1d95e11bfSDag-Erling SmørgravDocumentation: 2d95e11bfSDag-Erling Smørgrav 3d95e11bfSDag-Erling Smørgrav- Update the docs 4d95e11bfSDag-Erling Smørgrav - Update README 5d95e11bfSDag-Erling Smørgrav - Update INSTALL 6d95e11bfSDag-Erling Smørgrav - Merge INSTALL & README.privsep 7d95e11bfSDag-Erling Smørgrav 8d95e11bfSDag-Erling Smørgrav- Install FAQ? 9d95e11bfSDag-Erling Smørgrav 10d95e11bfSDag-Erling Smørgrav- General FAQ on S/Key, TIS, RSA, RSA2, DSA, etc and suggestions on when it 11d95e11bfSDag-Erling Smørgrav would be best to use them. 12d95e11bfSDag-Erling Smørgrav 13d95e11bfSDag-Erling Smørgrav- Create a Documentation/ directory? 14d95e11bfSDag-Erling Smørgrav 1583d2307dSDag-Erling SmørgravProgramming: 16d95e11bfSDag-Erling Smørgrav 1783d2307dSDag-Erling Smørgrav- Grep for 'XXX' comments and fix 1883d2307dSDag-Erling Smørgrav 1983d2307dSDag-Erling Smørgrav- Link order is incorrect for some systems using Kerberos 4 and AFS. Result 2083d2307dSDag-Erling Smørgrav is multiple inclusion of DES symbols. Holger Trapp 2183d2307dSDag-Erling Smørgrav <holger.trapp@hrz.tu-chemnitz.de> reports that changing the configure 2283d2307dSDag-Erling Smørgrav generated link order from: 2383d2307dSDag-Erling Smørgrav -lresolv -lkrb -lz -lnsl -lutil -lkafs -lkrb -ldes -lcrypto 2483d2307dSDag-Erling Smørgrav to: 2583d2307dSDag-Erling Smørgrav -lresolv -lkrb -lz -lnsl -lutil -lcrypto -lkafs -lkrb -ldes 2683d2307dSDag-Erling Smørgrav fixing the problem. 2783d2307dSDag-Erling Smørgrav 2883d2307dSDag-Erling Smørgrav- Write a test program that calls stat() to search for EGD/PRNGd socket 2983d2307dSDag-Erling Smørgrav rather than use the (non-portable) "test -S". 3083d2307dSDag-Erling Smørgrav 31d0c8c0bcSDag-Erling Smørgrav- More platforms for for setproctitle() emulation (testing needed) 3283d2307dSDag-Erling Smørgrav 33d95e11bfSDag-Erling Smørgrav- Improve PAM ChallengeResponseAuthentication 34d95e11bfSDag-Erling Smørgrav - Informational messages 3583d2307dSDag-Erling Smørgrav - Use different PAM service name for kbdint vs regular auth (suggest from 3683d2307dSDag-Erling Smørgrav Solar Designer) 3783d2307dSDag-Erling Smørgrav - Ability to select which ChallengeResponseAuthentications may be used 38*190cef3dSDag-Erling Smørgrav and order to try them in e.g. "ChallengeResponseAuthentication pam" 3983d2307dSDag-Erling Smørgrav 4083d2307dSDag-Erling Smørgrav- Complete Tru64 SIA support 4183d2307dSDag-Erling Smørgrav - It looks like we could merge it into the password auth code to cut down 4283d2307dSDag-Erling Smørgrav on diff size. Maybe PAM password auth too? 4383d2307dSDag-Erling Smørgrav 4483d2307dSDag-Erling Smørgrav- Finish integrating kernel-level auditing code for IRIX and SOLARIS 4583d2307dSDag-Erling Smørgrav (Gilbert.r.loomis@saic.com) 4683d2307dSDag-Erling Smørgrav 4783d2307dSDag-Erling Smørgrav- 64-bit builds on HP-UX 11.X (stevesk@pobox.com): 4883d2307dSDag-Erling Smørgrav - utmp/wtmp get corrupted (something in loginrec?) 4983d2307dSDag-Erling Smørgrav - can't build with PAM (no 64-bit libpam yet) 5083d2307dSDag-Erling Smørgrav 5183d2307dSDag-Erling SmørgravClean up configure/makefiles: 5283d2307dSDag-Erling Smørgrav- Clean up configure.ac - There are a few double #defined variables 5383d2307dSDag-Erling Smørgrav left to do. HAVE_LOGIN is one of them. Consider NOT looking for 5483d2307dSDag-Erling Smørgrav information in wtmpx or utmpx or any of that stuff if it's not detected 5583d2307dSDag-Erling Smørgrav from the start 5683d2307dSDag-Erling Smørgrav 5783d2307dSDag-Erling Smørgrav- Replace the whole u_intXX_t evilness in acconfig.h with something better??? 58d0c8c0bcSDag-Erling Smørgrav - Do it in configure.ac 5983d2307dSDag-Erling Smørgrav 60*190cef3dSDag-Erling Smørgrav- Consider splitting the u_intXX_t test for sys/bitype.h into separate test 6183d2307dSDag-Erling Smørgrav to allow people to (right/wrongfully) link against Bind directly. 6283d2307dSDag-Erling Smørgrav 63*190cef3dSDag-Erling Smørgrav- Consider splitting configure.ac into separate files which do logically 6483d2307dSDag-Erling Smørgrav similar tests. E.g move all the type detection stuff into one file, 6583d2307dSDag-Erling Smørgrav entropy related stuff into another. 6683d2307dSDag-Erling Smørgrav 6783d2307dSDag-Erling SmørgravPackaging: 6883d2307dSDag-Erling Smørgrav- HP-UX: Provide DEPOT package scripts. 6983d2307dSDag-Erling Smørgrav (gilbert.r.loomis@saic.com) 7083d2307dSDag-Erling Smørgrav 71ee21a45fSDag-Erling SmørgravPrivSep Issues: 72ee21a45fSDag-Erling Smørgrav- PAM 73ee21a45fSDag-Erling Smørgrav + See above PAM notes 74ee21a45fSDag-Erling Smørgrav- AIX 75d95e11bfSDag-Erling Smørgrav + usrinfo() does not set TTY, but only required for legacy systems. Works 76ee21a45fSDag-Erling Smørgrav with PrivSep. 77ee21a45fSDag-Erling Smørgrav- OSF 78ee21a45fSDag-Erling Smørgrav + SIA is broken 79ee21a45fSDag-Erling Smørgrav- Cygwin 80ee21a45fSDag-Erling Smørgrav + Privsep for Pre-auth only (no fd passing) 81