[Pkg-shadow-commits] r757 - trunk/debian/patches

[Nicolas FRANCOIS]

Author: nekral-guest
Date: 2006-01-03 21:02:34 +0000 (Tue, 03 Jan 2006)
New Revision: 757

Removed:
   trunk/debian/patches/479_nologin_static
Modified:
   trunk/debian/patches/series
Log:
Do not statically link nologin.


Deleted: trunk/debian/patches/479_nologin_static
===================================================================
--- trunk/debian/patches/479_nologin_static	2006-01-03 19:33:28 UTC (rev 756)
+++ trunk/debian/patches/479_nologin_static	2006-01-03 21:02:34 UTC (rev 757)
@@ -1,23 +0,0 @@
-Goal: link nologin statically.
-
-For security reasons, nologin is statically linked on FreeBSD.
-
-from the FreeBSD Makefile:
-# It is important that nologin be statically linked for security reasons.  A
-# dynamic non-setuid binary can be linked against a trojan libc by setting
-# LD_LIBRARY_PATH appropriately.  Both sshd(8) and logi(1) make it possible to
-# log in with an unsanitized environment, rendering a dynamic nologin binary
-# virtually useless.
-
-Index: shadow-4.0.14/src/Makefile.am
-===================================================================
---- shadow-4.0.14.orig/src/Makefile.am	2006-01-03 08:25:04.764973640 +0100
-+++ shadow-4.0.14/src/Makefile.am	2006-01-03 08:25:10.556797727 +0100
-@@ -67,6 +67,7 @@
- newgrp_LDADD   = $(LDADD) $(LIBPAM) $(LIBAUDIT)
- newusers_LDADD = $(LDADD)
- nologin_LDADD  =
-+nologin_LDFLAGS = -all-static
- passwd_LDADD   = $(LDADD) $(LIBPAM) $(LIBCRACK) $(LIBAUDIT)
- su_SOURCES     = \
- 	su.c \

Modified: trunk/debian/patches/series
===================================================================
--- trunk/debian/patches/series	2006-01-03 19:33:28 UTC (rev 756)
+++ trunk/debian/patches/series	2006-01-03 21:02:34 UTC (rev 757)
@@ -44,7 +44,6 @@
 437_su_-c_option
 423_su_arguments_are_concatenated
 478_nologin.8.xml
-479_nologin_static
 # 999-2 is about using cdbs. It does not patch upstream files
 # so shouldn't be here, but we keep it for the future
 # 999-2_build_using_cdbs