summaryrefslogtreecommitdiff
path: root/libexec/login_passwd
AgeCommit message (Collapse)Author
2006-04-02a FALLTHROUGH and one size_t castTheo de Raadt
2006-03-09Foil potential timing attacks by using the correct password hashTodd C. Miller
instead of "xx". In practice this means bcrypt() will be used for non-existent users instead of DES crypt(). Adapted from a patch by Peter Philipp. OK deraadt@
2005-04-14drop some krb4 stuffBjorn Sandell
ok beck@
2004-05-12login_passwd needs to be setuid root after all for "secure" YP maps.Todd C. Miller
2004-03-10More checking for a NULL return value from getpass(). otto@ OKTodd C. Miller
2003-07-29spacesTheo de Raadt
2003-06-17Sync with share/misc/license.template and add missing DARPA creditTodd C. Miller
where applicable.
2003-06-03Use an ISC-tyle license for all my code; it is simpler and more permissive.Todd C. Miller
2003-03-28login_passwd is now setgid _shadow instead of setuid root.Todd C. Miller
2003-03-17incorrect string length matching; ianm@cit.uws.edu.auTheo de Raadt
2002-09-06ansi; ok millert pvalchevTheo de Raadt
2002-08-28o) start new sentence on a new line;Mike Pechkin
o) don't use .Nm w/o argument in .SYNOPSIS; I waste time, when fixing already cleaned pages. :( one man ok@
2002-06-02minor KNFTheo de Raadt
2002-03-19Only accept the empty string for users with no password.Todd C. Miller
Previously, any password was accepted (that's how crypt() behaves).
2001-12-06Do not set handler for SIGINT and SIGQUIT to SIG_IGN since it preventsTodd C. Miller
getpass()/readpassphrase() from being able to restore the tty mode on keyboard interrupt. Along with the recent readpassphrase.c commit this means that if you ^C things that use login scripts (like su(1)) with a non-CBREAK shell your tty mode will be restored nicely. TODO: The various login scripts need to install handlers to avoid leaving turd files or otherwise ending in a bad state. It would also be nice to send BI_REJECT to the back channel.
2001-11-13o) fix bogus .Xr usage;Mike Pechkin
o) start new sentence on a new line; o) don't use .Xr instead of .Pa tag; o) minimal -mdoc design fixes; millert@ ok;
2001-08-12some KNFTodd C. Miller
2001-08-09o wheel and lastchance are -v args (variable), not -s (service)Todd C. Miller
o an unknown service is a fatal error o some KNF
2001-07-08Remove extraneous .Pp after .ShTodd C. Miller
2001-06-29uglyTheo de Raadt
2001-06-26Cleanup and unify login_passwd, login_krb4, login_krb4-or-pwd, login_krb5 andHans Insulander
login_krb5-or-pwd.
2001-06-25Remove instance stuff now that su uses an explicit option to specifyTodd C. Miller
the invoking user.
2001-06-25Don't do the root instance handling stuff; su no longer does it.Hans Insulander
2000-12-12passwd login script; authenticates the user via passwd/ypTodd C. Miller
will be used when BSD authentication is enabled