commit yast2-security for openSUSE:Factory
Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package yast2-security for openSUSE:Factory checked in at 2024-10-02 21:31:58 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/yast2-security (Old) and /work/SRC/openSUSE:Factory/.yast2-security.new.19354 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "yast2-security" Wed Oct 2 21:31:58 2024 rev:125 rq:1205093 version:5.0.2 Changes: -------- --- /work/SRC/openSUSE:Factory/yast2-security/yast2-security.changes 2024-08-10 19:06:18.542067215 +0200 +++ /work/SRC/openSUSE:Factory/.yast2-security.new.19354/yast2-security.changes 2024-10-02 21:32:00.998969623 +0200 @@ -1,0 +2,7 @@ +Mon Sep 30 14:36:10 UTC 2024 - Stefan Hundhammer <shundhammer@suse.com> + +- Drop obsolete USERADD_CMD, USERDEL_PRECMD, USERDEL_POSTCMD in + /etc/login.defs.d/70-yast.defs (bsc#1231006) +- 5.0.2 + +------------------------------------------------------------------- Old: ---- yast2-security-5.0.1.tar.bz2 New: ---- yast2-security-5.0.2.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ yast2-security.spec ++++++ --- /var/tmp/diff_new_pack.bhNRgy/_old 2024-10-02 21:32:01.662997229 +0200 +++ /var/tmp/diff_new_pack.bhNRgy/_new 2024-10-02 21:32:01.666997396 +0200 @@ -17,7 +17,7 @@ Name: yast2-security -Version: 5.0.1 +Version: 5.0.2 Release: 0 Group: System/YaST License: GPL-2.0-only ++++++ yast2-security-5.0.1.tar.bz2 -> yast2-security-5.0.2.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/package/yast2-security.changes new/yast2-security-5.0.2/package/yast2-security.changes --- old/yast2-security-5.0.1/package/yast2-security.changes 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/package/yast2-security.changes 2024-10-02 10:03:28.000000000 +0200 @@ -1,4 +1,11 @@ ------------------------------------------------------------------- +Mon Sep 30 14:36:10 UTC 2024 - Stefan Hundhammer <shundhammer@suse.com> + +- Drop obsolete USERADD_CMD, USERDEL_PRECMD, USERDEL_POSTCMD in + /etc/login.defs.d/70-yast.defs (bsc#1231006) +- 5.0.2 + +------------------------------------------------------------------- Tue Aug 6 11:34:20 UTC 2024 - Knut Anderssen <kanderssen@suse.com> - Do not load the security settings from the security policy until diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/package/yast2-security.spec new/yast2-security-5.0.2/package/yast2-security.spec --- old/yast2-security-5.0.1/package/yast2-security.spec 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/package/yast2-security.spec 2024-10-02 10:03:28.000000000 +0200 @@ -17,7 +17,7 @@ Name: yast2-security -Version: 5.0.1 +Version: 5.0.2 Release: 0 Group: System/YaST License: GPL-2.0-only diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/src/autoyast-rnc/security.rnc new/yast2-security-5.0.2/src/autoyast-rnc/security.rnc --- old/yast2-security-5.0.1/src/autoyast-rnc/security.rnc 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/src/autoyast-rnc/security.rnc 2024-10-02 10:03:28.000000000 +0200 @@ -65,9 +65,6 @@ systohc = element systohc { STRING } uid_max = element uid_max { STRING } uid_min = element uid_min { STRING } -useradd_cmd = element useradd_cmd { STRING } -userdel_postcmd = element userdel_postcmd { STRING } -userdel_precmd = element userdel_precmd { STRING } hibernate_system = element hibernate_system { STRING } kernel.sysrq = element kernel.sysrq { STRING } mandatory_services = element mandatory_services { STRING } @@ -125,9 +122,6 @@ | systohc | uid_max | uid_min - | useradd_cmd - | userdel_postcmd - | userdel_precmd | hibernate_system | kernel.sysrq | mandatory_services diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/src/data/security/level1.yml new/yast2-security-5.0.2/src/data/security/level1.yml --- old/yast2-security-5.0.1/src/data/security/level1.yml 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/src/data/security/level1.yml 2024-10-02 10:03:28.000000000 +0200 @@ -29,9 +29,6 @@ SYS_UID_MIN: '100' UID_MAX: '60000' UID_MIN: '1000' -USERADD_CMD: "/usr/sbin/useradd.local" -USERDEL_POSTCMD: "/usr/sbin/userdel-post.local" -USERDEL_PRECMD: "/usr/sbin/userdel-pre.local" kernel.sysrq: '0' net.ipv4.ip_forward: false net.ipv4.tcp_syncookies: true diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/src/data/security/level2.yml new/yast2-security-5.0.2/src/data/security/level2.yml --- old/yast2-security-5.0.1/src/data/security/level2.yml 