| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2002-03-28 | prototype pfctl_kill_states() | Daniel Hartmeier | |
| 2002-03-28 | list out the ap's stations | Michael Shalayeff | |
| 2002-03-28 | chip id copies here; just for niels, all for niels, all in the name of niels | Michael Shalayeff | |
| 2002-03-28 | WI_RID_AUTH_CNTL was renamed to WI_RID_CNFAUTHMODE | Todd C. Miller | |
| 2002-03-27 | implement a "no-route" keyword. | Michael Shalayeff | |
| usage semantics are analogous w/ "any", meaning is "any ip address for which there is no route in the current routing table", could be used in both from and to. typical usage would be (assuming symmetrical routing): block in from no-route to any also doc "any" in the pf.conf.5, include in regress, etc. tested by me on i386 and sparc. dhartmei@ and frantzen@ ok | |||
| 2002-03-27 | Calculate the maximum queue depth correctly. | Grigoriy Orlov | |
| PR2490 from Alexander Yurchenko <grange@rt.mipt.ru> | |||
| 2002-03-26 | tidy up usage statement and sort headers. patch from dfa@solo.ee | Mike Frantzen | |
| 2002-03-26 | sort options and clean up the -k descrption. patch from dfa@solo.ee | Mike Frantzen | |
| 2002-03-26 | Don't message_dump_raw() bad length messages, i.e too short. | Hakan Olsson | |
| Should solve PR 2474 (unconfirmed). niklas@, me. | |||
| 2002-03-25 | add -k option to shootdown all the state entries from the specified host | Mike Frantzen | |
| ok dhartmei@ | |||
| 2002-03-24 | Work around a compiler bug on sparc64; deraadt@ OK | Todd C. Miller | |
| 2002-03-23 | examples of tcpdump filters on pf log fields | Mike Frantzen | |
| 2002-03-21 | o sync usage() to man page | Todd C. Miller | |
| o -l does not require an argument o getopt() returns -1 not EOF From Brian Poole | |||
| 2002-03-21 | Add r option to SYNOPSIS. From Brian Poole. | Daniel Hartmeier | |
| 2002-03-21 | Change 'Airport' to 'Lucent (embedded)' to correspond to reality. | Todd C. Miller | |
| Otherwise, the embedded Lucent wavelan is called 'Airport' on Toshiba and Sony laptops. | |||
| 2002-03-19 | Remove unnecessary prototype. | Angelos D. Keromytis | |
| 2002-03-17 | Move SA_FILE definition to sa.h. | Angelos D. Keromytis | |
| 2002-03-17 | Mention isakmpd_sa file. | Angelos D. Keromytis | |
| 2002-03-17 | Add 'T' and 'S' commands (for tearing-down and reporting all Phase 2 | Angelos D. Keromytis | |
| SAs), from bdallen@nps.navy.mil | |||
| 2002-03-14 | fix a few overflows by using off_t, not 32bit longs; some parts are from ↵ | Michael Shalayeff | |
| lucq.org; millert@ ok | |||
| 2002-03-14 | kill more registers. | Mike Pechkin | |
| millert@ ok | |||
| 2002-03-14 | Remove \n from err/errx/warn/warnx(). | Mike Pechkin | |
| millert@ ok | |||
| 2002-03-12 | Handle inet_ntop() returning NULL explicitly. Found by mpech@. | Daniel Hartmeier | |
| 2002-03-11 | Add -r to reverse lookup addresses when displaying states. | Daniel Hartmeier | |
| From John Kerbawy. | |||
| 2002-03-11 | no \n to warnx(3). From: Mike Pechkin <mpech@prosoft.org.lv> | Jun-ichiro itojun Hagino | |
| 2002-03-08 | Fix arc4random() usage; add more randomness to intvl_random(). | Mike Pechkin | |
| millert@ ok | |||
| 2002-03-06 | Compile without warnings for older/newer OpenSSL. | Hakan Olsson | |
| 2002-03-06 | Fix a couple of snprintf length bugs. Same problem <chris@stallion.oz.au> | Hakan Olsson | |
| found for policy passphrases. | |||
| 2002-03-06 | Unbreak MD5 and SHA1 passphrases in policy check. From | Hakan Olsson | |
| <chris@stallion.oz.au>. | |||
| 2002-03-05 | -Werror not possible, because of openssl constification. thanks guys | Theo de Raadt | |
| 2002-03-05 | must pull -ldes here too | Theo de Raadt | |
| 2002-03-05 | must pull -ldes too | Theo de Raadt | |
| 2002-03-05 | handle constification from new openssl | Theo de Raadt | |
| 2002-03-05 | need md5.h for prototypes | Theo de Raadt | |
| 2002-03-02 | document tcp.ackonpush | Niels Provos | |
| 2002-03-01 | Update to reflect recent changes in DH group handling. Remove BUGS | Hakan Olsson | |
| section. | |||
| 2002-03-01 | Change DH group handling in the pre-generated parts of the | Hakan Olsson | |
| configuration. Add a -GRP{1,2,5} component to transform and suite names to directly specify which group to use. If no group is specified, use DH group 2 (MODP_1024). Earlier transforms and suites using the MD5 hash defaulted to DH group 1, this is no longer true. niklas@ ok. | |||
| 2002-03-01 | document cryptodevallowsoft | Niels Provos | |
| 2002-02-28 | Remove the ifconfig line again, it's in pflog(4), which is now linked, | Daniel Hartmeier | |
| and in pflogd context (started from rc), the interface is up already. | |||
| 2002-02-28 | Document ethernet layer expressions. | Daniel Hartmeier | |
| 2002-02-28 | Up the pflog0 interface. alphabetize xrefs and add pflog(4) | Kjell Wooding | |
| ok dhartmei@ | |||
| 2002-02-28 | Don't force /dev/pf to be opened read-write for pfctl -t/-m when values | Daniel Hartmeier | |
| are only queried but not set. | |||
| 2002-02-27 | Instead of printing useless @0 rule numbers from pfctl -vR, increase a | Daniel Hartmeier | |
| counter. Helps debugging rule sets that are not loaded. Suggested by John Kerbawy. | |||
| 2002-02-26 | Add optional pool memory hard limits, mainly as temporary solution | Daniel Hartmeier | |
| until pool exhaustion causes problems no more. | |||
| 2002-02-24 | Vax O1 workaround no longer needed. | Hugh Graham | |
| 2002-02-23 | Add support for nwkey and powersave; from NetBSD | Todd C. Miller | |
| 2002-02-23 | getc() returns an int | Theo de Raadt | |
| 2002-02-23 | getc() returns an int | Theo de Raadt | |
| 2002-02-23 | allowaperture is no longer i386 only. Noted by Dries Schellekens. | Matthieu Herrb | |
| 2002-02-23 | sysctl kern.usercrypto | Theo de Raadt | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |