only - binary compatibility with future releases is not guaranteed.
1107 There should be no need to link any other programs with libshadow.so -
1108 the libshadow.so -> libshadow.so.x.x symlink is unnecessary.
1109 - pam_strerror() takes one or two arguments, depending on the Linux-PAM
1110 version (!) - added check to configure; fixed do_pam_passwd prototype
1111 - libmisc/login_access.c should compile on Linux/PPC and Solaris
1112 - added information about the new ftp site to doc/README.mirrors
1114 shadow-971001 => shadow-971215
1116 - added workaround for NYS libc 5.3.12 (RedHat 4.2) bug to grpck
1117 - updated the RPM .spec file
1118 - renamed rlogin() to do_rlogin() to avoid Linux/PPC build problem
1119 (glibc defines something else named "rlogin" in utmpbits.h ?)
1120 - added MD5 checksums in Debian packages
1121 - added -p and -g options to vipw (edit the password or group file
1122 respectively, regardless of the command name in argv[0])
1123 - removed old DBM support (NDBM code is still there)
1124 - fixed a bug in gpasswd: current username was incorrectly identified as
1125 "root" because of setuid(0) done too early. It may be a security hole
1126 when using shadow groups - if "root" is listed as a group administrator,
1127 any user can add/remove members in that group. Thanks to Jesse Thilo.
1128 - gpasswd now logs which user (root or group admin) made the changes
1129 - passwd now uses $PATH to search for the chfn, chsh, gpasswd commands
1130 - newgrp and add_groups() allocate supplementary group lists dynamically
1131 - moved check_shell() from src/chsh.c to libmisc/chkshell.c
1132 - CHFN_RESTRICT in login.defs can now specify exactly which fields may be
1133 changed by regular users (any combination of letters "frwh")
1134 - fixed contrib/pwdauth.c segfault with non-existent usernames
1135 - minor change in lib/getdef.c to handle quotes better (Juergen Heinzl)
1136 - new date parsing code (from GNU date) used by useradd, usermod, chage
1137 - upgraded to automake-1.2, added libtool-0.7 (no libshadow.so yet)
1138 - converted code to ANSI C, added ansi2knr (untested - use gcc!)
1139 - fixed useradd -G segfault (one '*' that shouldn't be there)
1140 - allow 8-bit characters in chfn
1141 - added support for RLIMIT_AS (max address space) in libmisc/limits.c
1142 - changed the handling of NIS plus entries in password files
1143 - some more tweaking in various debian/* files
1144 - logoutd uses getutent() instead of reading utmp file directly
1145 - fixed lckpwdf() called twice (and failing) when changing password
1146 if the user is not listed in /etc/shadow (Mike Pakovic)
1147 - erase and kill characters left unchanged if not defined in login.defs
1149 shadow-970616 => shadow-971001
1151 - Debian: mkpasswd no longer installed (dbm files not supported)
1152 - chpasswd checks for shadow/non-shadow at run time, too
1153 - added chpasswd -e (input file with encrypted passwords) - Jay Soffian
1154 - changed libmisc/login_access.c as suggested by Dave Hagewood
1155 - replaced sprintf() with snprintf() in several places
1156 - added lib/snprintf.[ch] (from XFree86) for systems without snprintf()
1157 - minor tweaks in contrib/adduser.c (/usr/local -> /usr)
1158 - non-root users can only run su with a terminal on stdin
1159 - temporarily disabled DES_RPC because getsecretkey() causes login to hang
1160 for 5 minutes on at least one RH 4.0 system. Not sure if this is a bug
1161 in libc, or system misconfiguration. Needs further investigation.
1162 - check for strerror() and -lrpcsvc (should compile on SunOS again)
1163 - fixed free() called twice in libmisc/mail.c
1164 - added information about mirror sites (doc/README.mirrors)
1165 - updated pwconv.8 and pwunconv.8 man pages
1166 - "make install" now installs pwconv, pwunconv, grpconv, grpunconv
1167 - pwauth.8 no longer installed (AUTH_METHODS not supported by default)
1168 - corrected su.1 man page ($SHELL not used)
1169 - no need for --with-md5crypt if the MD5-based crypt() is already in libc
1170 (or another library specified in /etc/ld.so.preload - Linux ld.so 1.8.0+)
1171 - cleaned up PASS_MAX in getpass() (127 always assumed)
1172 - default editor for vipw changed from /bin/ae to a real editor :)
1174 shadow-970601 => shadow-970616
1176 - fixed execlp call (missing NULL) in src/vipw.c
1177 - vipw now preserves permissions on edited files
1178 - commented out the xdm-shadow hack in shadowconfig
1179 - improved RedHat spec file (Timo Karjalainen)
1180 - updated mailing list information
1181 - added information about the shadow paper (doc/README.shadow-paper)
1182 - renamed doc/console.c.spec (confused RPM)
1184 shadow-970502-2 => shadow-970601
1186 - fixed a typo in libmisc/mail.c causing login to segfault
1187 if MAIL_CHECK_ENAB=yes (sorry!)
