| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2004-12-11 | make syscalls in the monitor restartable when signals occur, as was | Moritz Jodeit | |
| the case before privsep and only wait() for our slave processes. with help from millert@ ok millert@ henning@ | |||
| 2004-12-06 | seperate reply_r, like earlier change but safer; moritz ok | Theo de Raadt | |
| 2004-12-04 | reply() used to play a lot with stdout, expecially fflush(stdout). | Theo de Raadt | |
| The recent change is to avoid stdio. That's good, except there are nearly 130 calls to this function, yet what if one of them depended on fflush() or something else in this code? The semantic change was never checked. That is not how we do development -- back this out until we know that checking work has been done. | |||
| 2004-12-03 | make reply() reentrant. fixes a signal race. | Moritz Jodeit | |
| ok henning@ | |||
| 2004-11-28 | privilege seperate ftpd | Henning Brauer | |
| handle the pre-authentication phase (minus a tiny tiny tiny amount of code after accept()) in an unprivileged process, asking the privileged monitor for help where needed. work by Moritz Jodeit <moritz@jodeit.org> with help from theo and me tests theo ian@ matthieu@ ben@networkinsanity.com a.schlichting@lemarit.com | |||
| 2003-12-10 | spacing | Theo de Raadt | |
| 2003-06-02 | Remove the advertising clause in the UCB license which Berkeley | Todd C. Miller | |
| rescinded 22 July 1999. Proofed by myself and Theo. | |||
| 2002-07-02 | * use lostconn() as the SIGALRM handler in receive_data() as originally | Dan Harnett | |
| done by downsj@ in revision 1.54. * some -Wall cleanup - only declare check_host() if TCPWRAPPERS is defined. - use socklen_t where appropriate instead of int (pointer signedness warnings). - {u_}char * pointer signedness warnings. ok millert@ | |||
| 2002-06-17 | Initialize SIGALRM handler once in main(), instead of in several | Dan Harnett | |
| different locations. This fixes a problem where the SIGALRM handler was being set to an uninitialized pointer in receive_data(). Originally reported to the misc@ list by Colin Harford. ok millert@ | |||
| 2002-02-19 | Rewrite upper(). | Mike Pechkin | |
| millert@ ok | |||
| 2002-02-16 | Part one of userland __P removal. Done with a simple regexp with some minor ↵ | Todd C. Miller | |
| hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically. | |||
| 2002-01-30 | Fix leak in `EPSV ALL`. | Mike Pechkin | |
| Since now ``ALL'' should be treated like CRLF, COMMA, etc. millert@ ok | |||
| 2002-01-30 | protect `RNTO` from NULL pointer. | Mike Pechkin | |
| millert@ ok | |||
| 2002-01-25 | s is pointer. 0 -> NULL. | Mike Pechkin | |
| millert@ ok | |||
| 2002-01-25 | Catch not valid chmod value earlier. This make sense, before we didn't | Mike Pechkin | |
| handle some situations and pass value to chmod() instead of fatal. Idea stolen from `SITE UMASK` handler. millert@ ok | |||
| 2002-01-23 | lookup() returns pointer. Convert 0 -> NULL. | Mike Pechkin | |
| millert@ ok | |||
| 2002-01-23 | ``pathname'' can be NULL here too. | Mike Pechkin | |
| millert@ ok | |||
| 2002-01-17 | reject SIZE request for ascii mode if file is larger than 10k. | Jun-ichiro itojun Hagino | |
| 2002-01-08 | Close potential memory leak wrt "fromname"; inspired by similar FreeBSD | Todd C. Miller | |
| changes. | |||
| 2002-01-08 | STRING is never NULL so there is no need to test it for NULL before | Todd C. Miller | |
| freeing it. | |||
| 2001-12-28 | Fix memory leak with EPRT command; Hiroyuki YAMAMORI | Todd C. Miller | |
