Comments (9)
Sorry I don't think I noticed your proposal before.
Do you still volunteer to maintain pam_pkcs11?
from pam_pkcs11.
Hi! Probably, yes.
I've made a special version for Sisyphus with many new configuration options, configurable prompts, and low-level modules (a card-specific implementation to get an exact number of PIN attempts, for instance).
However, I don't think all of that is really needed in the mainstream pam_pkcs11 project. So, what are the criteria of updating / maintaining the mainstream version?
from pam_pkcs11.
I just sent you an invitation to join the "pam_pkcs11 maintainers" group.
It is now up to you to decide what you want to do with pam_pkcs11 :-)
You can even include card specific code. Maybe with the possibility to disable it or not enable it by default.
from pam_pkcs11.
@wolneykien please create a new release, because there were some security issues discovered (https://www.x41-dsec.de/lab/advisories/x41-2018-003-pam_pkcs11/). I've fixed all of them upstream, but I'll leave the testing, packaging and write up of some release notes to you. Maybe you also want to cherry-pick some of your more generic changes.
from pam_pkcs11.
Thanks, Frank! Where are these security fixes for now?
from pam_pkcs11.
they are available as commits in master
from pam_pkcs11.
Hi, guys! Note the #48 issue!
from pam_pkcs11.
@frankmorgner I see nothing new in master since the 0.6.11 release I made in May 2019.
I guess the commits your are talking about are already present in release 0.6.11.
If that is not the case then please be more specific.
from pam_pkcs11.
@wolneykien I propose you to create Pull Requests with your changes rebased on the current master. Since you created different branches it should be easy to create different PR. Of course the order is important since some patches depend on other ones.
If nobody complains after some days you can merge/apply them yourself.
from pam_pkcs11.
Related Issues (20)
- C_Sign fails with 0x00000007 after inserting pin HOT 9
- Endless Loop on signature size HOT 10
- pkcs11_make_hash_link util does not work HOT 1
- CRLs online fail to process after download and offline ones cause a segfault HOT 6
- PKCS11 module crashes when no CRL defined for card HOT 2
- EVP_VerifyFinal() failed with EC cert on 0.6.11 HOT 5
- make pkcs11_module option "slot_description" a substring match
- A lot of patches...
- Provide pam-auth-update configuration file?
- cannot build on fedora 32 HOT 1
- Segmentation fault (core dumped) with Estonian ID card HOT 2
- EVP_VerifyFinal() failed: error:0D078079:asn1 encoding routines:asn1_item_embed_d2i:field missing HOT 6
- Possible openssh_mapper error with SSH v1 key
- EVP_VerifyFinal() failed: invalid padding
- pkcs11_make_hash_link fails when file names contain whitespaces HOT 4
- mapper heap-buffer-overflow HOT 2
- ldap_get_certificate(): no matching entries
- Check crl_offline failed when openssl works HOT 1
- Crl_online even if all certificates are available on crl URI
- verify_crl() failed: getting the issuer's public key failed
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pam_pkcs11.