1188 - patches for OPIE support (Algis Rudys) (untested)
1189 - programs that modify /etc/passwd or /etc/shadow will use
1190 lckpwdf() if available
1191 - now compiles with PAM support! (still untested)
1192 - cosmetic error message changes (prefixed by argv[0]:)
1194 shadow-970216 => shadow-970502-2
1196 - shadow group support fixes (grpconv didn't work - for some
1197 reason, putsgent() returns 1 instead of 0 on success;
1198 now -1 = failure, anything else = success)
1199 - upgraded to autoconf-2.12
1200 - pwconv and pwunconv now follow other UN*X systems and SVID3
1201 (modify files in place), original versions moved to "old"
1202 - scologin.c moved to "old" (it was only for SCO Xenix) so
1203 people stop sending patches for scologin.c gcc warnings :)
1204 - don't use the MD5* functions in libmisc/salt.c (glibc has
1205 the new md5 crypt(), but no <md5.h> and MD5* functions!)
1206 - support for MkLinux, Solaris, JIS, Qmail (Frank Denis)
1207 - "passwd -S -a" now really works
1208 - support for Debian, vipw, a few fixes (Guy Maor)
1209 - src/login.c radius bug fix (Rafal Maszkowski)
1210 - ISSUE_FILE_ENAB -> ISSUE_FILE in the sample /etc/login.defs
1211 - fixes for glibc and DES_RPC (Thorsten Kukuk)
1212 - limits.5 man page (Luca Berra)
1213 - expiry will work setgid shadow too, removed euid 0 check
1214 - added check for a64l() to configure (glibc)
1216 shadow-961025 => shadow-970216
1218 - major rewrite of *io.c (no more 4 copies of almost identical code)
1219 - use fsync() (if available) instead of sync() when updating password files
1220 - use fchmod() and fchown() if available
1221 - keep the NIS "plus on a line by itself" entries at end of passwd/group
1222 - configure checks location of passwd/chfn/chsh programs (/usr/bin or /bin)
1223 - passwd -S -a: list information about all users (root only)
1224 - passwd -k: change only expired passwords
1225 - passwd -q: quiet mode
1226 - first attempt at PAM support in passwd
1227 - passwd updates the non-shadow password if /etc/shadow exists but the
1228 user has no shadow password
1229 - passwd logs who changed the password, added hook to allow non-root
1230 administrators who can change passwords (not implemented yet)
1231 - su sets $HOME even without the "-" option (suggested by Joey Hess)
1232 - added -p (set encrypted password) option to useradd and usermod
1233 (idea from hpux10 - undocumented option used internally by SAM)
1234 - useradd -D -e does the right thing (set default expiration date)
1235 - USERDEL_CMD in login.defs instead of hardcoded {ATRM,CRONTAB}_COMMAND
1236 because there are just too many systems that need different commands
1237 - removed #ifdef FAILLOG_LOCKTIME (now always enabled), warning: the
1238 faillog file format has been changed (somewhere between 960129 and
1239 960810), please truncate the old file (if any) to zero length
1240 - ISSUE_FILE (may be different from /etc/issue) instead of ISSUE_FILE_ENAB
1241 - wtmp, lastlog, faillog file location guessed by configure
1242 - separate checks for invalid user and group names, max username length
1243 based on struct utmp (it's not always 8 characters)
1244 - pwck and grpck now check for invalid user/group names
1245 - pwck -q (quiet, report only serious problems) option added
1246 - separate cleaner sgetpwent() without the NIS magic
1247 - NIS entries ignored (never changed) by *io.c, pwck, grpck
1248 - various code cleanups
1249 - new get_my_pwent() function for getting my own username, uid etc.