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/src/data/security/level2.yml 2024-10-02 10:03:28.000000000 +0200 @@ -29,9 +29,6 @@ SYS_UID_MIN: '100' UID_MAX: '60000' UID_MIN: '1000' -USERADD_CMD: "/usr/sbin/useradd.local" -USERDEL_POSTCMD: "/usr/sbin/userdel-post.local" -USERDEL_PRECMD: "/usr/sbin/userdel-pre.local" kernel.sysrq: '0' net.ipv4.ip_forward: false net.ipv4.tcp_syncookies: true diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/src/data/security/level3.yml new/yast2-security-5.0.2/src/data/security/level3.yml --- old/yast2-security-5.0.1/src/data/security/level3.yml 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/src/data/security/level3.yml 2024-10-02 10:03:28.000000000 +0200 @@ -29,9 +29,6 @@ SYS_UID_MIN: '100' UID_MAX: '60000' UID_MIN: '1000' -USERADD_CMD: "/usr/sbin/useradd.local" -USERDEL_POSTCMD: "/usr/sbin/userdel-post.local" -USERDEL_PRECMD: "/usr/sbin/userdel-pre.local" kernel.sysrq: '0' net.ipv4.ip_forward: false net.ipv4.tcp_syncookies: true diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/src/modules/Security.rb new/yast2-security-5.0.2/src/modules/Security.rb --- old/yast2-security-5.0.1/src/modules/Security.rb 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/src/modules/Security.rb 2024-10-02 10:03:28.000000000 +0200 @@ -64,10 +64,7 @@ "SYS_UID_MAX", "SYS_UID_MIN", "SYS_GID_MAX", - "SYS_GID_MIN", - "USERADD_CMD", - "USERDEL_PRECMD", - "USERDEL_POSTCMD" + "SYS_GID_MIN" ].freeze attr_reader :display_manager @@ -153,9 +150,6 @@ "SYS_UID_MIN" => "100", "SYS_GID_MAX" => "499", "SYS_GID_MIN" => "100", - "USERADD_CMD" => "/usr/sbin/useradd.local", - "USERDEL_PRECMD" => "/usr/sbin/userdel-pre.local", - "USERDEL_POSTCMD" => "/usr/sbin/userdel-post.local", "PASSWD_REMEMBER_HISTORY" => "0", "SYSLOG_ON_NO_ERROR" => "yes", "DISPLAYMANAGER_ROOT_LOGIN_REMOTE" => "no", diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/test/data/system/etc/login.defs new/yast2-security-5.0.2/test/data/system/etc/login.defs --- old/yast2-security-5.0.1/test/data/system/etc/login.defs 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/test/data/system/etc/login.defs 2024-10-02 10:03:28.000000000 +0200 @@ -163,7 +163,7 @@ # any combination of letters "frwh" (full name, room number, work # phone, home phone). If not defined, no changes are allowed. # For backward compatibility, "yes" = "rwh" and "no" = "frwh". -# +# CHFN_RESTRICT rwh # @@ -217,8 +217,6 @@ # It should remove any at/cron/print jobs etc. owned by # the user to be removed (passed as the first argument). # -# See USERDEL_PRECMD/POSTCMD below. -# #USERDEL_CMD /usr/sbin/userdel_local # @@ -257,31 +255,3 @@ #CHARACTER_CLASS [A-Za-z_][A-Za-z0-9_.-]*[A-Za-z0-9_.$-]\? CHARACTER_CLASS [ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz_][ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789_.-]*[ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789_.$-]\? -# -# If defined, this command is run when adding a group. -# It should rebuild any NIS database etc. to add the -# new created group. -# -GROUPADD_CMD /usr/sbin/groupadd.local - -# -# If defined, this command is run when adding a user. -# It should rebuild any NIS database etc. to add the -# new created account. -# -USERADD_CMD /usr/sbin/useradd.local - -# -# If defined, this command is run before removing a user. -# It should remove any at/cron/print jobs etc. owned by -# the user to be removed. -# -USERDEL_PRECMD /usr/sbin/userdel-pre.local - -# -# If defined, this command is run after removing a user. -# It should rebuild any NIS database etc. to remove the -# account from it. -# -USERDEL_POSTCMD /usr/sbin/userdel-post.local - diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/yast2-security-5.0.1/test/security_test.rb new/yast2-security-5.0.2/test/security_test.rb --- old/yast2-security-5.0.1/test/security_test.rb 2024-08-09 11:31:03.000000000 +0200 +++ new/yast2-security-5.0.2/test/security_test.rb 2024-10-02 10:03:28.000000000 +0200 @@ -242,9 +242,9 @@ end it "doesn't allow empty value to enter into model for an attribute" do - Security.Settings["USERADD_CMD"] = "" + Security.Settings["ENCRYPT_METHOD"] = "" - expect(shadow_config).not_to receive(:useradd_cmd=) + expect(shadow_config).not_to receive(:encrypt_method=) expect(shadow_config).to receive(:save) Security.write_shadow_config
participants (1)
-
Source-Sync