* NEWS, src/login.c: Also check if the authentication token of the

user has to be updated in case the user was already authenticated.
2009-04-19 16:22:17 +00:00
parent ca10b825c7
commit 131e95ffaf
3 changed files with 14 additions and 10 deletions
--- a/2
+++ b/2
@@ -5,6 +5,8 @@ shadow-4.1.3.1 -> shadow-4.1.3.2					UNRELEASED
 - login
  * Do not trust the current utmp entry's ut_line to set PAM_TTY. This could
    lead to DOS attacks.
+  * (PAM) Even if the user was already authenticated (-f flag), ask the
+    user to update his authentication token if needed.

 shadow-4.1.3 -> shadow-4.1.3.1						2009-04-15