1250 - faillog opens the file read-write if possible (even if not root)
1251 - passwd -S allowed for normal users (for their own uid only)
1252 - handle the case of login denied to passwordless accounts better
1253 ("Login incorrect" without "Password:" prompt looks strange)
1254 - corrected author information and removed a copyright restriction
1256 shadow-960925 => shadow-961025
1258 - fixed a few typos in shadow group code
1259 - don't check for names starting with 'r' to determine if the shell
1260 is restricted, use /etc/shells instead (for the "rc" shell)
1261 - removed extra definition of LASTLOG_FILE in configure.in
1262 - expiry no longer segfaults if no /etc/shadow
1263 - userdel -r "can't remove mailbox" warning no longer printed on success
1264 - useradd exit codes changed to match hpux10 man page
1265 - fixed possible fd leak etc. in file locking code (lib/commonio.c)
1267 shadow-960920 => shadow-960925
1269 - bug fixes to the new environment code using malloc
1270 - use hardcoded names instead of basename(argv[0]) for openlog() in programs
1271 that users can run (chage, chfn, chsh, gpasswd, login, newgrp, passwd, su)
1272 - small fix to isexpired(), and use it in passwd as well
1273 - use strftime() and strptime() if available
1274 - added chmod 600 /etc/passwd- at the end of pwconv5 (backup file may
1275 contain encrypted passwords!)
1276 - pass size to change_field (chage, chfn, chsh) instead of assuming BUFSIZ
1277 (nothing bad happened yet, just a cleanup)
1278 - gpasswd should work with both shadow and non-shadow group passwords
1279 - detect unsupported options if no shadow (gpasswd, useradd, usermod)
1280 - passwd -e for sunos4 (ATT_AGE), untested
1281 - read environment from file (ENVIRON_FILE in login.defs), idea from ssh
1282 - small fix to l64a()
1283 - passwd prints a message after password successfully changed (for things
1284 like poppassd which run passwd and expect some output)
1285 - passwd logs if password was changed by root (as opposed to a luser)
1286 - passwd uses current uid if no username argument and getlogin() fails
1288 shadow-960910 => shadow-960920
1290 - use malloc for environment variables, no more MAXENV (Juergen Heinzl)
1291 - newusers should work with both shadow and non-shadow passwords
1292 (still left to do: chpasswd, gpasswd)
1293 - login-static no longer compiled by default
1294 - more SYSLOG() macros
1296 shadow-960810 => shadow-960910
1298 - updated README.linux to point to the new ftp site
1299 - chfn and chsh optionally (CHFN_AUTH) prompt for password like util-linux
1300 - man pages now closer to LDP standards (Ivan Nejgebauer)
1301 - newgrp uses SYSLOG_SG_ENAB (not SU) as in the /etc/login.defs comments
1302 - obscure.c fixed to compile with HAVE_LIBCRACK
1303 - cosmetic message changes in age.c
1304 - utmp open error check fixed in utmp.c
1305 - grpunconv added (Michael Meskes)
1306 - login reports invalid login time, not "Login incorrect" (Ivan Nejgebauer)
1307 - logoutd sets OPOST before writing to the tty (Ivan Nejgebauer)
1308 - sulogin: don't use syslog(), other minor changes (Ivan Nejgebauer)
1309 - passwords can be changed if sp_max == -1 (now considered infinity)
1310 - usermod: don't use sizeof(struct lastlog) when writing to faillog (ugh)
1311 - started replacing lots of #ifdef USE_SYSLOG with cleaner macros
1312 - contrib/rpasswd.c added (Joshua Cowan)
1313 - PASS_MAX is 127 with MD5_CRYPT (not just for Linux - sunos4 too...)
1314 - workarounds for a RedHat NYS libc getspnam() bug (if /etc/shadow
1315 doesn't exist, it succeeds and returns sp_lstchg==0 instead of -1).
1317 shadow-960129 => shadow-960810
1319 - automake, configure checks for libcrypt and libcrack (Janos Farkas)
1320 - added --enable-shadowgrp to configure (shadow groups disabled by default)
1321 - should compile on SunOS 4.1.x - but it does NOT mean that it works :-)
1322 - login sets HUSHLOGIN=TRUE or FALSE (for shell startup scripts etc.)
