aidan
dbb0b2f74d
Backout login_get_kconf function, because it breaks crypto-intl builds.
...
Keep the variables for setting default behaviour with krb4 and krb5
compiled in, even though they act like constants, to facilitate adding
another preference mechanism later.
2000-06-02 03:01:22 +00:00
aidan
39d1e5b7fd
Allow krb5 and krb4 to be compiled in to the same login binary at once,
...
krb5 can request a forwardable TGT,
can get both krb4 and krb5 tickets, if explicitely configured to do so
by the krb5.conf.
2000-05-30 06:56:16 +00:00
enami
1d82270b8c
- For root, if ignorenologin is set in login.conf, don't call
...
checknologin (previously, checknologin is called if ignorenologin is set).
- For non-root user, make ignorenologin take effect.
2000-03-07 14:11:22 +00:00
enami
6dccad067d
Cosmetic changes.
2000-03-07 13:59:19 +00:00
aidan
d6bf7fdb89
Move include/kerberosIV/com_err.h to include/com_err.h.
2000-02-14 03:21:02 +00:00
aidan
0c25a9e4d1
Patch from assar@netbsd.org to make k5login.c work with both MIT and Heimdal
...
kerberos trees.
2000-02-14 03:17:43 +00:00
mjl
b3204d536b
Add login_getpwclass to libutil as convenience function for
...
programs originally for FreeBSD.
Add parsing of "setenv" parameter which can be used to set
up an initial environment on login.
2000-02-04 02:17:14 +00:00
mjl
8e380b472c
Removed some fallback cases since that is now done in libutil.
2000-01-22 09:48:52 +00:00
mjl
eb1d660e28
Clean up changes a bit.
2000-01-13 12:43:19 +00:00
mjl
07053cf7c1
Re-enable login_cap processing, now that a non-existing login.conf
...
won't make it crash. Also make it less noisy in that case.
2000-01-13 06:52:47 +00:00
mjl
cfdb7e0720
Ack. Disable login caps, until problems are fixed.
2000-01-13 06:30:31 +00:00
mjl
4863ee6f07
Add login.conf capability setting.
2000-01-13 06:17:56 +00:00
billc
7ad9ba975f
copyright year change (thanks cgd) so we emit , 2000 now.
2000-01-07 00:00:37 +00:00
aidan
1cda1876da
Fixed 'login in free' warning in kdestroy().
1999-12-26 17:47:18 +00:00
aidan
5375ac8703
Made login continue without kerberos when there is no krb5.conf present
...
(and KERBEROS5 is defined).
1999-12-05 23:39:11 +00:00
christos
f5241efcfa
make this compile....
1999-08-25 19:58:15 +00:00
mycroft
ee0dfce003
Make this compile again in an ELF world.
1999-07-30 01:56:49 +00:00
mrg
51a96a002f
optionally include CRYPTOPATH Makefile.frag files.
1999-07-20 09:35:18 +00:00
thorpej
9630ed475e
Use bsd.crypto.mk.
1999-07-12 22:11:37 +00:00
aidan
3a4abbe0d1
Kerberos5 changes to login -- now supports forwarded TGTs.
1999-07-12 21:36:10 +00:00
christos
9966d744f2
Don't declare login here. It is declared in <util.h>
1999-06-15 14:19:53 +00:00
garbled
9e44e9b578
More and more .Os cleanups. .Os is defined in the tmac.doc-common file,
...
so we shouldn't override it with versions in the manpages. Many more to
come.
1999-03-22 18:16:34 +00:00
kim
0d4599522a
Build domestic login on domestic systems.
...
Incorporated (minor) diff from domestic man page.
1999-03-05 01:07:56 +00:00
scottr
8481f548e2
Remove the crypto-related bits until such time as we have a fully-
...
integrated source tree. Export-controlled versions of these are now
built during the domestic build process.
1999-02-18 21:22:51 +00:00
fair
0a35ac96da
Correct documentation of /etc/nologin to note that it does not
...
apply to the superuser, per PR#6328.
