News
More recent NewsMay 30, 2005
Just released qingy 0.6.0...
Just released qingy 0.6.0...
-
Security enhancement: added support for encrypting communications
between qingy and its user interface, triggered by new ./configure
option: --enable-crypto, enabled by default.
-
Security enhancement: Overwrite memory areas containing sensitive
user info before quitting...
-
Security fix: now authentication data is passed between
qingy and its GUI trough a securely created temp file.
-
A drop-down mouse menu for sessions has been implemented.
-
Added customizable keybindings support.
-
Because of the above, removed old powerkeys support
-
Fixed a rather obscure bug in which login could fail
even if username and password were correct
-
Added new setting in theme file, native_resolution, which
lets you specify the screen resolution the theme was crafted
for. This way, when qingy encounters a resolution different
than this one, it will scale all graphic elements so that
they look the same on all resolutions.
Note that this requires updating existing themes!
Note that this requires updating existing themes!
-
Added two new font sizes that can be used in theme files:
smaller and tiny.
-
Updated handling of utmp/wtmp logging so that chrootkit no longer
finds deletions in the latter when user logs out.
-
Brought tty guardian to a nearly completed state: now it
checks the tty you came from; if you were logged in as root
or as same user on the destination tty, it lets you pass,
otherwise it will ask you to enter either destination user
or root password. If authentication fails, it will send you
back to the tty you came from. It also remembers the last
user who successfully authenticated, so that he will not
have to authenticate again every time he switches to the
guarded tty (but if you switch to a tty owned by a third
user and go back, authentication will be asked again). The
only drawback is that if you come from an X session in which
you are logged in as root, it will ask you to authenticate,
because that situation can not (yet) be distinguished from
when you come from an unused tty (which is owned by root
as well)...
-
Fixed a number of tty guardian related bugs.
-
Other small fixes and clean-ups.
January 11, 2005
Here goes qingy 0.5.3...
Hello world, this is new year's first release, and it promises to be the best one so far! What's new:
Here goes qingy 0.5.3...
Hello world, this is new year's first release, and it promises to be the best one so far! What's new:
-
Finally the code behind the sleep button has been implemented:
just set up the sleep variable in config file to the
command you would like to execute for sleep mode, and
press the button in qingy...
-
Now the directory qingy uses to store its temporary files
can be customized
-
Added support for automatically logging in a user when
the machine powers up
-
Unset the DISPLAY env variable when starting a text
mode session, in case PAM provided a (wrong) one to us anyway.
-
Added support for passing user-defined arguments to the X server.
To enhance security, as a default we also pass -nolisten tcp...
-
Added optimizations for AMD Athlon64 processors
-
Fixed support for shadow passwords authentication
-
Fix stuff so that qingy links correctly against the PAM
library when compiled as a static binary.
-
Session files containing spaces are now supported
-
Reworked qingy PAM module to make it work with more distros
(tested on Fedora, Debian, Gentoo)
-
Added support for retries setting in config file
which allows user to specify how many times qingy
should try to bring its gui up before reverting
to text mode...
