Skip to content
This repository has been archived by the owner on Feb 28, 2024. It is now read-only.

v1.7.0

Latest
Latest
Compare
Choose a tag to compare
@github-actions github-actions released this 31 Oct 23:26
v1.7.0
This tag was signed with the committer’s verified signature.
kravietz Paweł Krawczyk
GPG key ID: 32AF1F39C4EE03F2
Learn about vigilant mode.
b1b7f53
This commit was signed with the committer’s verified signature.
kravietz Paweł Krawczyk
GPG key ID: 32AF1F39C4EE03F2
Learn about vigilant mode.

libtac

  • Refactored the complex and overengineered TACACS+ session id generation, replacing it with getrandom on all systems, with gnulib provided implementation for systems that do not have it.
  • Removed legacy MD5 code and replaced it with gnulib implementation for easier maintenance and compatibility.
  • Legacy data structures such as attribute lists were replaced with gnulib structures.
  • CHAP implementation used a fixed challenge in contradiction with the RFC 1994 requirement. This was replaced with a pseudo-random challenge generated using getrandom.
  • ABI version set to 5:0:0. From now on, this is the only way to version the library. The legacy static variables tac_ver_ were removed as confusing

pam_tacplus

  • Calling process PID is now used as the task_id attribute in TACACS+ accounting session. This replaces an overengineered cryptographically random tasks identifiers.
  • Updated Debian build instructions.

This release v1.7.0.tar.gz file is signed using SigStore.

Assets 7
Loading