head	1.2;
access;
symbols
	RELENG_4_11_0_RELEASE:1.1.2.1
	RELENG_4_11:1.1.2.1.0.16
	RELENG_4_11_BP:1.1.2.1
	RELENG_4_10_0_RELEASE:1.1.2.1
	RELENG_4_10:1.1.2.1.0.14
	RELENG_4_10_BP:1.1.2.1
	RELENG_4_9_0_RELEASE:1.1.2.1
	RELENG_4_9:1.1.2.1.0.12
	RELENG_4_9_BP:1.1.2.1
	RELENG_4_8_0_RELEASE:1.1.2.1
	RELENG_4_8:1.1.2.1.0.10
	RELENG_4_8_BP:1.1.2.1
	RELENG_4_7_0_RELEASE:1.1.2.1
	RELENG_4_7:1.1.2.1.0.8
	RELENG_4_7_BP:1.1.2.1
	RELENG_4_6_2_RELEASE:1.1.2.1
	RELENG_4_6_1_RELEASE:1.1.2.1
	RELENG_4_6_0_RELEASE:1.1.2.1
	RELENG_4_6:1.1.2.1.0.6
	RELENG_4_6_BP:1.1.2.1
	RELENG_4_5_0_RELEASE:1.1.2.1
	RELENG_4_5:1.1.2.1.0.4
	RELENG_4_5_BP:1.1.2.1
	RELENG_4_4_0_RELEASE:1.1.2.1
	RELENG_4_4:1.1.2.1.0.2
	RELENG_4_4_BP:1.1.2.1
	RELENG_4:1.1.0.2;
locks; strict;
comment	@# @;


1.2
date	2001.08.10.19.24.34;	author markm;	state dead;
branches;
next	1.1;

1.1
date	2001.05.14.11.23.57;	author markm;	state Exp;
branches
	1.1.2.1;
next	;

1.1.2.1
date	2001.06.07.09.37.07;	author markm;	state Exp;
branches;
next	1.1.2.2;

1.1.2.2
date	2012.11.17.07.23.58;	author svnexp;	state Exp;
branches;
next	;


desc
@@


1.2
log
@Clean up this module very extensively. Fix the logging, the coding
standards and the option handling. This module is now much more easy
to maintain as a part of the FreeBSD tree.
@
text
@$FreeBSD: src/lib/libpam/modules/pam_krb5/TODO,v 1.1 2001/05/14 11:23:57 markm Exp $

Things for 1.1, in no particular order:

Check against Solaris 7, Solaris 8 beta. Check SEAM compatibility.
Check against Linux (Redhat, others?).
Check against HPUX.
Fix PAM flags checking.
Add more debugging for successful calls.
Move "entry" debugging up.
Check bounds on str* calls. [paranoia]

Get defaults from krb5.conf?
** Allow no-xrealm, this module typically used for local login **
** Add notes about runtime text relocation on Solaris **

@


1.1
log
@Bring in a few useful PAM modules.

pam_krb5 is a Kerberos 5 (Heimdal) authentication module.

pam_nologin checks for /etc/nologin and does the "usual stuff"
	if it is found, otherwise it silently succeeds.

pam_rootok silently succeeds if the user is root, otherwise
	it fails.

pam_wheel silently succeeds if the user is a member of group
	"wheel" (or another nominated group), and fails
	otherwise.

There is an issue with kerberosIV and kerberos5 - if both are
being built, then static linking fails with duplicate symbols.
This will take a bit of work to sort out in the kerberii.
@
text
@d1 1
a1 1
$FreeBSD$
@


1.1.2.1
log
@MFC: FreeBSD PAM stuff and cleaned up modules build. New modules.
@
text
@@


1.1.2.2
log
@Switch importer
@
text
@d1 1
a1 1
$FreeBSD: stable/4/lib/libpam/modules/pam_krb5/TODO 77869 2001-06-07 09:37:14Z markm $
@