1323 - hopefully removed all the rcsid warnings
1324 - contrib/atudel perl script to remove at jobs (thanks to Brian Gaeke)
1325 - resource limits (Cristian Gafton)
1326 - workaround for buggy init/getty(?) leaving junk in ut_host on RedHat
1327 - more fixes in man pages
1328 - pwck and grpck no longer suggest to run mkpasswd if *DBM not compiled in
1329 - most programs (groupadd, groupdel, groupmod, grpck, login, passwd, pwck,
1330 su, useradd, userdel, usermod) should now work with both shadow and
1331 non-shadow passwords/groups (check for /etc/shadow and /etc/gshadow at
1332 run time); a few programs still left to do
1333 - mailbox mv/chown/rm in usermod/userdel (suggested by Cristian Gafton)
1334 - new contrib/adduser.c from Chris Evans
1335 - lots of other minor changes
1336 - source tree reorganization, GNU autoconf, portability cleanups
1337 - basename() renamed to Basename() to avoid name space confusion
1338 - new programs to create /etc/shadow and /etc/gshadow: pwconv5, grpconv
1339 - newgrp cleanup and a few fixes
1340 - useradd uses PASS_MAX_DAYS, PASS_MIN_DAYS and PASS_WARN_AGE
1341 - don't make the first group member the group admin by default
1342 (define FIRST_MEMBER_IS_ADMIN to get the old gpasswd behaviour)
1343 - password aging constants, NGROUPS_MAX and syslog stuff in only one
1344 place (defines.h) instead of repeating it in all source files...
1345 - added userdel -r safety check (refuse to remove the home directory
1346 if it would result in removing some other user's home directory)
1347 - usermod -u now correctly checks for non-unique uid (unless -o)
1348 - sync() after updating password files, just to be more safe
1349 - "make install" should install /etc/login.defs if it doesn't exist
1350 - new option to control what happens if we can't cd to the home directory
1351 (DEFAULT_HOME in /etc/login.defs)
1352 - enter the home directory as the user, not as root (for NFS etc.)
1353 - added check for Slackware bugs (nobody UID -1) in pwck and grpck
1354 - new CONSOLE_GROUPS feature (thanks to pacman@tardis.mars.net), it is
1355 possible to add specified groups (floppy etc.) for console logins
1356 - new faillog feature: lock account for specified (per-user) time since
1357 the last failure after exceeding the failure limit
1358 - new man pages (gpasswd.1, login.access.5, suauth.5)
1359 - fixes in man pages, renamed *.4 to *.5
1360 - new "contrib" directory (two adduser programs)
1361 - changed some "system" to "feature" #ifdefs (autoconf someday...)
1362 - sulogin no longer requires to be run from init, should work from rc
1364 - changes to prevent unshadowing with libc SHADOW_COMPAT (get info
1365 using xx_locate(), modify it and call xx_update(), don't write back
1366 anything returned by getpwnam() etc.)
1367 - stupid bug fixed in lastlog.c
1368 - don't move non-directories in "usermod -m"
1369 - don't log unknown usernames (passwords mistyped for usernames) (lmain.c)
1370 - macros to get around ancient compilers which don't like prototypes
1371 - make more use of "const" (not everywhere yet)
1372 - added #ifdef AUTH_METHODS - very few people use administrator defined
1373 authentication methods because many programs are not aware of them;
1374 not supporting them makes the code simpler
1375 - new "save" and "restore" Makefile targets, thanks to Rafal Maszkowski
1376 - sgetgrent() in libshadow.a is optional, some versions of libc have it,
1377 see HAVE_SGETGRENT in config.h (grent.c)
1378 - don't use continued lines in /etc/group, the standard getgr*() functions
1379 don't support that (grent.c)
1380 - removed the third main() argument (according to libc docs, not allowed by
1381 POSIX.1 - use environ instead) (lmain.c, smain.c, newgrp.c, sulogin.c)
1382 - login access control (lmain.c, login_access.c)
1383 - added copyright notice to login_access.c (from logdaemon-5.0)
1384 - detailed su access control (smain.c, suauth.c) - thanks to Chris Evans
1385 - added closelog() in su before executing the shell (smain.c)
1386 - getting current user name changed (smain.c)
1387 - "x" instead of "*" in pw_passwd, consistent with pwconv (useradd.c)
1388 - getpass() shouldn't return NULL except on errors (getpass.c)
1389 - moved isexpired() to isexpired.c (now part of libshadow.a) from age.c
1390 - SunOS4-like passwd -e (force change on next login) (isexpired.c, passwd.c)
1391 - can use shadow support in new versions of Linux libc instead of libshadow.a,
1392 see HAVE_SHADOWPWD, HAVE_SHADOWGRP in config.h.linux (shadow.c, gshadow.c)
1393 - "no shadow password" not logged, the same /bin/login should work with both
1394 shadow and non-shadow passwords (lmain.c)
1395 - some cleanup in various places (lmain.c, passwd.c)
1396 - new program to verify username/password pairs, for xlock etc.; it is not
1397 installed by default, read the comments first (pwdauth.c)
1398 - authentication programs run with empty environment for safety (pwauth.c)
1399 - added missing fstat error checks (faillog.c, lastlog.c, setup.c, *io.c)
1400 - common code separated from *io.c (commonio.c)
1401 - ownership and permissions on password files are now preserved (we may try
1402 to make more use of setgid and setuid non-root programs in the future)
1403 - added (untested) MD5-based crypt() from FreeBSD (md5crypt.c), see
1404 MD5_CRYPT in config.h.linux and MD5_CRYPT_ENAB in login.defs.linux
1405 - termios/termio/sgtty macros cleaned up a bit
1407 shadow-951218 => shadow-960129
1409 Emergency bug fix release - no new features since 951218. There are many
1410 new changes, but this bug really can't wait until they are tested.
