Go to file
lukem d85f3bb159 * make checkportcmd the default. this breaks third-party proxy ftp but
prevents the ftp bounce attack, and we should be secure out of the
  box, not require users to tweak obscure stuff.
* allow the version string reported to clients to be changed with '-V vers'.
  if vers is empty or `-', don't report a version.
* if -r is given, permanently drop root privs
* if not a REAL user (i.e, GUEST or CHROOT), and ftpd is running on a port
  > IPPORT_RESERVED+1, permanently drop root privs
* don't bother reverting to root privs to logout of wtmp/utmp; since the
  file descriptor is already open this isn't necessary.
* fix the binding of the port for the PORT/LPRT/EPRT connection to be the
  ctrl_addr.su_port-1, not hardcoded to `20' (this was broken in the ipv6
  merge). if root privs have been dropped, and this would be a port <
  IPPORT_RESERVED, use a random port instead (which isn't RFC959 compliant
  but it doesn't appear that many clients care).
* prevent login of a new user if privs have been dropped and already logged
  in as a REAL user (existing check already stops GUEST & CHROOT users).
* move the port check stuff into a separate port_check() function, and use
  for PORT, LPRT, and EPRT checks. inspired by freebsd
* minor KNF
* minor man page cleanup
2000-07-23 14:40:48 +00:00
bin host program portability: don't use <sys/cdefs.h>, __COPYRIGHT(), 2000-07-18 19:13:20 +00:00
crypto Return failure if there is no Kerberos 5 configuration file. 2000-07-16 18:27:53 +00:00
dist Use /usr/share/doc/html/ntp as location for html files. 2000-07-23 14:30:54 +00:00
distrib add the last missing (obsolete) vm files (and the directory itself) 2000-07-23 14:17:49 +00:00
etc Add a Makefile.inc with snap_md_post to build and install release notes 2000-07-22 02:33:53 +00:00
games printf() pedant - do not pass variable alone, use %s. 2000-07-10 10:19:25 +00:00
gnu sync with 8.11.0. (relatively large amount of changes are due to 2000-07-23 14:24:48 +00:00
include ANSIfy, libutil part is done. 2000-07-18 15:29:47 +00:00
lib Fix stack BIAS issues. 2000-07-23 07:12:22 +00:00
libexec * make checkportcmd the default. this breaks third-party proxy ftp but 2000-07-23 14:40:48 +00:00
regress Skey hash algorithm regression test. 2000-07-06 22:35:57 +00:00
sbin also note that the WaveLAN/IEEE Gold cards accept the 104 bits key. 2000-07-21 18:31:03 +00:00
share ea(4) is now useful on arm26, so document it. 2000-07-22 23:14:38 +00:00
sys Include "uvm/uvm_param.h" to get definition of "VM_MAX_KERNEL_BUF" as 2000-07-23 10:41:35 +00:00
usr.bin Redo previous slightly differently - restore the behaviour of two 2000-07-22 03:14:06 +00:00
usr.sbin Use /usr/share/doc/html/ntp as location for html files. 2000-07-23 14:34:14 +00:00
Makefile Merge a bunch of things from crypto-us and crypto-intl into basesrc, 2000-06-20 06:00:24 +00:00
Makefile.inc Set RELTOP to '.' if that's where we are. 2000-05-06 15:05:15 +00:00