6cb3c8e4eb
Handle printing ptyfs pty names
2005-03-17 01:34:41 +00:00
00e4cd7dc0
print ptyfs ptys properly.
2005-03-17 01:25:40 +00:00
a646be989c
Handle the regular case too, not only the error case.
2005-03-13 01:48:54 +00:00
bb8740ddcf
- Don't call pam functions after pam_end().
...
- Only call wait for our own pid.
- Improve error checking.
- Reorder some code to minimize diffs with FreeBSD.
2005-03-12 18:23:30 +00:00
98d24e6cc9
Remove unnecessary cast.
2005-03-11 16:04:09 +00:00
6e30b59e96
Some minor cleanup:
...
* Improve some comments and (error) messages.
* Use EXIT_FAILURE and EXIT_SUCCESS.
* Add function `maybe_syslog' (only log when -l is enabled).
Reviewed by christos.
2005-03-11 15:49:52 +00:00
4b98ca48e7
Sort options.
2005-03-09 16:43:37 +00:00
13966518a6
Bump date for previous, and some minor cleanup while here.
2005-03-09 16:42:49 +00:00
f396f9eb19
* Add ssh(1), sshd(8) and hosts_access(5) to SEE ALSO list.
...
(What would one look at for Kerberos?)
* Be a bit more explicit about the security implications of rsh & friends,
as suggested by Steven M. Bellovin and OK'd by Christos Zoulas
2005-03-09 07:49:08 +00:00
ceb0805a9b
Add -lcrypt where -lcrypto is specified.
2005-03-09 03:11:21 +00:00
a2ee5dcfcc
Avoid source routing ip options. Described in:
...
http://www.citi.umich.edu/u/provos/papers/secnet-spoof.txt
2005-03-08 04:35:19 +00:00
5152518685
Add -lcrypt to link lines for applications using -lkrb5, so that they
...
link successfully when MKPIC=no, as is always the case for our ports
which do not support shared libraries.
Discussed with thorpej and christos.
2005-03-04 20:44:55 +00:00
8e8728c45c
Introduce PAM_STATIC_LDADD and PAM_STATIC_DPADD. When compiling
...
with MKPIC=no, possibly because the target does not support shared
libraries, these include libraries required to resolve all symbols
which end up referenced from PAM-using applications. The libraries
presently required are -lcrypt, -lrpcsvc and -lutil.
Add use of these variables which are currently set up to use PAM,
so that they compile when MKPIC=no.
Also, in the telnetd case, reorder the order of the libraries, so
that libtelnet.a comes before -ltermcap and -lutil, again to fix
link error when MKPIC=no.
Discussed with thorpej and christos.
2005-03-04 20:41:08 +00:00
f0b5287312
* Add hidesymlinks configuration option
...
This adds a -L to all ls command arguments so that the file or directory
the link references is listed rather than the link itself. This was
inspired by IRIX ftpd's -S option.
[Discussed with lukem some time ago.]
* Crank version.h [right Luke? :-)]
2005-03-03 22:19:47 +00:00
aa73cae196
Add a few lines of code to print the output from the remotely executed program.
2005-02-27 01:34:07 +00:00
f5ee31d050
Update and be more descriptive about one of the machine specific #ifdefs
2005-02-26 22:26:18 +00:00
6e52bfc264
Various minor LFS improvements:
...
* Adapt lfs_cleanerd to use the fcntl call to get the Ifile filehandle,
so it need not be in the namespace.
* Make lfs_cleanerd be more careful when there are very few available
segments.
* Remove the Ifile from the filesystem namespace. The cleaner now uses
a fcntl call on the root inode to find the Ifile filehandle.
* Make lfs_cleanerd less verbose when the filesystem is unmounted.
2005-02-26 05:43:04 +00:00
81e0d2b0af
Add an example program that tests rexecd... I really don't want to encourage
...
its use though.
2005-02-23 01:27:32 +00:00
62136d5653
PAMify: From John Nemeth with fixes from me.
2005-02-23 01:25:50 +00:00
5029779902
Add pam glue.
2005-02-20 08:52:10 +00:00
216d8f75cc
Add missing goto badlogin; noticed by: Hisashi T Fujinaka
2005-02-20 06:11:51 +00:00
6b2a62b742
PAMify.
2005-02-20 05:45:55 +00:00
99fd5044d3
Add PAM and LOGIN_CAP support. Mostly from FreeBSD. If pam is defined,
...
then we don't fall back to other authentications even if PAM fails due
to a system error (e.g. configuration problem).
2005-02-20 01:45:17 +00:00
f27acbf4fc
Make this compile after the de-__Ping round.
2005-02-06 17:30:33 +00:00
4b90129081
de-__P, ANSIfy function declarations, remove obsolete "register" declarations.
2005-02-06 05:58:20 +00:00
4c57dc9906
de-__P, ANSIfy function declarations, remove obsolete "register" declarations.
