Commit Graph

2095 Commits

Author SHA1 Message Date
christos
6cb3c8e4eb Handle printing ptyfs pty names 2005-03-17 01:34:41 +00:00
christos
00e4cd7dc0 print ptyfs ptys properly. 2005-03-17 01:25:40 +00:00
christos
a646be989c Handle the regular case too, not only the error case. 2005-03-13 01:48:54 +00:00
christos
bb8740ddcf - Don't call pam functions after pam_end().
- Only call wait for our own pid.
- Improve error checking.
- Reorder some code to minimize diffs with FreeBSD.
2005-03-12 18:23:30 +00:00
ginsbach
98d24e6cc9 Remove unnecessary cast. 2005-03-11 16:04:09 +00:00
peter
6e30b59e96 Some minor cleanup:
* Improve some comments and (error) messages.
* Use EXIT_FAILURE and EXIT_SUCCESS.
* Add function `maybe_syslog' (only log when -l is enabled).

Reviewed by christos.
2005-03-11 15:49:52 +00:00
wiz
4b98ca48e7 Sort options. 2005-03-09 16:43:37 +00:00
wiz
13966518a6 Bump date for previous, and some minor cleanup while here. 2005-03-09 16:42:49 +00:00
hubertf
f396f9eb19 * Add ssh(1), sshd(8) and hosts_access(5) to SEE ALSO list.
(What would one look at for Kerberos?)
 * Be a bit more explicit about the security implications of rsh & friends,
   as suggested by Steven M. Bellovin and OK'd by Christos Zoulas
2005-03-09 07:49:08 +00:00
christos
ceb0805a9b Add -lcrypt where -lcrypto is specified. 2005-03-09 03:11:21 +00:00
christos
a2ee5dcfcc Avoid source routing ip options. Described in:
http://www.citi.umich.edu/u/provos/papers/secnet-spoof.txt
2005-03-08 04:35:19 +00:00
he
5152518685 Add -lcrypt to link lines for applications using -lkrb5, so that they
link successfully when MKPIC=no, as is always the case for our ports
which do not support shared libraries.

Discussed with thorpej and christos.
2005-03-04 20:44:55 +00:00
he
8e8728c45c Introduce PAM_STATIC_LDADD and PAM_STATIC_DPADD. When compiling
with MKPIC=no, possibly because the target does not support shared
libraries, these include libraries required to resolve all symbols
which end up referenced from PAM-using applications.  The libraries
presently required are -lcrypt, -lrpcsvc and -lutil.

Add use of these variables which are currently set up to use PAM,
so that they compile when MKPIC=no.

Also, in the telnetd case, reorder the order of the libraries, so
that libtelnet.a comes before -ltermcap and -lutil, again to fix
link error when MKPIC=no.

Discussed with thorpej and christos.
2005-03-04 20:41:08 +00:00
ginsbach
f0b5287312 * Add hidesymlinks configuration option
This adds a -L to all ls command arguments so that the file or directory
  the link references is listed rather than the link itself.  This was
  inspired by IRIX ftpd's -S option.
  [Discussed with lukem some time ago.]
* Crank version.h [right Luke? :-)]
2005-03-03 22:19:47 +00:00
christos
aa73cae196 Add a few lines of code to print the output from the remotely executed program. 2005-02-27 01:34:07 +00:00
skrll
f5ee31d050 Update and be more descriptive about one of the machine specific #ifdefs 2005-02-26 22:26:18 +00:00
perseant
6e52bfc264 Various minor LFS improvements:
* Adapt lfs_cleanerd to use the fcntl call to get the Ifile filehandle,
  so it need not be in the namespace.
* Make lfs_cleanerd be more careful when there are very few available
  segments.
* Remove the Ifile from the filesystem namespace.  The cleaner now uses
  a fcntl call on the root inode to find the Ifile filehandle.
* Make lfs_cleanerd less verbose when the filesystem is unmounted.
2005-02-26 05:43:04 +00:00
christos
81e0d2b0af Add an example program that tests rexecd... I really don't want to encourage
its use though.
2005-02-23 01:27:32 +00:00
christos
62136d5653 PAMify: From John Nemeth with fixes from me. 2005-02-23 01:25:50 +00:00
christos
5029779902 Add pam glue. 2005-02-20 08:52:10 +00:00
christos
216d8f75cc Add missing goto badlogin; noticed by: Hisashi T Fujinaka 2005-02-20 06:11:51 +00:00
christos
6b2a62b742 PAMify. 2005-02-20 05:45:55 +00:00
christos
99fd5044d3 Add PAM and LOGIN_CAP support. Mostly from FreeBSD. If pam is defined,
then we don't fall back to other authentications even if PAM fails due
to a system error (e.g. configuration problem).
2005-02-20 01:45:17 +00:00
agc
f27acbf4fc Make this compile after the de-__Ping round. 2005-02-06 17:30:33 +00:00
perry
4b90129081 de-__P, ANSIfy function declarations, remove obsolete "register" declarations. 2005-02-06 05:58:20 +00:00
perry
4c57dc9906 de-__P, ANSIfy function declarations, remove obsolete "register" declarations. 2005-02-06 05:11:52 +00:00
martin
d7931a6191 Quote symbol names in a debug message (to make it easier to spot an empty
symbol name, a common failure mode)
2005-01-11 21:58:27 +00:00
martin
d977618dcf Backout -DDEBUG that I accidently commited with the last change 2005-01-11 07:47:37 +00:00
ginsbach
e793dd138a Fix thinko with last commit. 2005-01-10 19:01:09 +00:00
lukem
1e281ed227 Only #define HAVE_IPV6 if ${USE_INET6} != "no". 2005-01-10 03:11:17 +00:00
lukem
7157011597 Only compile in IPv6 support if ${USE_INET6} != "no"
MKINET6 is for providing IPv6 infrastructure.
USE_INET6 is for compiling IPv6 support into the programs (needs MKINET6).
2005-01-10 02:58:58 +00:00
martin
0a1196da3e Add LD_BIND_NOW support for sparc and remove some relocation types that
are not supposed to happen in 32bit code.
From Nick Hudson.
2005-01-09 14:58:15 +00:00
simonb
c364c98f98 Don't process DT_DEBUG on MIPS as the dynamic section is mapped
read-only.  DT_MIPS_RLD_MAP is used instead.

