| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2001-08-25 | Casting of lhs, is not what you think it is. | Niklas Hallqvist | |
| 2001-08-24 | move back to requested snaplen after SIGHUP; canacar@eee.metu.edu.tr | Theo de Raadt | |
| 2001-08-24 | rearrange so that snaplen cannot be changed; canacar@eee.metu.edu.tr | Theo de Raadt | |
| 2001-08-24 | corrections; wouter.clarie@pandora.be | Theo de Raadt | |
| 2001-08-24 | Send DELETE notifications for all active SAs when we shut down the daemon. | Hakan Olsson | |
| This "clean" shutdown happens on SIGTERM ('kill <pid>') or if a 'Q' command is input to the fifo UI. Suggested by <Ghislaine.Labouret@hsc.fr>. | |||
| 2001-08-24 | Initial IPCOMP support. | Hakan Olsson | |
| 2001-08-24 | I was only going to remove #include "init.h", but found 8 more | Hakan Olsson | |
| #include's we don't need here. | |||
| 2001-08-24 | typo in debug msg | Hakan Olsson | |
| 2001-08-23 | Make the wildcard address use SO_REUSEPORT, so multiple instances of | Angelos D. Keromytis | |
| isakmpd can run on the same machine and reuse the wildcard address. This is intended mostly for debugging and testing purposes, so multiple listener issues are not relevant. | |||
| 2001-08-23 | Reinitialize transports on SIGUP. | Angelos D. Keromytis | |
| 2001-08-23 | Update (SPD entries are deleted when SPI is removed, and new addresses | Angelos D. Keromytis | |
| are identified on a SIGUP or INADDR_ANY packet). | |||
| 2001-08-23 | Use ipsec_id_string as the section name for IKE mode config. | Niklas Hallqvist | |
| 2001-08-23 | Correct ipsec_id_string buffer and length handling. | Niklas Hallqvist | |
| 2001-08-23 | Compile on old systems, my version. | Niklas Hallqvist | |
| 2001-08-23 | RSA-enabling is not necessary anymore. | Niklas Hallqvist | |
| 2001-08-23 | ignore EEXIST for SPDADD on KAME; ok ho@ | Markus Friedl | |
| 2001-08-23 | sync w/ netbsd | Markus Friedl | |
| 2001-08-23 | recieve -> receive | Aaron Campbell | |
| 2001-08-23 | o for a port_item, initialize the "next" pointer to NULL | Todd C. Miller | |
| o for an address, use calloc() instead of malloc() so the struct is zeroed Fixes a SEGV in pfctl due to uninitialized "next" pointers. | |||
| 2001-08-23 | Support var="string". Expansion (at lex time) done using $var, for instance: | Theo de Raadt | |
| okproto="{ssh, smtp, domain, auth}" pass in on key0 proto tcp from any to any port $okproto keep state Can I ask someone else to document this in pf.conf(5)? | |||
| 2001-08-23 | KNF | Theo de Raadt | |
| 2001-08-23 | for -s all, do not error out when the first ioctl fails | Theo de Raadt | |
| 2001-08-23 | fix usage | Theo de Raadt | |
| 2001-08-23 | do not permit snaplen change on an active log file | Theo de Raadt | |
| 2001-08-22 | Revert last change. | Hakan Olsson | |
| 2001-08-22 | Compile on older systems. | Hakan Olsson | |
| 2001-08-22 | use ipsec_id_string() when generating rawkey file names. | Hakan Olsson | |
| 2001-08-22 | ftp-proxy | Bob Beck | |
| 2001-08-22 | If we fail to get a key from DNSSEC, RAWKEY can still succeed. | Hakan Olsson | |
| 2001-08-22 | Modify as per deraadt@'s wishes. aaron@ ok. | Hakan Olsson | |
| 2001-08-22 | clarify tcpdump use; frantzen | Theo de Raadt | |
| 2001-08-22 | Add an example. | Hakan Olsson | |
| 2001-08-22 | Add a manual page. | Hakan Olsson | |
| 2001-08-22 | DNS KEY RR values. | Hakan Olsson | |
| 2001-08-22 | Cleanup and style fixes. Use getopt(). | Hakan Olsson | |
| 2001-08-22 | properly handle empty log file | Theo de Raadt | |
| 2001-08-22 | USER_FQDN ID support, untested. | Hakan Olsson | |
| 2001-08-22 | IPCOMP policy control should be optional for backward | Niklas Hallqvist | |
| compatibility. | |||
| 2001-08-22 | Alphabeticize extern decls. | Niklas Hallqvist | |
| 2001-08-22 | Add ipsec_id_string, a function for converting IDs to on epossible | Niklas Hallqvist | |
| string form, to be used for IKE mode config and raw key selection by ID. Not yet used though. | |||
| 2001-08-22 | Need an extra sa_release() when de-allocating exchange-associated SAs; | Angelos D. Keromytis | |
| thus, failed exchanges/negotiations don't leak SAs and transports. ok niklas@ | |||
| 2001-08-22 | Bypass IPCOMP too. | Niklas Hallqvist | |
| 2001-08-21 | pflogd; work by canacar@eee.metu.edu.tr and myself | Theo de Raadt | |
| 2001-08-21 | Remove /usr/bin/mkfifo link -- mkfifo has lived in /sbin for several | Todd C. Miller | |
| releases now. | |||
| 2001-08-20 | Powered by @mantoya. | Mike Pechkin | |
| o) fix bogus .Xr usage; millert@ ok. | |||
| 2001-08-19 | do not spin if no states are found | Theo de Raadt | |
| 2001-08-19 | Document per-rule byte counter. | Daniel Hartmeier | |
| 2001-08-19 | Add per-rule byte counter, so mickey can do accounting. We're counting the | Daniel Hartmeier | |
| data part (without IP and TCP/UDP/ICMP headers), like the state counter does. | |||
| 2001-08-19 | Document per-rule statistics. If the evaluation counters look funny, | Daniel Hartmeier | |
| think skip steps. | |||
| 2001-08-19 | Prevent section leak in conf space. | Angelos D. Keromytis | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |