swaylock

pjht/swaylock

Fork 0

Commit Graph

Author	SHA1	Message	Date
emersion	8191c2147b	Replace _XOPEN_SOURCE with _POSIX_C_SOURCE And make sure we don't define both in the same source file.	2018-11-25 17:19:43 +01:00
Drew DeVault	c7776e7804	Fix swaylock w/shadow on glibc, improve security Today I learned that GNU flaunts the POSIX standard in yet another creative way. Additionally, this adds some security improvements, namely: - Zeroing out password buffers in the privileged child process - setuid/setgid after reading /etc/shadow	2018-10-06 12:20:12 -04:00
Drew DeVault	64259db8d6	Add support for building swaylock without PAM This involves setuid'ing swaylock, which then forks and drops perms on the parent process. The child process remains root and listens on a pipe for requests to validate passwords against /etc/shadow.	2018-09-28 13:53:01 +02:00

Author

SHA1

Message

Date

emersion

8191c2147b

Replace _XOPEN_SOURCE with _POSIX_C_SOURCE

And make sure we don't define both in the same source file.

2018-11-25 17:19:43 +01:00

Drew DeVault

c7776e7804

Fix swaylock w/shadow on glibc, improve security

Today I learned that GNU flaunts the POSIX standard in yet another
creative way. Additionally, this adds some security improvements,
namely:

- Zeroing out password buffers in the privileged child process
- setuid/setgid after reading /etc/shadow

2018-10-06 12:20:12 -04:00

Drew DeVault

64259db8d6

Add support for building swaylock without PAM

This involves setuid'ing swaylock, which then forks and drops perms on
the parent process. The child process remains root and listens on a pipe
for requests to validate passwords against /etc/shadow.

2018-09-28 13:53:01 +02:00

3 Commits