summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Collapse)Author
2000-08-25Only play with flows if we have the "old" IPsec code (the new code toAngelos D. Keromytis
be committed).
2000-08-20Add calls to setusercontext() and login_get*(). We basically callTodd C. Miller
setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class.
2000-08-17make interface optional, and provide a good defaultTheo de Raadt
2000-08-16Implement -a option, was documented but not present.Todd C. Miller
2000-08-14correct truncated FQDN printingJun-ichiro itojun Hagino
2000-08-13Get rid of fflush(stdout); rewind(stdin); pairs since we should notTodd C. Miller
have to worry about stdout == stdin (and since this is done inconsistently it is useless anyway). Pointed out by map@infinitum.ch.
2000-08-13recover less-than-1 interval support with -i.Jun-ichiro itojun Hagino
completely in sync with kame (do not nuke #ifdef please).
2000-08-13document cmdlineTheo de Raadt
2000-08-11Permit multiple -k <key> -v # arguments. Work by <binkertn@umich.edu> and me.Hakan Olsson
2000-08-10Import ipf 3.3.18. Fixes more problems with the in-kernel FTP proxy,Kjell Wooding
some nat state bugs, and ups the default state table size. See sbin/ipf/HISTORY for details.
2000-08-06Add DEFAULT_STATE macro to allow ramdisk init to set default state toTodd C. Miller
single_user, not runcom (/etc/rc).
2000-08-05Fix number of parameters in a usage printf, and correct a typo. Noticed byPaul Janzen
Thomas Klausner in NetBSD.
2000-08-03Fix compilation in non-INET6 case (rfunk@funknet.net)Angelos D. Keromytis
2000-08-03Merge with EOM 1.24Niklas Hallqvist
author: niklas style
2000-08-03Merge with EOM 1.28Niklas Hallqvist
author: niklas From OpenBSD: be paranoid about the syslog format parameter
2000-08-03Merge with EOM 1.108Niklas Hallqvist
author: niklas remove unnecessary include
2000-08-03Merge with EOM 1.23Niklas Hallqvist
author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec. author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@ author: provos dont segfault on connection report when id is not set
2000-08-03Merge with EOM 1.129Niklas Hallqvist
author: provos dont strdup exchange->recv_cert, it is not always a 0 terminated string for CERTENC_NONE. we need to malloc and memcpy instead. found by electric fence. author: provos provide transport dependent ID decoding; hope indentation is right now ;) author: ho ISAKMP peer transport defaults to UDP. author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec. author: provos indent author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-08-03Merge with EOM 1.40Niklas Hallqvist
author: angelos Get the right value. author: angelos Add "phase1_group_desc" attribute, and explain the various values.
2000-08-03Merge with EOM 1.126Niklas Hallqvist
author: angelos Be more careful. author: angelos Oops, typo. author: angelos Avoid endless loop in INITIAL-CONTACT handling. author: angelos Don't delete the ISAKMP SA over which we received an INITIAL-CONTACT payload. author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec. author: provos indent author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-08-03Merge with EOM 1.41Niklas Hallqvist
author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-08-03Merge with EOM 1.20Niklas Hallqvist
author: angelos Add "phase1_group_desc" attribute, and explain the various values.
2000-08-03Merge with EOM 1.107Niklas Hallqvist
author: provos provide transport dependent ID decoding; hope indentation is right now ;) author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec. author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-08-03Merge with EOM 1.46Niklas Hallqvist
author: ho Mention 'Default' tag in Phase 1 section, modify peer tag descriptions to match. Phase 1 peer transport 'udp' is now a default value. The 'Stayalive' flag died long ago, remove it from the example. Also remove reference to the likewise dead 'Next-hop' tag. Some minor cleanup.
2000-08-03Merge with EOM 1.11Niklas Hallqvist
author: ho ISAKMP peer transport defaults to UDP.
2000-08-03udp.c: Merge with EOM 1.50Niklas Hallqvist
transport.h: Merge with EOM 1.16 author: provos provide transport dependent ID decoding; hope indentation is right now ;)
2000-08-03Merge with EOM 1.127Niklas Hallqvist
author: angelos Be careful when there's no assertions.
2000-08-03Merge with EOM 1.53Niklas Hallqvist
author: provos prevent isakmpd crashing when client gives an unknown ID in aggressive mode. bug report from James Winquist <winquist@mail.cybernet.com>
2000-08-03Merge with EOM 1.57Niklas Hallqvist
author: angelos Add sa_enter() prototype.
2000-08-03Merge with EOM 1.146Niklas Hallqvist
author: provos prevent crashing when we receive an encrypted message as response to our first packet as initiator. James Winquist <winquist@mail.cybernet.com>
2000-08-03isakmp_doi.c: Merge with EOM 1.41Niklas Hallqvist
doi.h: Merge with EOM 1.29 author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec.
2000-08-03Don't flush SPD entries.Angelos D. Keromytis
2000-08-02RFC 1918 obsoletes 1597Niels Provos
2000-08-01remove duplicate XrJakob Schlyter
2000-08-01fix netmask notation; pr1343Hugh Graham
2000-07-31Correct usage stringPaul Janzen
2000-07-27Don't show or delete IPsec flows with the route command -- this was aAngelos D. Keromytis
kludge to begin with, and it's about time we get rid of it.
2000-07-27Look up the pathname verbatim in mount table in addition to the realpath(3)edTodd C. Miller
version. Basically just a generalization of my previous commit in this area.
2000-07-26open /dev/ipl rdonly on non-destructive operationsMichael Shalayeff
2000-07-20Move ws* command man pages to arch-dependent subdirs.Marc Espie
2000-07-13undoTheo de Raadt
2000-07-09add description for net.inet6.icmp6.{errppslimit,nd6_maxnudhint}Jun-ichiro itojun Hagino
2000-07-07On the last commit to fdisk when the prototypes to PRT_fix_CHS and PRT_fix_BNDale S. Rahn
were made, some code in an ifdefed section was missed. Update that section of code to have the appropriate added parameter.
2000-07-05printf without %sTheo de Raadt
2000-07-05remove SYSLOG(), unused functionTheo de Raadt
2000-07-05Correct minor formatting errors/typos.Aaron Campbell
2000-07-03plug 2 memory leaks; reported by andrew.lunn@ascom.ch.Jason Wright
2000-07-02OpenBSD'ify these man pages.Aaron Campbell
2000-07-02From onoe@netbsd.org:Hakan Olsson
Update the description of available channel for Japan. The regulations has been changed to adopt 802.11b since Oct. 99. For 11Mbps NICs sold in Japan, all DS channels (1..14) are available.
2000-07-02descent into wsconsctlMichael Shalayeff