aboutsummaryrefslogtreecommitdiff
path: root/modules/pam_deny
diff options
context:
space:
mode:
Diffstat (limited to 'modules/pam_deny')
-rw-r--r--modules/pam_deny/.cvsignore6
-rw-r--r--modules/pam_deny/Makefile.am34
-rw-r--r--modules/pam_deny/README31
-rw-r--r--modules/pam_deny/README.xml36
-rw-r--r--modules/pam_deny/pam_deny.874
-rw-r--r--modules/pam_deny/pam_deny.8.xml135
-rw-r--r--modules/pam_deny/pam_deny.c89
-rwxr-xr-xmodules/pam_deny/tst-pam_deny2
8 files changed, 0 insertions, 407 deletions
diff --git a/modules/pam_deny/.cvsignore b/modules/pam_deny/.cvsignore
deleted file mode 100644
index 9fb98574..00000000
--- a/modules/pam_deny/.cvsignore
+++ /dev/null
@@ -1,6 +0,0 @@
-*.la
-*.lo
-.deps
-.libs
-Makefile
-Makefile.in
diff --git a/modules/pam_deny/Makefile.am b/modules/pam_deny/Makefile.am
deleted file mode 100644
index 9837f880..00000000
--- a/modules/pam_deny/Makefile.am
+++ /dev/null
@@ -1,34 +0,0 @@
-#
-# Copyright (c) 2005 Thorsten Kukuk <kukuk@suse.de>
-#
-
-CLEANFILES = *~
-
-EXTRA_DIST = README $(MANS) $(XMLS) tst-pam_deny
-
-man_MANS = pam_deny.8
-
-XMLS = README.xml pam_deny.8.xml
-
-securelibdir = $(SECUREDIR)
-secureconfdir = $(SCONFIGDIR)
-
-AM_CFLAGS = -I$(top_srcdir)/libpam/include -I$(top_srcdir)/libpamc/include
-AM_LDFLAGS = -no-undefined -avoid-version -module \
- -L$(top_builddir)/libpam -lpam
-if HAVE_VERSIONING
- AM_LDFLAGS += -Wl,--version-script=$(srcdir)/../modules.map
-endif
-
-securelib_LTLIBRARIES = pam_deny.la
-
-if ENABLE_REGENERATE_MAN
-
-noinst_DATA = README
-
-README: pam_deny.8.xml
-
--include $(top_srcdir)/Make.xml.rules
-endif
-
-TESTS = tst-pam_deny
diff --git a/modules/pam_deny/README b/modules/pam_deny/README
deleted file mode 100644
index 6b3a86f8..00000000
--- a/modules/pam_deny/README
+++ /dev/null
@@ -1,31 +0,0 @@
-pam_deny — The locking-out PAM module
-
-━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
-
-DESCRIPTION
-
-This module can be used to deny access. It always indicates a failure to the
-application through the PAM framework. It might be suitable for using for
-default (the OTHER) entries.
-
-EXAMPLES
-
-#%PAM-1.0
-#
-# If we don't have config entries for a service, the
-# OTHER entries are used. To be secure, warn and deny
-# access to everything.
-other auth required pam_warn.so
-other auth required pam_deny.so
-other account required pam_warn.so
-other account required pam_deny.so
-other password required pam_warn.so
-other password required pam_deny.so
-other session required pam_warn.so
-other session required pam_deny.so
-
-
-AUTHOR
-
-pam_deny was written by Andrew G. Morgan <morgan@kernel.org>
-
diff --git a/modules/pam_deny/README.xml b/modules/pam_deny/README.xml
deleted file mode 100644
index ff2e82b0..00000000
--- a/modules/pam_deny/README.xml
+++ /dev/null
@@ -1,36 +0,0 @@
-<?xml version="1.0" encoding='UTF-8'?>
-<!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.3//EN"
-"http://www.docbook.org/xml/4.3/docbookx.dtd"
-[
-<!--
-<!ENTITY pamaccess SYSTEM "pam_deny.8.xml">
--->
-]>
-
-<article>
-
- <articleinfo>
-
- <title>
- <xi:include xmlns:xi="http://www.w3.org/2001/XInclude"
- href="pam_deny.8.xml" xpointer='xpointer(//refnamediv[@id = "pam_deny-name"]/*)'/>
- </title>
-
- </articleinfo>
-
- <section>
- <xi:include xmlns:xi="http://www.w3.org/2001/XInclude"
- href="pam_deny.8.xml" xpointer='xpointer(//refsect1[@id = "pam_deny-description"]/*)'/>
- </section>
-
- <section>
- <xi:include xmlns:xi="http://www.w3.org/2001/XInclude"
- href="pam_deny.8.xml" xpointer='xpointer(//refsect1[@id = "pam_deny-examples"]/*)'/>
- </section>
-
- <section>
- <xi:include xmlns:xi="http://www.w3.org/2001/XInclude"
- href="pam_deny.8.xml" xpointer='xpointer(//refsect1[@id = "pam_deny-author"]/*)'/>
- </section>
-
-</article>
diff --git a/modules/pam_deny/pam_deny.8 b/modules/pam_deny/pam_deny.8
deleted file mode 100644
index f9f2d439..00000000
--- a/modules/pam_deny/pam_deny.8
+++ /dev/null
@@ -1,74 +0,0 @@
-.\" Title: pam_deny
-.\" Author:
-.\" Generator: DocBook XSL Stylesheets v1.70.1 <http://docbook.sf.net/>
-.\" Date: 06/21/2006
-.\" Manual: Linux\-PAM Manual
-.\" Source: Linux\-PAM Manual
-.\"
-.TH "PAM_DENY" "8" "06/21/2006" "Linux\-PAM Manual" "Linux\-PAM Manual"
-.\" disable hyphenation
-.nh
-.\" disable justification (adjust text to left margin only)
-.ad l
-.SH "NAME"
-pam_deny \- The locking\-out PAM module
-.SH "SYNOPSIS"
-.HP 12
-\fBpam_deny.so\fR
-.SH "DESCRIPTION"
-.PP
-This module can be used to deny access. It always indicates a failure to the application through the PAM framework. It might be suitable for using for default (the
-\fIOTHER\fR) entries.