Patch from Nick Hudson.
2005-01-09 12:43:23 +00:00
ginsbach
3596f57f42 ANSIfy; de-__P(); use STD*_FILENO rather than `magic' numbers 2005-01-08 03:14:02 +00:00
lukem
53eddbb6b4 Reorder some declarations so that parsers generated by bison can compile.
Fix from Michael Richardson.
2005-01-05 10:31:27 +00:00
martin
995d8a8e4b Add support for unaligned relocs on sparc, from PR 26858.
Should also fix PR 25901 and PR 18296.
2005-01-05 09:18:53 +00:00
martin
35130888e4 Add LD_BIND_NOW support for sparc64. 2005-01-05 09:16:03 +00:00
lha
a0dab7aa39 Move linking with libdes to the common kerberos section since
libtelnet depends on the old des functions.

From Jukka Salmi in NetBSD pr misc/28727
2004-12-22 01:25:05 +00:00
mycroft
ac7236712a ELF32_ST_TYPE -> ELF_ST_TYPE 2004-12-17 10:53:27 +00:00
skrll
38fb01be3a Apply fixes from Charles:
- Fix how _rtld_relocate_nonplt_self deals with REL32 relocations.

- Change the assert so that it is correct for binutils 2.14 and 2.15.

There are still problems with the libraries generated with binutils 2.15,
but at least ld.elf_so doesn't crash.
2004-12-15 10:26:29 +00:00
christos
d465dbd49e change _PATH_FOO to _NAME_FOO where FOO is not a path. I'll discuss with
luke what is the best way to fix this.
2004-12-11 18:37:26 +00:00
ginsbach
93b00943e9 Fix inverted test for expired passwords. Mea culpa. 2004-12-09 20:58:39 +00:00
christos
2b9d36c223 PR/28473: Jed Davis: telnetd loses data and corrupts crypto state due to
typo in use of poll(). There was an && instead of an & (hi charles)
2004-11-30 04:13:43 +00:00
ginsbach
0211645da7 * Don't allow accounts with age expired passwords to login. Any account
that is required to change their password will not be allowed FTP
  access.  Inspired by similar functionality in other FTP daemons.
  (approved by lukem)

* Crank version to 20041119 per lukem's request.
2004-11-19 16:03:58 +00:00
soren
c7dab32bb3 The /bin/rmail compat link has been in several major releases now. 2004-11-17 00:33:45 +00:00
itojun
da88342476 NI_WITHSCOPEID was not picked up by IETF standardization process 2004-11-16 06:04:12 +00:00
christos
c2edf6628e Oops, always store a full struct sockaddr_storage. 2004-11-15 21:01:18 +00:00
christos
b904cdf4f6 - use sockaddr_storage directly.
- socklen_t instead of int.
- check ss_len for validity.
- pass -a to login so that it can record the address we've logged in from.
- constify.
2004-11-15 20:45:52 +00:00
christos
8b4b693dbe Pass -a [srrvis'd struct sockaddr] to login, so that login can record the
address where we have logged in from.
2004-11-14 18:07:56 +00:00
yamt
096fec04a9 move pf reachover makefiles into usr.sbin/pf. ok'ed by itojun.
before:
	sbin/pfctl
	usr.sbin/authpf
	usr.sbin/spamdb
	libexec/ftp-proxy
	libexec/spamd
	libexec/spamd-setup
	libexec/spamlogd
after:
	usr.sbin/pf/pfctl
	usr.sbin/pf/authpf
	usr.sbin/pf/spamdb
	usr.sbin/pf/ftp-proxy
	usr.sbin/pf/spamd
	usr.sbin/pf/spamd-setup
	usr.sbin/pf/spamlogd
2004-11-11 11:54:51 +00:00