1412 Probably all previous versions of the shadow suite have a serious bug which
1413 makes it possible to overwrite the stack by entering very long username at
1414 the login prompt. This can give root access to any remote user!
1416 Changed the maximum size in login.c from BUFSIZ (1024) to 32 (to match
1417 size of the array in lmain.c). Aaargh!!!
1419 shadow-951203 => shadow-951218
1422 - Linux utmp handling fixes (utmp.c)
1423 - last failure date printing fixes (failure.c)
1424 - minor fix to compile with USE_CRACKLIB (obscure.c)
1425 - eliminated the use of snprintf (env.c, lmain.c, login.c, shell.c, smain.c)
1426 - basename.c added, replacing duplicated code in various places
1427 - "su -" runs the shell with '-' in argv[0] again (smain.c)
1428 - removing at/cron jobs cleaned up (userdel.c)
1429 - /etc/gshadow should not be world-readable (sgroupio.c)
1430 - if fflush() failed, files were not closed (*io.c)
1431 - login prompt is now "hostname login: " on Linux (lmain.c, login.c)
1432 - "save" and "restore" targets commented out (don't work) (Makefile.linux)
1433 - some minor cleanups for gcc -Wall (unused variables etc.)
1434 - removed README.FIRST (copyrights are OK now)
1435 - updated ANNOUNCE, README.linux, WISHLIST
1436 - as suggested, converted to RCS
1438 shadow-3.3.2-951127 => shadow-951203-jfh
1441 - Added the BSD-style copyright to all of the files. Any files with the
1442 old copyright have multiple copyright holders and need to be cleanroomed
1443 to produce BSD-style copyrightable files, or I need to get the consent
1444 of the others to change the copyright.
1445 - Changed the ANNOUNCE file to not refer to the README.FIRST file. Now
1446 that all of the files should have the correct copyright there is no need
1447 to refer to that e-mail message.
1448 - Changes SCCS strings to "%W% %U% %G%". Marek needs to either convert to
1449 RCS or check into SCCS and then checkout. I'd suggest using RCS ;-)
1451 jfh@rpp386.cactus.org
1453 shadow-3.3.2-951106 => shadow-951127
1455 Note: for now this code only supports Linux. All the #ifdef's are there
1456 (and will be; support for at least SunOS 4.1.x would be nice) but:
1457 - I had to fix some potential security problems resulting from sloppy
1458 coding (no bounds checking), and it was easier for me to use snprintf()
1459 (not available on many systems, unfortunately), I'll fix that later.
1460 Old versions of Linux libc don't have snprintf() either, and the one
1461 in libbsd.a ignores the max size - don't use it! (libc-4.6.27 is OK)
1462 - I am lazy and only updated Makefile.linux and config.h.linux this time
1463 - I don't have root access to non-Linux systems (this means no testing)
1464 - this code needs some major reorganization, which will (hopefully)
1468 - some code cleanup, prototypes.h, defines.h, Makefile and config.h changes
1469 - login can be statically linked (not that I think it's a good idea, better
1470 fix the telnetd, but paranoid people will like it :-)
1471 - login is installed non-setuid by default
1472 - check for NULL from getpass()
1473 - wipe cleartext password from getpass() when no longer needed (pwauth.c)
1474 - use standard "Password: " prompt by default (pwauth.c)
1475 - hopefully fixed bogus sigaction() stuff (Linux only) (getpass.c)
1476 - oops, setrlimit wants bytes, ulimit wants 512-byte units (lmain.c)
1477 - Linux has <lastlog.h>
1478 - print ll_host on Linux too (lmain.c)
1479 - size checking in various places (setuid root programs, argh!)
