Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
126,634 Commits 606 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
jonathan 496077ab25 Update sys/netipsec/key.c to check for attempts to add IPv6-related 
SPDs, and to warn about and reject any such attempts.

Addresses a security concern, that the (eas-yet incomplete, experimental)
FAST_IPSEC+INET6 does not honour IPv6 SPDs.  The security risk is that
Naive users may not realize this, and their data may get leaked in
cleartext, rather than IPsec'ed, if they use IPv6.

Security issue raised by: Thor Lancelot Simon
reviewed and OKed by: Thor Lancelot Simon

2.0 Pullup request after: 24 hours for further public comment.
2004-04-27 23:57:19 +00:00
bin
PR/25350: Alan Barrett: Treat the sticky bit specially as non-superusers
2004-04-27 13:45:45 +00:00
contrib/sys
crypto
properly validate phase 1 signature.
2004-04-12 03:34:05 +00:00
dist
Remove unused (and completely bogus) SYSTEM_NAME define from
2004-04-26 05:15:17 +00:00
distrib
The cat8 (pre-formatted) version of verify(8) should have a suffix of .0
2004-04-27 17:51:17 +00:00
doc
Note import of Postfix 2.1.0
2004-04-27 07:40:57 +00:00
etc
Add RCS Id.
2004-04-25 16:52:19 +00:00
games
s/the the/the/ (only in sources that aren't regularly imported from
2004-04-23 02:58:27 +00:00
gnu
Add readmes &/ obsoletes that I missed.
2004-04-27 15:35:55 +00:00
include
Un-__P().
2004-04-27 20:59:43 +00:00
lib
Remove internal names for dbm_*(3); these are not required at this time.
2004-04-27 20:03:45 +00:00
libexec
add const to cgetent arg.
2004-04-23 21:04:25 +00:00
regress
Add regression tests for pax/tar append archive mode.
2004-04-17 15:27:01 +00:00
rescue
sbin
fix 64bit bug in chkrange()
2004-04-26 23:46:22 +00:00
share
Update synopsis to match reality: usercode has to #include <sys/time.h>,
2004-04-27 23:42:59 +00:00
sys
Update sys/netipsec/key.c to check for attempts to add IPv6-related
2004-04-27 23:57:19 +00:00
tools
Add a compat definition of __packed.
2004-04-24 15:46:24 +00:00
usr.bin
clean up file descriptor handling. don't lose them...
2004-04-27 13:45:50 +00:00
usr.sbin
Allow for ROOTINO when deciding whether their are enough inodes in the
2004-04-26 21:06:55 +00:00
x11
- -DXFREE86 if we build an XFree86 server.
2004-04-24 03:42:07 +00:00
build.sh
BUILDING
Makefile
Convert lines of the form
2004-04-13 12:43:12 +00:00
Makefile.inc
UPDATING
mention the fixsb script and updated information on botched superblock
2004-04-25 21:16:57 +00:00
Description
No description provided
3.1 GiB
Languages
C 85.3%
Roff 7.2%
Assembly 3.1%
Shell 1.7%
Makefile 1.2%
Other 0.9%