head	1.10;
access;
symbols
	Real-Release-0-59:1.10
	Release-0-59:1.10
	pniam_change:1.9.0.2
	Real-Release-0-58:1.6
	Release-0-58:1.6
	broken-signals-0-57:1.5.0.2
	Release-0-56-last:1.4
	Release-0-57:1.5;
locks; strict;
comment	@# @;


1.10
date	99.03.28.08.16.50;	author saw;	state Rel;
branches;
next	1.9;

1.9
date	99.02.18.13.39.23;	author saw;	state Exp;
branches;
next	1.8;

1.8
date	98.11.26.09.22.02;	author saw;	state Exp;
branches;
next	1.7;

1.7
date	98.11.23.16.29.34;	author saw;	state Exp;
branches;
next	1.6;

1.6
date	98.06.13.06.39.28;	author saw;	state Exp;
branches;
next	1.5;

1.5
date	98.06.12.17.10.52;	author saw;	state Exp;
branches;
next	1.4;

1.4
date	98.06.12.16.24.57;	author saw;	state Exp;
branches;
next	1.3;

1.3
date	97.06.24.14.24.53;	author morgan;	state Exp;
branches;
next	1.2;

1.2
date	97.02.24.06.09.00;	author morgan;	state Exp;
branches;
next	1.1;

1.1
date	97.01.29.03.17.51;	author morgan;	state Exp;
branches;
next	;


desc
@@


1.10
log
@ - Style fixes.
 - ut_pid note was rewritten to reflect the current code.
@
text
@
$Id: CHANGELOG,v 1.9 1999/02/18 13:39:23 saw Exp $

-----------------------------

* Protection against std{in,out} abuse was implemented for setuid-root
  programs (su and passwd).

* A few bugs were fixed.

* When 'su' is invoked in a login mode ('su -') ut_sid field of utmp structure
  is set to the parent (su) pid.  The previous versions write child (shell) pid
  in the utmp file.  I think that parent pid is more close to the ut_sid field
  definition: getsid(2) result for this process group.

* '.-c' include files were converted into normal C files.
  The applications are linked with the corresponding '.o' files.

* Makefiles were cleaned up.  configure.in script for GNU autoconf
  was created.

* Source code was restructurized.  Pluggable library dependent code
  were moved to pamapps and pniamapps directories.  Common code
  was moved into the common directory.

* PNIAM support was started.

0.58 Fri Jun 12 17:55:21 MSD 1998, Andrey V. Savochkin <saw@@msu.ru>

* utmp_{open,close}_session() were modified to fail gracefully.

* pam_get_user() abuse was removed from utmp_open_session.

* wtmp file locking was rewritten.

* unnecessary malloc()s were eliminated from utmp_{open,close}_session().

* more accurate struct utmp clearing was implemented. Glibc had introduced
  additional fields and could do it further.

* utmp search was rewritten to be more compatible with libc.

* protection against unexpected SIGPIPEs was implemented.

* TODO file was revived.


0.57 Andrey V. Savochkin <saw@@msu.ru>

* a major code cleanup in 'su'.


0.56 whenever

* will only compile against libpam-0.59+

* added a default path for login's (both 'su -' and 'login')

* added new setuid binary: changeroot.

* removed default logout message (you can put it back if you like).

* port to Linux/Alpha (glibc has semi-broken utmp handling)

* reworked signal handling in 'su' to be a little more robust (Andrey
  V. Savochkin).  'suspend' is working again...

* 'su' does not set LOGNAME and HOME unless we are entering a login
  shell (Andrey V. Savochkin).


0.55 Tue Jun 24 08:05:15 PDT 1997, Andrew G. Morgan <morgan@@linux.kernel.org>

* added pam_close_session in the case that acquiring credentials fails
  -- both su and login (bug report Mark Lillywhite).

* slightly more reasonable default configurations are included. (since
  the rpm will now try to install them on your system).

* $HOME works again for 'su -'

* addded conditional compilation of pwdb to passwd (uses pwdb's getlogin)

* tidy up in Makefile and su made more impervious to being kill()ed

* fixed two typos in login and passwd manuals: critical -> requisite

* su can now be run without taking its input from a tty.  This is only when
  it is run by the superuser.


0.54 Sun Feb 23 22:07:26 PST 1997 <morgan@@linux.kernel.org>

* pam_fail_delay() conditional on HAVE_PAM_FAIL_DELAY

* Tidied up environment handling

* Oops. :*[ Open sessions before adding user credentials. Somehow I
  had these in the other order.

* can compile with or without libpwdb (see the top level makefile)

* All POSIX environment variables are mapped onto the user's environment

* 'su -' now resets the u/wtmp entries for the user. logname now works
  as expected.


0.53 Tue Jan 28 19:17:04 PST 1997 (Andrew Morgan <morgan@@linux.kernel.org>)

* reorganized login - utilized timeout features of the conversation
  function in libpam_misc. lastlog and mail are handled by session
  modules now

* login wtmp handling stabilized

* su and login now share a lot of code. I have placed the official
  code in login and symlinked this .-c code from the su directory

* added man pages for login, su and passwd.