1480 - preserve TERM from getty (lmain.c)
1481 - don't ignore SIGHUP (lmain.c)
1482 - :%s/setenv/set_env/g (setenv(3) conflict) (env.c, lmain.c, login.c)
1483 - remove LD_xxx (env.c)
1484 - use bzero() instead of memset() for BSD portability and less #ifdef's
1485 (if the system has no bzero(), implement it as a macro using memset())
1486 - the above fixes wrong order of memset() parameters (log.c)
1487 - use getutent/pututline instead of doing it by hand (utmp.c)
1488 - added the new settings to login.defs.linux
1489 - added login_access.c to the distribution (not used yet)
1493 shadow-3.3.2 => shadow-3.3.2-951106
1495 - added dummy pad.c and #ifdef'ed out references to pad_auth (pwauth.c)
1496 - malloc/strdup error checking, hopefully no more core dumps...
1497 - define HAVE_RLIMIT instead of HAVE_ULIMIT for Linux (config.h.linux)
1498 - changed pathnames on Linux to conform to new FSSTND (/var/log etc.)
1499 - larger buffer for cipher, for md5 crypt() if and when (encrypt.c, passwd.c)
1500 - use POSIX termios whenever possible on Linux
1501 - list.c, removed add_list/del_list from gpmain.c, user{add,del,mod}.c
1502 - strtoday.c, removed duplicates from chage.c, useradd.c, usermod.c
1503 - login -h only for root (lmain.c)
1504 - login -r not needed for Linux (lmain.c)
1505 - sample login.defs modified for Linux (login.defs.linux)
1506 - swapped chfn USAGE and ADMUSAGE (chfn.c)
1507 - added -u to passwd usage (passwd.c)
1508 - no #! check necessary for Linux (shell.c)
1509 - define OLD_CRON for some old incompatible Linux distributions (userdel.c)
1510 - PASS_MAX is now 127 (not 8) for Linux (getpass.c)
1511 - LOGIN_RETRIES, LOGIN_TIMEOUT, PASS_CHANGE_TRIES are no longer compiled in,
1512 can now be set in login.defs, old values are used as defaults (lmain.c)
1513 - unique uid/gid selection now more robust (useradd.c, groupadd.c)
1514 - UID_MIN, UID_MAX, GID_MIN, GID_MAX in login.defs (useradd.c, groupadd.c)
1515 - CRACKLIB_DICTPATH no longer compiled in, can be set in login.defs (passwd.c)
1516 - PASS_ALWAYS_WARN: warn about weak passwords even for root (passwd.c)
1517 - PASS_MAX_LEN, check truncated passwords again (obscure.c)
1518 - check for weak passwords too if previous password was empty (obscure.c)
1519 - CHFN_RESTRICT: don't let users change their full names (chfn.c)
1520 - Linux has getusershell(), use it (chsh.c)
1521 - check if the new shell is executable by the user (chsh.c)
1522 - sleep before printing "Login incorrect", not the other way around (lmain.c)
1523 - don't be picky about utmp only if any of -rfh flags given (lmain.c)
1524 - do "wheel group" more like BSD does (smain.c)
1525 - use getlogin() in su (smain.c)
1526 - UMASK from login.defs defaults to 077, not 0 (lmain.c, newusers.c)
1527 - #undef HAS_ATRM for Linux until atrm can do what we need (config.h.linux)
1528 - Linux has most commands in /usr/bin, not /bin (age.c, passwd.c, userdel.c)
1529 - ULIMIT from login.defs works on systems using setrlimit() too (lmain.c)
1530 - LOGIN_STRING should work now (pwauth.c, getdef.c)
1531 - kludge to avoid conflict with Linux <shadow.h> (gshadow.h)
1532 - mv Makefile Makefile.xenix ; mv config.h config.h.xenix - so that they are
1533 not lost when you copy the right ones to Makefile and config.h
1539 Original version, received directly from the author.