2005-02-06 05:11:52 +00:00
d7931a6191
Quote symbol names in a debug message (to make it easier to spot an empty
...
symbol name, a common failure mode)
2005-01-11 21:58:27 +00:00
d977618dcf
Backout -DDEBUG that I accidently commited with the last change
2005-01-11 07:47:37 +00:00
e793dd138a
Fix thinko with last commit.
2005-01-10 19:01:09 +00:00
1e281ed227
Only #define HAVE_IPV6 if ${USE_INET6} != "no".
2005-01-10 03:11:17 +00:00
7157011597
Only compile in IPv6 support if ${USE_INET6} != "no"
...
MKINET6 is for providing IPv6 infrastructure.
USE_INET6 is for compiling IPv6 support into the programs (needs MKINET6).
2005-01-10 02:58:58 +00:00
0a1196da3e
Add LD_BIND_NOW support for sparc and remove some relocation types that
...
are not supposed to happen in 32bit code.
From Nick Hudson.
2005-01-09 14:58:15 +00:00
c364c98f98
Don't process DT_DEBUG on MIPS as the dynamic section is mapped
...
read-only. DT_MIPS_RLD_MAP is used instead.
Patch from Nick Hudson.
2005-01-09 12:43:23 +00:00
3596f57f42
ANSIfy; de-__P(); use STD*_FILENO rather than `magic' numbers
2005-01-08 03:14:02 +00:00
53eddbb6b4
Reorder some declarations so that parsers generated by bison can compile.
...
Fix from Michael Richardson.
2005-01-05 10:31:27 +00:00
995d8a8e4b
Add support for unaligned relocs on sparc, from PR 26858.
...
Should also fix PR 25901 and PR 18296.
2005-01-05 09:18:53 +00:00
35130888e4
Add LD_BIND_NOW support for sparc64.
2005-01-05 09:16:03 +00:00
a0dab7aa39
Move linking with libdes to the common kerberos section since
...
libtelnet depends on the old des functions.
From Jukka Salmi in NetBSD pr misc/28727
2004-12-22 01:25:05 +00:00
ac7236712a
ELF32_ST_TYPE -> ELF_ST_TYPE
2004-12-17 10:53:27 +00:00
38fb01be3a
Apply fixes from Charles:
...
- Fix how _rtld_relocate_nonplt_self deals with REL32 relocations.
- Change the assert so that it is correct for binutils 2.14 and 2.15.
There are still problems with the libraries generated with binutils 2.15,
but at least ld.elf_so doesn't crash.
2004-12-15 10:26:29 +00:00
d465dbd49e
change _PATH_FOO to _NAME_FOO where FOO is not a path. I'll discuss with
...
luke what is the best way to fix this.
2004-12-11 18:37:26 +00:00
93b00943e9
Fix inverted test for expired passwords. Mea culpa.
2004-12-09 20:58:39 +00:00
2b9d36c223
PR/28473: Jed Davis: telnetd loses data and corrupts crypto state due to
...
typo in use of poll(). There was an && instead of an & (hi charles)
2004-11-30 04:13:43 +00:00
0211645da7
* Don't allow accounts with age expired passwords to login. Any account
...
that is required to change their password will not be allowed FTP
access. Inspired by similar functionality in other FTP daemons.
(approved by lukem)
* Crank version to 20041119 per lukem's request.
2004-11-19 16:03:58 +00:00
c7dab32bb3
The /bin/rmail compat link has been in several major releases now.
2004-11-17 00:33:45 +00:00
da88342476
NI_WITHSCOPEID was not picked up by IETF standardization process
2004-11-16 06:04:12 +00:00
c2edf6628e
Oops, always store a full struct sockaddr_storage.
2004-11-15 21:01:18 +00:00
b904cdf4f6
- use sockaddr_storage directly.
...
- socklen_t instead of int.
- check ss_len for validity.
- pass -a to login so that it can record the address we've logged in from.
- constify.
2004-11-15 20:45:52 +00:00
8b4b693dbe
Pass -a [srrvis'd struct sockaddr] to login, so that login can record the
...
address where we have logged in from.
2004-11-14 18:07:56 +00:00
096fec04a9
move pf reachover makefiles into usr.sbin/pf. ok'ed by itojun.
...
before:
sbin/pfctl
usr.sbin/authpf
usr.sbin/spamdb
libexec/ftp-proxy
libexec/spamd
libexec/spamd-setup
libexec/spamlogd
after:
usr.sbin/pf/pfctl
usr.sbin/pf/authpf
usr.sbin/pf/spamdb
usr.sbin/pf/ftp-proxy
usr.sbin/pf/spamd
usr.sbin/pf/spamd-setup
usr.sbin/pf/spamlogd
2004-11-11 11:54:51 +00:00
christos