emo/shadow
1
0
Fork 0
Code Issues Pull Requests Packages Releases Activity

* src/su.c (prepare_pam_close_session): Extract the creation of a

Browse Source 
child and listening for signal in the parent from run_shell().
	prepare_pam_close_session() is now executed before the creation of
	the pam session and before the UID is changed. This allows to
	close the session as root.
This commit is contained in:
nekral-guest
2011-06-13 18:27:34 +00:00
parent 69371ba2c2
commit e9045e9f55
3 changed files with 58 additions and 39 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
NEWS
View File

@@ -46,6 +46,8 @@ shadow-4.1.4.3 -> shadow-4.1.5 UNRELEASED
* Do not forward the controlling terminal to commands executed with -c.
This prevents tty hijacking which could lead to execution with the
caller's privileges.
* Close PAM sessions as root. This will be more friendly to PAM modules
like pam_mount or pam_systemd.
- newgrp, sg, groupmems
* Fix parsing of gshadow entries.
- useradd