Age | Commit message (Collapse) | Author | |
---|---|---|---|
1998-08-17 | don't include FIFOs in check for set[ug]id files and devices; andrew@nfr.net | Todd C. Miller | |
1998-07-11 | better checks for . in path from "Denis A. Doroshenko" <cyxob@isl.vtu.lt> | Marco S Hyman | |
1998-05-10 | Check a few more DOTfiles that could potentially compromise security on a per | Todd T. Fries | |
user basis. | |||
1998-03-22 | fix ksh.kshrc; check ksh.kshrc, .kshrc for owner/mode/path | Marco S Hyman | |
1998-02-25 | Deal with non-existent /etc/skeykeys | Todd C. Miller | |
1997-12-28 | be more careful during termination | Theo de Raadt | |
1997-11-17 | completely avoid master.passwd in the changelist processing; ↵ | Theo de Raadt | |
jbernard@tater.mines.edu | |||
1997-10-05 | handling for closed home directories; yensid@afri.imsa.edu | Theo de Raadt | |
1997-09-29 | oops, detect blowfish-a as OK; yensid@imsa.edu, PR#321 | Theo de Raadt | |
1997-09-02 | better path handling; jbernard@tater.mines.edu, netbsd pr#3995 | Theo de Raadt | |
1997-06-23 | /etc/profile should be checked along with .profile for consistency with | Todd C. Miller | |
/etc/csh.login and .login. From Chris Jones <cjones@rupert.oscs.montana.edu> | |||
1997-06-02 | 1. ignore blank lines | flipk | |
2. /-ro/ -> /^-ro$/ : allows hostnames containing "*-ro*" and ignores "-root" | |||
1997-03-17 | Don't consider an account disabled just because the password length != 13. | gene | |
Also, take into account users w/ the blowfish cypher. | |||
1996-12-10 | blow away tmp dir on more traps | Theo de Raadt | |
1996-12-06 | check for entry in /etc/skeykeys and ~/.ssh in evil system() | Todd C. Miller | |
1996-12-06 | Change some "test -f" to "test -s" | Todd C. Miller | |
Don't bitch about star'd out logins unless they have a .rhosts/.shosts/.klogin file (ie: something that would let them in via rsh/ssh). | |||
1996-12-06 | skip lines in /etc/passwd that start with + or -. | Todd C. Miller | |
don't bitch about root-owned .rhosts since multiple system accounts share root's homedir. | |||
1996-11-30 | Merged our changes back into 4.4BSD version. | Todd C. Miller | |
Can't do "find -ls" since we need to store the date in an absolute format (ls -T). Use "find -print0" | xargs -0 instead. | |||
1996-11-23 | Deal with leading whitespace in find output. Fixes problem of devices | Todd C. Miller | |
showing up in the setuid list ;-) | |||
1996-10-22 | Update to work properly with output from find -ls; also skip commented out | Thorsten Lockert | |
lines in /etc/exports | |||
1996-09-20 | names of set-uid files are no longer passed to a shell. | bitblt | |
Thanks to deraadt for pointing out the -ls flag on find. | |||
1996-09-16 | toor is gone; thanks bibtlt | Theo de Raadt | |
1996-09-15 | setup trap after mkdir | Theo de Raadt | |
1996-09-15 | kill the races; found by bitblt | Theo de Raadt | |
1996-07-19 | Would give complain that /etc/hosts.equiv /etc/shosts.equiv /etc/hosts.lpd | Todd C. Miller | |
have '+' in them even when they don't. Escaped the + to fix. | |||
1996-07-12 | setgid too | Theo de Raadt | |
1996-07-07 | only watch for pure + entries | Theo de Raadt | |
1996-05-26 | sync & label | Theo de Raadt | |
1995-12-18 | numerous improvements by arnej@pvv.unit.no, david@city.ac.uk, and myself. | Theo de Raadt | |
complain less in normal situations, and deal better with netgroups, YP, ssh configuration files, and other rather normal configurations. | |||
1995-10-18 | initial import of NetBSD tree | Theo de Raadt | |