Age | Commit message (Expand) | Author |
2021-11-16 | fix an accidental NULL deref introduced last year, found by patrick. | Theo de Raadt |
2021-01-02 | Check auth_mkvalue(3) return value for NULL (malloc failure). | Todd C. Miller |
2020-05-15 | Fix handling of passwd entries with an empty password. | Todd C. Miller |
2019-12-24 | Merge two missed fixes from login.c to login_passwd.c. | Todd C. Miller |
2019-12-21 | Replace modular version with origin BSDi version with our updates. | Todd C. Miller |
2019-12-14 | Return BI_SILENT not BI_AUTH if the challenge service is requested. | Todd C. Miller |
2019-01-25 | I am retiring my old email address; replace it with my OpenBSD one. | Todd C. Miller |
2018-09-30 | Remove the hopefully last remnants of kerberos in there: arg_login, | Antoine Jacoutot |
2018-06-13 | Call pledge(2) earlier before opening the auth channel and readpassphrase() | Reyk Floeter |
2018-06-13 | Remove #ifdef PASSWD, it was always enabled and is a leftover from krb5 days. | Reyk Floeter |
2016-09-03 | set password to return of readpassphrase(), not always the buffer. | Ted Unangst |
2016-09-03 | convert to use readpassphrase() instead of DEPRECATED/getpass() | Gleydson Soares |
2016-09-02 | krb5 bits should rest in peace | Gleydson Soares |
2016-08-16 | remove unneeded casts | Ted Unangst |
2015-11-19 | Call syslog() if login_* pledge fails; OK deraadt@ | Todd C. Miller |
2015-11-18 | use _shadow getpw functions. these utilities obviously deal with hashes. | Ted Unangst |
2015-10-24 | Don't compile pwd_gensalt, it's not needed since we use crypt_checkpass. | Antoine Jacoutot |
2015-10-14 | pledge "stdio rpath" is good enough for these mainline BSD auth login | Theo de Raadt |
2015-10-05 | Use explicit_bzero() instead of memset() for zeroing out secrets. | Todd C. Miller |
2015-09-11 | add some missing .Cm macros and drop some redundant .Bk while here | Ingo Schwarze |
2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
2014-09-16 | use crypt_checkpass function to make things simple | Ted Unangst |
2012-06-01 | add a krb5-noverify option for login.conf that disables verification | David Gwynne |
2012-02-01 | improve synopsis markup of login_* utilities; use a more standard | Igor Sobrado |
2007-05-31 | convert to new .Dd format; | Jason McIntyre |
2006-04-02 | a FALLTHROUGH and one size_t cast | Theo de Raadt |
2006-03-09 | Foil potential timing attacks by using the correct password hash | Todd C. Miller |
2005-04-14 | drop some krb4 stuff | Bjorn Sandell |
2004-05-12 | login_passwd needs to be setuid root after all for "secure" YP maps. | Todd C. Miller |
2004-03-10 | More checking for a NULL return value from getpass(). otto@ OK | Todd C. Miller |
2003-07-29 | spaces | Theo de Raadt |
2003-06-17 | Sync with share/misc/license.template and add missing DARPA credit | Todd C. Miller |
2003-06-03 | Use an ISC-tyle license for all my code; it is simpler and more permissive. | Todd C. Miller |
2003-03-28 | login_passwd is now setgid _shadow instead of setuid root. | Todd C. Miller |
2003-03-17 | incorrect string length matching; ianm@cit.uws.edu.au | Theo de Raadt |
2002-09-06 | ansi; ok millert pvalchev | Theo de Raadt |
2002-08-28 | o) start new sentence on a new line; | Mike Pechkin |
2002-06-02 | minor KNF | Theo de Raadt |
2002-03-19 | Only accept the empty string for users with no password. | Todd C. Miller |
2001-12-06 | Do not set handler for SIGINT and SIGQUIT to SIG_IGN since it prevents | Todd C. Miller |
2001-11-13 | o) fix bogus .Xr usage; | Mike Pechkin |
2001-08-12 | some KNF | Todd C. Miller |
2001-08-09 | o wheel and lastchance are -v args (variable), not -s (service) | Todd C. Miller |
2001-07-08 | Remove extraneous .Pp after .Sh | Todd C. Miller |
2001-06-29 | ugly | Theo de Raadt |
2001-06-26 | Cleanup and unify login_passwd, login_krb4, login_krb4-or-pwd, login_krb5 and | Hans Insulander |
2001-06-25 | Remove instance stuff now that su uses an explicit option to specify | Todd C. Miller |
2001-06-25 | Don't do the root instance handling stuff; su no longer does it. | Hans Insulander |
2000-12-12 | passwd login script; authenticates the user via passwd/yp | Todd C. Miller |