Commit Graph

473 Commits

Author SHA1 Message Date
elric
512a461832 Change all functions that call gssapi_krb5_init() to call one of
two macros GSSAPI_KRB5_INIT() or GSSAPI_KRB5_INIT_MS() which call
the former, check its return code and bail on error.

Addresses PR lib/19191
Given a quick look by joda@.
2002-11-28 11:21:16 +00:00
darrenr
8084625896 racoon.conf can be found in /etc/racoon, not /etc 2002-11-27 09:51:50 +00:00
itojun
a426f44395 sync w/ kame source from 2002/11/20.
- plug some memory leaks
- correct phase 2 proposal reqid handling
- check for fd_set overrun
2002-11-20 03:35:57 +00:00
itojun
7285409e64 KAME racoon as of 2002/11/20 2002-11-20 03:30:18 +00:00
itojun
314a4f35b5 correct panic() condition - it was backwards. remove kame-local diff
which was committed by mistake.
From: Rafal Boni <rafal@attbi.com>
2002-11-18 23:36:18 +00:00
joda
bc13d2aefa don't blindly trust rlen; from Heimdal 0.5.1 2002-10-21 19:39:51 +00:00
provos
32b88027c7 use readlink with bufsize - 1; approved thorpej. 2002-10-19 20:33:17 +00:00
itojun
df884fac23 revert previous. need more time to think. 2002-10-18 23:51:07 +00:00
itojun
8201174690 condition to panic() was backwards. sync w/kame
From: Rafal Boni <rafal@attbi.com>
2002-10-18 23:44:58 +00:00
itojun
4752a4465b discourage the use of aggressive mode for identity disclosure. 2002-10-18 14:34:04 +00:00
manu
a2e26d6e11 back out the previous change. We really don't want to enable login on a
mode 666 tty.
In order to use sshd logins with a read-only /dev, the administrator has to
make the tty mode 600 root/wheel before the partition gets read-only.
2002-10-15 15:33:04 +00:00
manu
9dc3c4ee08 Re-allow connection when /dev is read-only, and the tty is owned by the
user or owned by root.
2002-10-15 15:19:02 +00:00
itojun
173446ddd0 use cast to unsigned long long, instead of PRIu64
(to make it easier to move the change back to main openssh distribution)
2002-10-04 02:22:05 +00:00
petrov
31b9b01a31 use PRIu64 for u_int64_t. 2002-10-03 07:41:10 +00:00
elric
f07ce00ec5 Turn on strict alignment #define's, because racoon reliably core
dumps on machines which require strict alignment such as sparc64.
2002-10-02 17:53:11 +00:00
itojun
ef7d24574a upgrade to openssh 3.5. major changes include:
- krb4/5 support for privsep (krb5 diff was already applied)

includes fake implementaation of getpeereid() from openssh-portable, which
does nothing useful - need improvement.
2002-10-01 14:07:26 +00:00
itojun
604e45f4cd OpenSSH 3.5 as of Oct 1, 2002 2002-10-01 13:39:55 +00:00
elric
75bc91b4e4 Changed documentation of the default setting for PermitRootLogin
to ``no'', to match our actual default setting.

Addresses PR: bin/18445
2002-09-28 15:07:33 +00:00
itojun
5431e7941f tweak the example $HOME/.ssh/rc script to not show on any cmdline the
sensitive data it handles. This fixes bug # 402 as reported by
kolya@mit.edu (Nickolai Zeldovich).
2002-09-25 03:43:19 +00:00
mycroft
1268ff2729 select() -> poll() 2002-09-20 22:16:02 +00:00
mycroft
c83fcd876c select() -> poll() 2002-09-20 22:05:59 +00:00
mycroft
016f903642 select() -> poll() 2002-09-20 21:48:58 +00:00
mycroft
ee48615074 select() -> poll() 2002-09-20 21:34:31 +00:00
joda
ee1dfded94 change unconfigured error code back to ENXIO 2002-09-19 19:48:33 +00:00
joda
7417b5942f de-__P and comment out all parameter names 2002-09-19 19:22:53 +00:00
itojun
17e856961c don't quit while creating X11 listening socket.
address (first) problem described in
http://mail-index.netbsd.org/current-users/2002/09/16/0005.html
2002-09-17 06:26:18 +00:00
thorpej
f603ddfaad __RCSID is not a portable macro to be using in a host tool (which
these files are).  As a short-term work-around, only use it if it
is defined.  A better solution will be worked out with the Heimdal
folks later.

Fixes building these host tools on Solaris 8.
2002-09-13 19:09:00 +00:00
joda
72be5e0769 invert detach flag to match previous NetBSD behaviour 2002-09-12 17:16:38 +00:00
joda
cae4f88ee0 kill some warnings 2002-09-12 15:35:02 +00:00
joda
2c3a59b23a krb5_socklen_t and krb5_ssize_t should not go here 2002-09-12 14:52:33 +00:00
joda
91f0927074 make this actually do something 2002-09-12 14:12:18 +00:00
joda
58cc4c1950 alias dns functions so we don't have to bump major 2002-09-12 14:10:25 +00:00
joda
da086653ff resolve import conflicts 2002-09-12 13:18:49 +00:00
joda
0444766465 import heimdal 0.5 2002-09-12 12:41:31 +00:00
joda
5146dc79e7 import helper 2002-09-12 12:35:03 +00:00
joda
3cc6c8c775 resolve import conflicts 2002-09-12 12:33:10 +00:00
joda
cfa4cd31bb import krb4 1.2 2002-09-12 12:22:01 +00:00
itojun
32e004f92a kerberos support w/ privsep. confirmed to work by lha@stacken.kth.se 2002-09-09 06:45:17 +00:00
itojun
42ebaa698b don't touch free'ed memory. From: wang.zhong3@zte.com.cn, sync w/kame 2002-09-03 14:38:13 +00:00
itojun
2b9b8f5bd3 reduce #ifdef related to OPENSSLDIR - we want it be static 2002-09-01 11:38:34 +00:00
itojun
50d422c24f e_os.h is not part of exported openssl interface, so don't install it into
/usr/include/openssl (e_os.h has an explicit comment about it).  it obviously
is a bug in openssl 0.9.6 Makefile.
based on openssl 0.9.7 snapshot.
2002-08-31 10:46:36 +00:00
itojun
e1754c22c2 if () statement error. From: Krister Walfridsson <cato@df.lth.se>
(not compiled)  sync w/kame
2002-08-31 07:56:14 +00:00
itojun
7049b3bdab blank commit to force rebuild of krb.h 2002-08-29 14:34:11 +00:00
itojun
f613969b8a somehow main trunk was not in sync with 0.9.6f for this file. noted by havard. 2002-08-28 23:10:30 +00:00
itojun
bcb0cf6929 tighten isakmp header length validation. from kame 2002-08-28 04:44:04 +00:00
wiz
b57bfa3f73 Drop superfluous Ns, sort sections. 2002-08-20 16:05:46 +00:00
wiz
4f40f42275 Remove superfluous Ns, drop trailing whitespace, fix a Xr, don't let lines
get longer than 80 characters.
2002-08-20 16:04:13 +00:00
wiz
2610a5c4d8 Remove superfluous Ns; while here, remove trailing whitespace and fix a
punctuation problem.
2002-08-20 15:59:37 +00:00
wiz
158398c921 Fix Ns abuse. 2002-08-20 15:32:12 +00:00
wiz
9bf08abfd4 Remove some unnecessary .Ns and trailing whitespace. 2002-08-20 15:24:38 +00:00