Correct some nroff nits in the process.
1999-01-13 10:51:07 +00:00
kim
0c127d7cef
Show year of last login.
1999-01-11 20:20:54 +00:00
lukem
0e36738ca6
add copyright 1999
1999-01-06 13:51:09 +00:00
tsarna
c89a574ffa
Execute ttyaction on termination of rlogind/telnetd sessions.
...
Also, say a little bit about ttyaction in the getty and login manpages.
1998-08-29 17:31:55 +00:00
ross
f670fa10c5
Add { and } to shut up egcs. Reformat the more questionable code.
1998-08-25 20:59:36 +00:00
mycroft
55ac0c2da3
const poisoning.
1998-07-26 21:58:46 +00:00
mrg
95b49ba52b
do _NOT_ use system(3) in setuid programs. KNF.
1998-07-11 08:12:51 +00:00
mrg
2beab49a06
- use an array MAXHOSTNAMELEN+1 size to hold hostnames
...
- ensure hostname from gethostname() is nul-terminated in all cases
- minor KNF
- use MAXHOSTNAMELEN over various other values/defines
- be safe will buffers that hold hostnames
1998-07-06 06:45:41 +00:00
fair
3b04f8e0b1
Add .Xr ttyaction 3 per PR#4647
1998-04-10 09:31:55 +00:00
kleink
fd366142a3
Need <time.h> for ctime() and time() prototypes.
1998-04-02 10:27:16 +00:00
hubertf
567c3f3e41
Also save groups before chdir($HOME). This fixes a problem pointed
...
out by Bernd Ernesti with /home/lusers/joe (being uid joe, gid lusers),
with /home/lusers mode 750 and owner root:lusers.
1998-01-16 00:31:53 +00:00
thorpej
974b59d07c
Happy new year!
1998-01-07 00:41:43 +00:00
hubertf
5dda445628
Give up special privileges before chdir($HOME) and access(.hushlogin),
...
fixing PR 4636 by myself with some help from Jason Thorpe.
1997-12-05 08:29:39 +00:00
mrg
6bb686b3be
print TNF copyright, like the kernel does.
1997-11-07 20:32:05 +00:00
mycroft
41b9ae035f
Use S_IS*(), not S_IF*.
1997-10-19 19:11:56 +00:00
lukem
13ee7130b1
s/bzero/memset
1997-10-19 04:18:46 +00:00
lukem
33b5dd5c52
fix .Nm usage
1997-10-19 04:18:08 +00:00
lukem
ca15d8c056
don't define WARNS=1 here
1997-10-19 03:44:21 +00:00
mycroft
83ef48db0a
Undo part of the previous; don't allow logins if we've passed pw_change.
...
The semantics of this are not well documented. *sigh*
1997-10-12 15:21:24 +00:00
mycroft
97734d5e35
Refuse login only when we've past pw_expire, not pw_change. Check pw_expire
...
first.
1997-10-12 15:11:24 +00:00
mycroft
879c3292d6
Several things:
...
* Change the semantics of the `-s' option somewhat. If specified, allow
either Kerberos or S/Key login, but not a plain password.
* Eliminate the special `s/key' password; just type it at the prompt.
* Remove the root instance special case. This is a serious security hole
waiting to happen, and no other system works this way.
* Don't force a password change if Kerberos was used. Also, don't call
/bin/passwd at all if the password change isn't required.
1997-10-12 15:05:24 +00:00
mycroft
2b4b3f1ded
SRCS must be defined *before* bsd.prog.mk is included...
1997-10-12 14:07:38 +00:00
mycroft
fc2c065578
Get rid of special cases for `s/key' password.
1997-10-12 14:07:06 +00:00
mycroft
d91c72fbd3
Minor changes.
1997-10-12 13:10:16 +00:00
mycroft
e6751fc584
Minor changes.
1997-10-12 12:54:55 +00:00
mycroft
1434f98d69
If we compile without SKEY, abort if a -s option is used, rather than silently
...
failing to enforce it.
1997-10-12 12:42:38 +00:00