[Nix-dev] Re: [Nix-commits] SVN commit: nix - 22107 - eelco - in nixos/trunk/modules: config programs/pwdutils security services/misc services/ttys system/activation system/upstart-events tasks
Lluís Batlle i Rossell
viriketo at gmail.com
Thu Jun 3 20:22:53 CEST 2010
Hello,
On Wed, Jun 02, 2010 at 09:10:49PM +0000, Eelco Dolstra wrote:
> Author: eelco
> Date: 2010-06-02 21:10:48 +0000 (Wed, 02 Jun 2010)
> New Revision: 22107
>
> You can view the changes in this commit at:
> https://svn.nixos.org/viewvc/nix?rev=22107&view=rev
> Log:
> * Use the `shadow' package instead of `pwdutils', `pam_login' and
> `su'.
> * The `usermod' from `shadow' allows setting a supplementary group
> equal to the user's primary group, so the special hack for the
> `nixbld' group is no longer needed.
> * Removed /etc/default/passwd since it's not used by the new passwd.
> The hash is configured in pam_unix.
> * Move some values for `security.setuidPrograms' and
> `security.pam.services' to the appropriate modules.
>
>
> Changes:
> ===================================================================
> --- nixos/trunk/modules/programs/pwdutils/passwd.conf 2010-06-02 19:59:44 UTC (rev 22106)
> +++ nixos/trunk/modules/programs/pwdutils/passwd.conf 2010-06-02 21:10:48 UTC (rev 22107)
> @@ -1,15 +0,0 @@
> -# Define default crypt hash
> -# CRYPT={des,md5,blowfish}
> -CRYPT=des
> -
> -# for local files, use a more secure hash. We
> -# don't need to be portable here:
> -CRYPT_FILES=@filesCipher@
> -
> -# sometimes we need to specify special options for
> -# a hash (variable is prepended by the name of the
> -# crypt hash).
> -BLOWFISH_CRYPT_FILES=10
> -
> -# For NIS, we should always use DES:
> -CRYPT_YP=des
Where is the CRYPT_FILES defined now? I cannot build libxcrypt on armv5tel, and
thus I cannot use 'des' encryption there. You removed the nixos code related to
this.
Regards,
Lluís.
More information about the nix-dev
mailing list