-.SH "OPTIONS"
-.PP
-This module does not recognice any options.
-.SH "MODULE SERVICES PROVIDED"
-.PP
-All services (\fBaccount\fR,
-\fBauth\fR,
-\fBpassword\fR
-and
-\fBsession\fR) are supported.
-.SH "RETURN VALUES"
-.PP
-.TP 3n
-PAM_AUTH_ERR
-This is returned by the account and auth services.
-.TP 3n
-PAM_CRED_ERR
-This is returned by the setcred function.
-.TP 3n
-PAM_AUTHTOK_ERR
-This is returned by the password service.
-.TP 3n
-PAM_SESSION_ERR
-This is returned by the session service.
-.SH "EXAMPLES"
-.sp
-.RS 3n
-.nf
-#%PAM\-1.0
-#
-# If we don't have config entries for a service, the
-# OTHER entries are used. To be secure, warn and deny
-# access to everything.
-other auth required pam_warn.so
-other auth required pam_deny.so
-other account required pam_warn.so
-other account required pam_deny.so
-other password required pam_warn.so
-other password required pam_deny.so
-other session required pam_warn.so
-other session required pam_deny.so
-
-.fi
-.RE
-.SH "SEE ALSO"
-.PP
-
-\fBpam.conf\fR(5),
-\fBpam.d\fR(8),
-\fBpam\fR(8)
-.SH "AUTHOR"
-.PP
-pam_deny was written by Andrew G. Morgan <morgan@kernel.org>
diff --git a/modules/pam_deny/pam_deny.8.xml b/modules/pam_deny/pam_deny.8.xml
deleted file mode 100644
index 91916003..00000000
--- a/modules/pam_deny/pam_deny.8.xml
+++ /dev/null
@@ -1,135 +0,0 @@
-<?xml version="1.0" encoding='UTF-8'?>
-<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.3//EN"
- "http://www.oasis-open.org/docbook/xml/4.3/docbookx.dtd">
-
-<refentry id="pam_deny">
-
- <refmeta>
- <refentrytitle>pam_deny</refentrytitle>
- <manvolnum>8</manvolnum>
- <refmiscinfo class="sectdesc">Linux-PAM Manual</refmiscinfo>
- </refmeta>
-
- <refnamediv id="pam_deny-name">
- <refname>pam_deny</refname>
- <refpurpose>The locking-out PAM module</refpurpose>
- </refnamediv>
-
- <refsynopsisdiv>
- <cmdsynopsis id="pam_deny-cmdsynopsis">
- <command>pam_deny.so</command>
- </cmdsynopsis>
- </refsynopsisdiv>
-
- <refsect1 id="pam_deny-description">
-
- <title>DESCRIPTION</title>
-
- <para>
- This module can be used to deny access. It always indicates a failure
- to the application through the PAM framework. It might be suitable
- for using for default (the <emphasis>OTHER</emphasis>) entries.
- </para>
-
- </refsect1>
-
- <refsect1 id="pam_deny-options">
- <title>OPTIONS</title>
- <para>This module does not recognice any options.</para>
- </refsect1>
-
- <refsect1 id="pam_deny-services">
- <title>MODULE SERVICES PROVIDED</title>
- <para>
- All services (<option>account</option>, <option>auth</option>,
- <option>password</option> and <option>session</option>) are supported.
- </para>
- </refsect1>
-
- <refsect1 id='pam_deny-return_values'>
- <title>RETURN VALUES</title>
- <para>
- <variablelist>
-
- <varlistentry>
- <term>PAM_AUTH_ERR</term>
- <listitem>
- <para>
- This is returned by the account and auth services.
- </para>
- </listitem>
- </varlistentry>
-
- <varlistentry>
- <term>PAM_CRED_ERR</term>
- <listitem>
- <para>
- This is returned by the setcred function.
- </para>
- </listitem>
- </varlistentry>
-
- <varlistentry>
- <term>PAM_AUTHTOK_ERR</term>
- <listitem>
- <para>
- This is returned by the password service.
