Age | Commit message (Collapse) | Author | |
---|---|---|---|
2001-09-05 | make sure that va_start() has matching va_end() | Theo de Raadt | |
2001-09-05 | -Make ftp-proxy drop privs to user "proxy" by default. | Bob Beck | |
*WARNING* this means that it will die when it can't find user proxy if you are not running with a passwd database generated from current - Speling cleanup and missing va_end() noticed by <d.doroshenko@omnitel.net> - fix logging of getpwnam|getgrnam failures. | |||
2001-09-05 | Add SIGPIPE to the list of signals we catch and unlock/exit on. | Todd C. Miller | |
2001-09-05 | s/pf_natlook/pfioc_natlook (ioctl parameter struct) | Daniel Hartmeier | |
2001-09-04 | Use merr() not err() since due to function name change in mail.local/locking.c | Todd C. Miller | |
2001-08-28 | remove unneeded code (this is done later) | Bob Beck | |
2001-08-28 | oh, some cleanups etc etc | Theo de Raadt | |
2001-08-27 | header order | Theo de Raadt | |
2001-08-23 | recieve -> receive | Aaron Campbell | |
2001-08-22 | missing space | Bob Beck | |
2001-08-22 | oops | Bob Beck | |
2001-08-22 | See also ftp-proxy | Bob Beck | |
2001-08-22 | Fixes for my worst abuses of nroff from mpech@ | Bob Beck | |
Add a sentence at the start for espie in dumb user mode :) | |||
2001-08-22 | Duh. | Bob Beck | |
2001-08-22 | -Functionify some of the main loop, so it isn't so horrificly deep and is | Bob Beck | |
a bit easier to look at, for small values of easier. -Add two options for -u user and -g group to optionally make the proxy drop privs after doing it's pf ioctl's to find out where to go. Running as non root does mean that the PORT and EPRT backchannels do not come from port 20, but this isn't a problem for most sensible ftp clients and sets of packet filter rules that aren't written by a knuckle dragging ape living in the 90's. I would make it drop privs by default, but technically this breaks the ftp specs, and for the upcoming stuff to deal with EPRT, we will need root privs to manipulate rdr rules). | |||
2001-08-21 | Fix up comment to indicate order that libraries in which the | Dale Rahn | |
libraries are actually searched. | |||
2001-08-20 | Powered by @mantoya. | Mike Pechkin | |
o) we don't like .Nd without argument, except next line starts with a new tag; millert@ ok | |||
2001-08-20 | Powered by @mantoya. | Mike Pechkin | |
o) fix bogus .Xr usage; millert@ ok. | |||
2001-08-19 | unsmokecrack - thanks millert | Bob Beck | |
2001-08-19 | decruftify with prejudice | Bob Beck | |
2001-08-19 | decruftify | Bob Beck | |
2001-08-19 | Argh. I must be wearing a stupid sign today | Bob Beck | |
2001-08-19 | bye bye atoi. | Bob Beck | |
2001-08-19 | oops | Bob Beck | |
2001-08-19 | I'm a knuckle-dragging moron, the fd_set is overflowable - make it so | Bob Beck | |
it isn't. | |||
2001-08-19 | 1564 lines of cleanup | Theo de Raadt | |
2001-08-19 | libexec is the wrong place for popa3d, since it can be started WITHOUT inetd | Theo de Raadt | |
2001-08-19 | KNF | Bob Beck | |
2001-08-19 | gratuitous KNFism's, don't have it looking like it's your first day | Bob Beck | |
with your new crack pipe | |||
2001-08-19 | build ftp-proxy | Bob Beck | |
2001-08-19 | transparent ftp proxy, based on Obtuse Systems juniper stuff with much | Bob Beck | |
modernizing and cleanup. still needs looking at. Currently supports PORT PASV EPRT data connections with only a pf rdr to capture the control connection. (I.E. you don't need ip forwarding or other NAT stuff). Runs from inetd. Supports all passive (EPSV PASV) when using -n flag, where the proxy ignores passive mode data connections (and assumes nat will get them through). Todo yet: More audit IpV6 Handle EPSV in proxy (with an rdr added then removed) Option to Daemonize and bind only to the loopback More Content/Login filtering, etc. etc. and more bloat | |||
2001-08-18 | i think this pads the buffers correctly | Theo de Raadt | |
2001-08-18 | err() -> merr(), and reorder some bugs noted by giannici@neomedia.it; ↵ | Theo de Raadt | |
millert helped | |||
2001-08-18 | better handle things; spotted by millert | Theo de Raadt | |
2001-08-18 | strlcpy invades the tree | Theo de Raadt | |
2001-08-17 | clean up after Todd. | Marc Espie | |
2001-08-17 | o) close .Bl; | Mike Pechkin | |
o) NetBSD -> .Bx; o) we should sort options in .DESCRIPTION; some spotted from form@openbsd.ru; millert@ ok. | |||
2001-08-16 | no options yet | Camiel Dobbelaar | |
2001-08-16 | remove remaining PAM defines and comments | Camiel Dobbelaar | |
2001-08-16 | remove SHADOW hooks | Camiel Dobbelaar | |
2001-08-16 | stand-alone by default | Camiel Dobbelaar | |
2001-08-16 | build man page for popa3d | Eric Jackson | |
2001-08-16 | a start at a man page for popa3d | Eric Jackson | |
2001-08-13 | Blowfish salt for dummy crypt calls | Camiel Dobbelaar | |
2001-08-13 | Tags | Camiel Dobbelaar | |
2001-08-13 | Solar Designer's popa3d POP3 daemon, version 0.4.9.1 | Camiel Dobbelaar | |
Changes so far: - removed auth_pam.c - removed auth_shadow.c - add BSD makefile - remove md5, in favour of libc md5 - params.h: AUTH_PASSWD and MAIL_SPOOL_PATH | |||
2001-08-13 | Solar Designer's popa3d POP3 daemon, version 0.4.9.1 | Camiel Dobbelaar | |
Changes so far: - removed auth_pam.c - removed auth_shadow.c - add BSD makefile - remove md5, in favour of libc md5 - params.h: AUTH_PASSWD and MAIL_SPOOL_PATH | |||
2001-08-13 | Solar Designer's popa3d POP3 daemon, version 0.4.9.1 | Camiel Dobbelaar | |
Changes so far: - removed auth_pam.c - removed auth_shadow.c - add BSD makefile - remove md5, in favour of libc md5 - params.h: AUTH_PASSWD and MAIL_SPOOL_PATH | |||
2001-08-12 | some KNF | Todd C. Miller | |
2001-08-12 | Use INFTIM where possible. | Federico G. Schwindt | |