* initialize groups before calling pam_setcred. (No longer using the
  "localgids" pwdb entry with login)

* passwd takes -k and -N (service name suffix flag..)
@


1.9
log
@Update.
@
text
@d2 1
a2 1
$Id: CHANGELOG,v 1.8 1998/11/26 09:22:02 saw Exp $
d6 1
a6 1
* protection against std{in,out} abuse was implemented for setuid-root
d9 1
a9 1
* a few bug fixes.
d11 4
a14 4
* ut_sid field of utmp structure is set to the session identifier
  instead of the child's pid.  When 'su' is invoked in a login
  mode setsid() is called to establish the new session.
  This change needs more testing.
d22 1
a22 1
* source code restructurization.  Pluggable library dependent code
d24 1
a24 1
  was moved into common directory.
@


1.8
log
@ - New utmp log policy: storing the parent process PID in the ut_pid
   field of the utmp entry.  The new policy is more close to the ut_pid
   description and makes the code more simple and robust.
 - Corresponding CHANGELOG and TODO update.
 - Some comments were moved inside su.c.
 - A bug in session opening in su.c was fixed.
@
text
@d2 1
a2 1
$Id: CHANGELOG,v 1.7 1998/11/23 16:29:34 saw Exp $
d6 5
d36 1
a36 1
* unnecessary malloc()s were eliminated in utmp_{open,close}_session().
d47 1
d52 1
d71 1
d107 1
@


1.7
log
@ - CHANGELOG update to mention the recent changes.
 - Major making process reorganization.  A simple configure script
   was written.  Makefiles were greatly simplified.  The common
   make code was moved to Application.make include file.
@
text
@d2 1
a2 1
$Id: CHANGELOG,v 1.6 1998/06/13 06:39:28 saw Exp $
d6 6
a11 1
@@ '.-c' include files were converted into normal C files.
d19 1
a19 1
  was moved into lib/ directory.
@


1.6
log
@  - utmp_{open,close}_session() were modified to fail gracefully.
  - pam_get_user() abuse was removed from utmp_open_session.
  - wtmp file locking was rewritten.
  - Unnecessary malloc()s were eliminated in utmp_{open,close}_session().
  - More accurate struct utmp clearing was implemented. Glibc had introduced
    additional fields and could do it further.
  - utmp search was rewritten to be more compatible with libc.
  - Protection against unexpected SIGPIPEs was implemented.
  - TODO file was revived.
  - RCS logs were removed.
@
text
@d2 1
a2 1
$Id$
d5 12
@


1.5
log
@A code cleanup:
  - _BSD_SOURCE was defined. We had already used several non-POSIX features
    like fchown() and setgroups(). The program can't be compiled
    in a strictly POSIX environment.
  - SU_STRICTLY_POSIX condition was removed.
  - Variable 'login' was renamed to 'is_login' in su.c.
  - Some my earlier comment were rewritten.
  - Return value checks were added to an additional calls.
  - The stdin ownership change was allowed only if is_terminal and is_login
    for security reasons.
  - A major restructurization of the code in su.c as it had been done
    by Andrew in sshd.
  - More detailed error reporting was implemented.
  - A few '(void)' were added to calls like fprintf().
  - More correct handling of a child exit in wait_for_child() was implemented.
  - Changes enabling terminal ownership control for 'su - -c ...'
    were undone.
  - Improper call of pwdb_error was fixed.
  - A new documentation file with the description of tty session and ownership
    control was added.
  - Andrew's email address was fixed in several places.
  - Ancient files were moved to 'Historic' directory.
  - Something else what I've forgotten.
@
text
@d2 1
a2 1
$Id: CHANGELOG,v 1.4 1998/06/12 16:24:57 saw Exp $
d6 20
a25 1
0.56 whenever
d28 2
@


1.4
log
@*** empty log message ***
@
text
@d2 1
a2 1
$Id: CHANGELOG,v 1.3 1997/06/24 14:24:53 morgan Exp morgan $
d8 2
d26 1
a26 1
0.55 Tue Jun 24 08:05:15 PDT 1997, Andrew G. Morgan <morgan@@parc.power.net>
d46 1
a46 1
0.54 Sun Feb 23 22:07:26 PST 1997 <morgan@@parc.power.net>
d62 1
a62 1
0.53 Tue Jan 28 19:17:04 PST 1997 (Andrew Morgan <morgan@@parc.power.net>)
@


1.3
log
@update for .55
@
text
@d2 1
a2 1
$Id: CHANGELOG,v 1.2 1997/02/24 06:09:00 morgan Exp morgan $
d6 1
a6 1
0.55 whenever
d8 19
a26 1
* added pam_close_session in the case that aquiring credentials fails
@


1.2
log
@update for .54
@
text
@d2 1
a2 1
$Id: CHANGELOG,v 1.1 1997/01/29 03:17:51 morgan Exp morgan $
d5 20
@


1.1
log
@Initial revision
@
text
@d2 1
a2 1
$Id: CHANGELOG,v 1.16 1996/12/01 03:33:35 morgan Exp morgan $
d6 17
a22 1
Tue Jan 28 19:17:04 PST 1997 (Andrew Morgan <morgan@@parc.power.net>)
@
