summaryrefslogtreecommitdiff
path: root/usr.bin/skeyaudit/skeyaudit.c
diff options
context:
space:
mode:
Diffstat (limited to 'usr.bin/skeyaudit/skeyaudit.c')
-rw-r--r--usr.bin/skeyaudit/skeyaudit.c113
1 files changed, 113 insertions, 0 deletions
diff --git a/usr.bin/skeyaudit/skeyaudit.c b/usr.bin/skeyaudit/skeyaudit.c
new file mode 100644
index 00000000000..1e2bc6f984b
--- /dev/null
+++ b/usr.bin/skeyaudit/skeyaudit.c
@@ -0,0 +1,113 @@
+#include <err.h>
+#include <errno.h>
+#include <limits.h>
+#include <paths.h>
+#include <pwd.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <unistd.h>
+#include <skey.h>
+
+#include <sys/types.h>
+#include <sys/param.h>
+
+extern char *__progname;
+
+void usage __P((void));
+
+int
+main(argc, argv)
+ int argc;
+ char **argv;
+{
+ struct passwd *pw;
+ struct skey key;
+ int ch, errs, left = 0, iflag = 0, limit = 12;
+ char *name, hostname[MAXHOSTNAMELEN];
+ FILE *out;
+
+ while ((ch = getopt(argc, argv, "il:")) != -1)
+ switch(ch) {
+ case 'i':
+ iflag = 1;
+ break;
+ case 'l':
+ errno = 0;
+ if ((limit = (int)strtol(optarg, NULL, 10)) == 0)
+ errno = ERANGE;
+ if (errno) {
+ warn("key limit");
+ usage();
+ }
+ break;
+ default:
+ usage();
+ }
+
+ if (argc - optind > 0)
+ usage();
+
+ if ((pw = getpwuid(getuid())) == NULL)
+ errx(1, "no passwd entry for uid %u", getuid());
+ if ((name = strdup(pw->pw_name)) == NULL)
+ err(1, "cannot allocate memory");
+ sevenbit(name);
+
+ errs = skeylookup(&key, name);
+ switch (errs) {
+ case 0: /* Success! */
+ left = key.n - 1;
+ break;
+ case -1: /* File error */
+ /* XXX - _PATH_SKEYFILE should be in paths.h? */
+ warnx("cannot open /etc/skeykeys");
+ break;
+ case 1: /* Unknown user */
+ warnx("%s is not listed in /etc/skeykeys", name);
+ }
+
+ setuid(getuid()); /* Run sendmail as user not root */
+
+ if (errs || left >= limit)
+ exit(errs);
+
+ if (gethostname(hostname, sizeof(hostname)) == -1)
+ strcpy(hostname, "unknown");
+
+ if (iflag) {
+ out = stdout;
+ } else {
+ char cmd[sizeof(_PATH_SENDMAIL) + 3];
+
+ sprintf(cmd, "%s -t", _PATH_SENDMAIL);
+ out = popen(cmd, "w");
+ }
+
+ if (!iflag)
+ (void)fprintf(out,
+ "To: %s\nSubject: IMPORTANT action required\n", name);
+
+ (void)fprintf(out,
+"\nYou are nearing the end of your current S/Key sequence for account\n\
+%s on system %s.\n\n\
+Your S/key sequence number is now %d. When it reaches zero\n\
+you will no longer be able to use S/Key to login into the system.\n\n\
+Type \"skeyinit -s\" to reinitialize your sequence number.\n\n",
+name, hostname, left - 1);
+
+ if (iflag)
+ (void)fclose(out);
+ else
+ (void)pclose(out);
+
+ exit(0);
+}
+
+void
+usage()
+{
+ (void)fprintf(stderr, "Usage: %s [-i] [-l limit]\n",
+ __progname);
+ exit(1);
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-13 10:00:06 +0000