- </para>
- </listitem>
- </varlistentry>
-
- <varlistentry>
- <term>PAM_SESSION_ERR</term>
- <listitem>
- <para>
- This is returned by the session service.
- </para>
- </listitem>
- </varlistentry>
-
- </variablelist>
- </para>
- </refsect1>
-
- <refsect1 id='pam_deny-examples'>
- <title>EXAMPLES</title>
- <programlisting>
-#%PAM-1.0
-#
-# If we don't have config entries for a service, the
-# OTHER entries are used. To be secure, warn and deny
-# access to everything.
-other auth required pam_warn.so
-other auth required pam_deny.so
-other account required pam_warn.so
-other account required pam_deny.so
-other password required pam_warn.so
-other password required pam_deny.so
-other session required pam_warn.so
-other session required pam_deny.so
- </programlisting>
- </refsect1>
-
- <refsect1 id='pam_deny-see_also'>
- <title>SEE ALSO</title>
- <para>
- <citerefentry>
- <refentrytitle>pam.conf</refentrytitle><manvolnum>5</manvolnum>
- </citerefentry>,
- <citerefentry>
- <refentrytitle>pam.d</refentrytitle><manvolnum>8</manvolnum>
- </citerefentry>,
- <citerefentry>
- <refentrytitle>pam</refentrytitle><manvolnum>8</manvolnum>
- </citerefentry>
- </para>
- </refsect1>
-
- <refsect1 id='pam_deny-author'>
- <title>AUTHOR</title>
- <para>
- pam_deny was written by Andrew G. Morgan &lt;morgan@kernel.org&gt;
- </para>
- </refsect1>
-
-</refentry>
diff --git a/modules/pam_deny/pam_deny.c b/modules/pam_deny/pam_deny.c
deleted file mode 100644
index 544c5bdb..00000000
--- a/modules/pam_deny/pam_deny.c
+++ /dev/null
@@ -1,89 +0,0 @@
-/* pam_deny module */
-
-/*
- * $Id$
- *
- * Written by Andrew Morgan <morgan@parc.power.net> 1996/3/11
- *
- */
-
-/*
- * here, we make definitions for the externally accessible functions
- * in this file (these definitions are required for static modules
- * but strongly encouraged generally) they are used to instruct the
- * modules include file to define their prototypes.
- */
-
-#include "config.h"
-
-#define PAM_SM_AUTH
-#define PAM_SM_ACCOUNT
-#define PAM_SM_SESSION
-#define PAM_SM_PASSWORD
-
-#include <security/pam_modules.h>
-
-/* --- authentication management functions --- */
-
-PAM_EXTERN int
-pam_sm_authenticate(pam_handle_t *pamh UNUSED, int flags UNUSED,
- int argc UNUSED, const char **argv UNUSED)
-{
- return PAM_AUTH_ERR;
-}
-
-PAM_EXTERN int
-pam_sm_setcred(pam_handle_t *pamh UNUSED, int flags UNUSED,
- int argc UNUSED, const char **argv UNUSED)
-{
- return PAM_CRED_ERR;
-}
-
-/* --- account management functions --- */
-
-PAM_EXTERN int
-pam_sm_acct_mgmt(pam_handle_t *pamh UNUSED, int flags UNUSED,
- int argc UNUSED, const char **argv UNUSED)
-{
- return PAM_AUTH_ERR;
-}
-
-/* --- password management --- */
-
-PAM_EXTERN int
-pam_sm_chauthtok(pam_handle_t *pamh UNUSED, int flags UNUSED,
- int argc UNUSED, const char **argv UNUSED)
-{
- return PAM_AUTHTOK_ERR;
-}
-
-/* --- session management --- */
-
-PAM_EXTERN int
-pam_sm_open_session(pam_handle_t *pamh UNUSED, int flags UNUSED,
- int argc UNUSED, const char **argv UNUSED)
-{
- return PAM_SESSION_ERR;
-}
-
-PAM_EXTERN int
-pam_sm_close_session(pam_handle_t *pamh UNUSED, int flags UNUSED,
- int argc UNUSED, const char **argv UNUSED)
-{
- return PAM_SESSION_ERR;
-}
-
-/* end of module definition */
-
-/* static module data */
-#ifdef PAM_STATIC
-struct pam_module _pam_deny_modstruct = {
- "pam_deny",
- pam_sm_authenticate,
- pam_sm_setcred,
- pam_sm_acct_mgmt,
- pam_sm_open_session,
- pam_sm_close_session,
- pam_sm_chauthtok
-};
-#endif
diff --git a/modules/pam_deny/tst-pam_deny b/modules/pam_deny/tst-pam_deny
deleted file mode 100755
index 7d9d6bad..00000000
--- a/modules/pam_deny/tst-pam_deny
+++ /dev/null
@@ -1,2 +0,0 @@
-#!/bin/sh
-../../tests/tst-dlopen .libs/pam_deny.so
generated by cgit v1.2.3 (git 2.39.1) at 2025-06-01 17:49:49 +0000