Skip to content
/ libpam Public

Patch Debian's PAM to support longer passwords

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sftpmgr/libpam

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
.github/workflows
.github/workflows
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

sftpmgr libpam

Patch PAM on Debian 11 "bullseye" to support longer passwords (increased from <512 to <4096).

Usage

  1. Download components from GitHub Actions, e.g:

    wget https://github.com/sftpmgr/libpam/releases/download/UserBuild_2022.06.26_02-09/libpam-modules_1.4.0-9+deb11u1_amd64.deb
wget https://github.com/sftpmgr/libpam/releases/download/UserBuild_2022.06.26_02-09/libpam-modules-bin_1.4.0-9+deb11u1_amd64.deb
wget https://github.com/sftpmgr/libpam/releases/download/UserBuild_2022.06.26_02-09/libpam-runtime_1.4.0-9+deb11u1_all.deb
wget https://github.com/sftpmgr/libpam/releases/download/UserBuild_2022.06.26_02-09/libpam0g_1.4.0-9+deb11u1_amd64.deb

  2. Install downloaded packages, e.g.:

    sudo dpkg -i libpam-modules_1.4.0-9+deb11u1_amd64.deb
sudo dpkg -i libpam-modules-bin_1.4.0-9+deb11u1_amd64.deb
sudo dpkg -i libpam-runtime_1.4.0-9+deb11u1_all.deb
sudo dpkg -i libpam0g_1.4.0-9+deb11u1_amd64.deb

Customization

See .github/workflows/ci.yaml - this consists of a very simple change to PAM_MAX_RESP_SIZE in libpam/include/security/_pam_types.h.

Background

When using PAM's pam_exec.so with expose_authtok enabled, the password is truncated to 511 octets. More discussion here.

About

Patch Debian's PAM to support longer passwords

Topics

debian pam libpam

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 5

UserBuild_2022.09.15_16-54 Latest
Sep 15, 2022
+ 4 releases

Packages

No packages published