Skip to content

Commit

Permalink
release v3.06.00
Browse files Browse the repository at this point in the history
  • Loading branch information
speed47 committed Oct 20, 2021
1 parent 00aa2e7 commit 11b2bc6
Show file tree
Hide file tree
Showing 3 changed files with 20 additions and 1 deletion.
6 changes: 6 additions & 0 deletions doc/CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -1,3 +1,9 @@
## v3.06.00 - 2021/10/15
- feat: accountModify: add --pubkey-auth-optional
- fix: accountPIV: fix bad autocompletion rule
- fix: groupdel: false positive in lock contention detection
- doc: bastion.conf: add superowner system group requirement

## v3.05.01 - 2021/09/22
- feat: add ``--proactive-mfa`` and ``mfa``/``nofa`` interactive commands
- feat: ``osh-backup-acl-keys``: add the possibility to sign encrypted backups (#209)
Expand Down
13 changes: 13 additions & 0 deletions doc/sphinx/installation/upgrading.rst
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,19 @@ Note that if you're using an infrastructure automation tool such as Puppet, Ansi
Version-specific upgrade instructions
=====================================

v3.06.00 - 2021/10/15
*********************

The ``sshd_config`` templates have been modified to reflect the changes needed to use
the new ``--pubkey-auth-optional`` parameter of :doc:`/plugins/restricted/accountModify` (`#237 <https://github.com/ovh/the-bastion/pull/237>`_).
If you want to use it, don't forget to review your ``sshd_config`` and modify it accordingly: the templates can be found in ``etc/ssh/``.

Note that misconfiguring `sshd` and `pam` together could at worst entirely disable sshd authentication.
If you have a custom configuration, different from the templates we provide, please double-check
that such corner case is not possible by design.
A good way to ensure this is to review the `pam` configuration and ensure that there is no execution
flow that pushes a `pam_success` value to the pam stack without requiring any form of authentication.

v3.05.01 - 2021/09/22
*********************

Expand Down
2 changes: 1 addition & 1 deletion lib/perl/OVH/Bastion.pm
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ use common::sense;
use Fcntl;
use POSIX qw(strftime);

our $VERSION = '3.05.01';
our $VERSION = '3.06.00';

BEGIN {
# only used by the handler below
Expand Down

0 comments on commit 11b2bc6

Please sign in to comment.