Package: libpam-modules
Version: 0.76-22
Severity: important

Field three of time.conf in /etc/security is not being properly evaluated
by pam_time.so.

Example:

For a time.conf entry of:

*;*;a|b|c;!Al0000-2400

User c will not be allowed access, but users a and b will!

When the user list is reordered to be:

*;*;c|a|b;!Al0000-2400

Users c and a can now get authorized, but user b cannot!

The work around at present is to unpack the or expression list of
users into multiple rules:

*;*;a;!Al0000-2400
*;*;b;!Al0000-2400
*;*;c;!Al0000-2400

As an aside, attempting to set the debug option does not seem to have
any appreciable effect on the pam_time module.

Thanks,
John S.

-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.4.29
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)

Versions of packages libpam-modules depends on:
ii  libc6                       2.3.2.ds1-22 GNU C Library: Shared libraries an
ii  libcap1                     1:1.10-14    support for getting/setting POSIX.
ii  libdb3                      3.2.9-22     Berkeley v3 Database Libraries [ru
ii  libpam0g                    0.76-22      Pluggable Authentication Modules l

-- no debconf information


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to