summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Collapse)Author
2000-09-14wrong type to ioctl; naddy@mips.inka.deTheo de Raadt
2000-09-12handle LBA extended partitions here too; scott@nts.umn.eduTheo de Raadt
2000-09-07install manpage for powerpc also.Dale S. Rahn
2000-09-07wscons is used by powerpc also.Dale S. Rahn
2000-09-06it was ment to be -link1 before cut and paste had been executedMichael Shalayeff
2000-09-03Boring... Add :L modifier to all tweakable variables tests.Marc Espie
Closes PR 1246
2000-08-25Only play with flows if we have the "old" IPsec code (the new code toAngelos D. Keromytis
be committed).
2000-08-20Add calls to setusercontext() and login_get*(). We basically callTodd C. Miller
setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class.
2000-08-17make interface optional, and provide a good defaultTheo de Raadt
2000-08-16Implement -a option, was documented but not present.Todd C. Miller
2000-08-14correct truncated FQDN printingJun-ichiro itojun Hagino
2000-08-13Get rid of fflush(stdout); rewind(stdin); pairs since we should notTodd C. Miller
have to worry about stdout == stdin (and since this is done inconsistently it is useless anyway). Pointed out by map@infinitum.ch.
2000-08-13recover less-than-1 interval support with -i.Jun-ichiro itojun Hagino
completely in sync with kame (do not nuke #ifdef please).
2000-08-13document cmdlineTheo de Raadt
2000-08-11Permit multiple -k <key> -v # arguments. Work by <binkertn@umich.edu> and me.Hakan Olsson
2000-08-10Import ipf 3.3.18. Fixes more problems with the in-kernel FTP proxy,Kjell Wooding
some nat state bugs, and ups the default state table size. See sbin/ipf/HISTORY for details.
2000-08-06Add DEFAULT_STATE macro to allow ramdisk init to set default state toTodd C. Miller
single_user, not runcom (/etc/rc).
2000-08-05Fix number of parameters in a usage printf, and correct a typo. Noticed byPaul Janzen
Thomas Klausner in NetBSD.
2000-08-03Fix compilation in non-INET6 case (rfunk@funknet.net)Angelos D. Keromytis
2000-08-03Merge with EOM 1.24Niklas Hallqvist
author: niklas style
2000-08-03Merge with EOM 1.28Niklas Hallqvist
author: niklas From OpenBSD: be paranoid about the syslog format parameter
2000-08-03Merge with EOM 1.108Niklas Hallqvist
author: niklas remove unnecessary include
2000-08-03Merge with EOM 1.23Niklas Hallqvist
author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec. author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@ author: provos dont segfault on connection report when id is not set
2000-08-03Merge with EOM 1.129Niklas Hallqvist
author: provos dont strdup exchange->recv_cert, it is not always a 0 terminated string for CERTENC_NONE. we need to malloc and memcpy instead. found by electric fence. author: provos provide transport dependent ID decoding; hope indentation is right now ;) author: ho ISAKMP peer transport defaults to UDP. author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec. author: provos indent author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-08-03Merge with EOM 1.40Niklas Hallqvist
author: angelos Get the right value. author: angelos Add "phase1_group_desc" attribute, and explain the various values.
2000-08-03Merge with EOM 1.126Niklas Hallqvist
author: angelos Be more careful. author: angelos Oops, typo. author: angelos Avoid endless loop in INITIAL-CONTACT handling. author: angelos Don't delete the ISAKMP SA over which we received an INITIAL-CONTACT payload. author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec. author: provos indent author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-08-03Merge with EOM 1.41Niklas Hallqvist
author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-08-03Merge with EOM 1.20Niklas Hallqvist
author: angelos Add "phase1_group_desc" attribute, and explain the various values.
2000-08-03Merge with EOM 1.107Niklas Hallqvist
author: provos provide transport dependent ID decoding; hope indentation is right now ;) author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec. author: provos introduce ipsec_decode_ids, also decodes FQDN and USER_FQDN now. new ipsec_clone_id to copy IDs to phase 2 SAs for better status reports. okay angelos@
2000-08-03Merge with EOM 1.46Niklas Hallqvist
author: ho Mention 'Default' tag in Phase 1 section, modify peer tag descriptions to match. Phase 1 peer transport 'udp' is now a default value. The 'Stayalive' flag died long ago, remove it from the example. Also remove reference to the likewise dead 'Next-hop' tag. Some minor cleanup.
2000-08-03Merge with EOM 1.11Niklas Hallqvist
author: ho ISAKMP peer transport defaults to UDP.
2000-08-03udp.c: Merge with EOM 1.50Niklas Hallqvist
transport.h: Merge with EOM 1.16 author: provos provide transport dependent ID decoding; hope indentation is right now ;)
2000-08-03Merge with EOM 1.127Niklas Hallqvist
author: angelos Be careful when there's no assertions.
2000-08-03Merge with EOM 1.53Niklas Hallqvist
author: provos prevent isakmpd crashing when client gives an unknown ID in aggressive mode. bug report from James Winquist <winquist@mail.cybernet.com>
2000-08-03Merge with EOM 1.57Niklas Hallqvist
author: angelos Add sa_enter() prototype.
2000-08-03Merge with EOM 1.146Niklas Hallqvist
author: provos prevent crashing when we receive an encrypted message as response to our first packet as initiator. James Winquist <winquist@mail.cybernet.com>
2000-08-03isakmp_doi.c: Merge with EOM 1.41Niklas Hallqvist
doi.h: Merge with EOM 1.29 author: provos make a DOI specific decode_ids, but have isakmp doi decode point to ipsec.
2000-08-03Don't flush SPD entries.Angelos D. Keromytis
2000-08-02RFC 1918 obsoletes 1597Niels Provos
2000-08-01remove duplicate XrJakob Schlyter
2000-08-01fix netmask notation; pr1343Hugh Graham
2000-07-31Correct usage stringPaul Janzen
2000-07-27Don't show or delete IPsec flows with the route command -- this was aAngelos D. Keromytis
kludge to begin with, and it's about time we get rid of it.
2000-07-27Look up the pathname verbatim in mount table in addition to the realpath(3)edTodd C. Miller
version. Basically just a generalization of my previous commit in this area.
2000-07-26open /dev/ipl rdonly on non-destructive operationsMichael Shalayeff
2000-07-20Move ws* command man pages to arch-dependent subdirs.Marc Espie
2000-07-13undoTheo de Raadt
2000-07-09add description for net.inet6.icmp6.{errppslimit,nd6_maxnudhint}Jun-ichiro itojun Hagino
2000-07-07On the last commit to fdisk when the prototypes to PRT_fix_CHS and PRT_fix_BNDale S. Rahn
were made, some code in an ifdefed section was missed. Update that section of code to have the appropriate added parameter.
2000-07-05printf without %sTheo de Raadt