| 2001-12-07 | kill more registers; | Mike Pechkin | |
| millert@ ok | |||
| 2001-12-04 | Kill setjmp/longjmp | Todd C. Miller | |
| o fix error recovery in the parser so there is no longer a need for jmping o make SIGURG handler interupt syscalls and just set a flag that we test for later. Use waitpid() not wait3() for portability. Restart waitpid() loop if another signal interrupts us. Calling dologout() from signal handlers is safe because it doesn't use stdio, nor do the two functions it calls (logout and ftpdlogwtmp). | |||
| 2001-11-05 | more signal marks, and some syslog_r in handlers | Theo de Raadt | |
| 2000-11-14 | cleanup EPSV/EPRT error handling. avoid possible memory leak (getaddrinfo). | Jun-ichiro itojun Hagino | |
| correct error code on unsupported protocol parameter against EPRT (522). | |||
| 2000-11-13 | combine check_epsvall + check_login into check_login_epsvall. | Jun-ichiro itojun Hagino | |
| we cnanot split check_login and check_epsvall. if we do that, we end up generating two results against single comand. | |||
| 2000-11-13 | make sure to check_login on EPSV/LPSV. move epvsall check into check_epsvall. | Jun-ichiro itojun Hagino | |
| 2000-06-17 | pr 772; -u blocks chmod command, michaels@inet.no | Theo de Raadt | |
| 2000-04-29 | indent | Theo de Raadt | |
| 2000-01-15 | (char *)0 -> NULL cleanup. From NetBSD | Eric Jackson | |
| 1999-12-08 | IPv6 support from KAME. | Jun-ichiro itojun Hagino | |
| XXX kerberos and tcp_wrapper needs checking | |||
| 1999-10-08 | correct; dholland@hcs.harvard.edu, root@zen.ics.uwe.ac.uk | Theo de Raadt | |
| 1998-05-22 | use TM_YEAR_BASE; lukem | Theo de Raadt | |
| 1998-02-03 | Work around a glob() and Netscape problem; the local glob() hacker may | Jason Downs | |
| want to read the commentary if he wants another project. | |||
| 1997-12-18 | Be so specific about the exact details of a PORT command error, that we | Theo de Raadt | |
| strike fear into the hearts of attackers (naw, I bet not...) | |||
| 1997-12-18 | bitch if attacker tries to make PORT values overflow each other (they cannot ↵ | Theo de Raadt | |
| anyways, but let him know we are onto him) | |||
| 1997-12-12 | default to violating the RFC wrt the PORT command. Use -P to conform to the | Theo de Raadt | |
| RFC and possibly open up non-OpenBSD boxes in a trust relationship on your network to possible ftp bounce attacks... | |||
| 1997-07-23 | tabify | kstailey | |
| 1997-07-22 | setproctitle less | Theo de Raadt | |
| 1997-01-02 | Fix for the shift-reduce conflict, contributed by dholland@hcs.harvard.edu, | bitblt | |
| who is porting the OpenBSD ftpd to (of all things) Linux. | |||
| 1996-12-07 | ftpd now eventually times out if a ftp client does: | bitblt | |
| pasv list and then crashes. The timeout should only apply the the accept(), so that transfers can take as long as necessary to complete. Thanks to Theo for moving toolong() to extern.h so that it can be used in ftpd.c as well as in ftpcmd.y. | |||
| 1996-10-16 | Fixed a memory leak associated with the HELP and SITE HELP commands. | bitblt | |
| 1996-09-19 | reduced the number of command availibe to users who are not logged | bitblt | |
| in, fixed a memory leak in RNFR | |||
| 1996-09-04 | clear passwd, for safety | Theo de Raadt | |
| 1996-08-22 | de-gibble ftpd for w | Theo de Raadt | |
| 1996-08-07 | strcpy -> strncpy, kill off a strdup() clone. | Jason Downs | |
| 1996-04-23 | sync with netbsd 960418 | Theo de Raadt | |
| 1995-10-18 | initial import of NetBSD tree | Theo de Raadt | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |