summaryrefslogtreecommitdiff
path: root/usr.bin/login
AgeCommit message (Collapse)Author
2007-05-31convert to new .Dd format;Jason McIntyre
2007-04-02tweak the -LR options, after similar changes to tcpdrop(8); ok deraadtJason McIntyre
2007-03-26tidy up SYNOPSIS, options description, FILES, and usage();Jason McIntyre
from Igor Sobrado
2005-06-02remove references to telnetd(8);Jason McIntyre
ok deraadt@
2004-08-30For username foo.bar, don't treat "bar" as a kerberos instance,Todd C. Miller
that was a kerb4'ism. OK deraadt@
2004-08-09Mention "setenv" login.conf capability so people can find it.Todd C. Miller
2004-01-23Move a closefrom(2) into the block that execs su(1) where it can do theTodd C. Miller
most good. There is already another closefrom(2) for the normal code path. Also remove a bogus comment. Discussed with deraadt@
2004-01-23Use closefrom(); ok millert teduTheo de Raadt
2003-11-09Typos in comments from Jared Yanovich <jjy2+ at pitt dot edu>Otto Moerbeek
2003-08-12Clean up obsolete kerberos 4 stuffHans Insulander
ok millert@
2003-06-17Sync with share/misc/license.template and add missing DARPA creditTodd C. Miller
where applicable.
2003-06-10- section reorderJason McIntyre
- COMPATIBILITY merge - macro cleanup - kill whitespace at EOL - new sentence, new line ssh pages ok markus@
2003-06-03Remove the advertising clause in the UCB license which BerkeleyTodd C. Miller
rescinded 22 July 1999. Proofed by myself and Theo.
2003-06-03Use an ISC-tyle license for all my code; it is simpler and more permissive.Todd C. Miller
2003-03-11files with dead .Xr's;Jason McIntyre
left .Xr, but removed man page number as suggested by mpech@ more help and ok millert@
2002-10-16Remove the setuid bit from /usr/bin/login. If login is run by a userTodd C. Miller
with a non-zero euid, it will now exec "su -L -l". The only things that need to do this are shells with a "login" builtin and the emulation that su(1) now does is good enough for this purpose.
2002-07-02Kill setjmp/longjmp from a signal handler. All we really need isTodd C. Miller
to use sigaction() w/o SA_RESTART to allow ^C to interrupt motd(). deraadt@ OK.
2002-07-02KNF and signal race fixes; millert okTheo de Raadt
2002-05-06Kill/adjust r(login|exec)d? references now that those are no longer inTodd C. Miller
the tree.
2002-03-30 warn -> warnx, because we put the strerror() manually.Vincent Labrecque
ok millert
2002-02-16Part one of userland __P removal. Done with a simple regexp with some minor ↵Todd C. Miller
hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.
2002-01-24fix the history refsMichael Shalayeff
2002-01-06Do not allow root to login via an insecure tty even if the auth methodTodd C. Miller
does not use plaintext passwords due to the possibility of connection hijacking. This restores the pre-3.0 behavior and closes PR 2299.
2001-08-20Powered by @mantoya.Mike Pechkin
o) fix bogus .Xr usage; millert@ ok.
2001-08-12Sync usage message to man pageTodd C. Miller
2001-07-09correct type on last arg to execl(); nordin@cse.ogi.eduTheo de Raadt
2001-07-06missing prototypes; ok millertPeter Valchev
2001-06-28'/' can also be an instance separator (e.g. kerb5)Todd C. Miller
2001-06-28No longer used now that we do BSD authTodd C. Miller
2001-06-25Add a "login" option to allow differentiation between authenticationTodd C. Miller
that creates a login session vs. a simple identity check. Gets passed as a -v option to the login scripts. To be used by kerberos to know when to create new tickets.
2001-06-25The need to to statically link this on alpha seemed to beArtur Grabowski
some kind of transient problem.
2001-06-24When setting uid, set to 0 if rootlogin flag is set, regardless ofTodd C. Miller
pw_uid. Fixes problem with user.root instances not haveing uid 0 in kerberos.
2001-06-19If we timeout during login and the user tried to login call badlogin()Todd C. Miller
before exit. SUggested by <vii@users.sourceforge.net> Add some new login.conf variables: o login-timeout - login prompt timeout o login-tries - max login tries o login-backoff - number of attempts before backing off (and sleeping)
2001-06-13Link login(1) static for now until a dynamic linking bug is fixed.Todd C. Miller
2001-05-29Don't want -WallTodd C. Miller
2001-05-29BSD auth support. k5login.c and klogin.c are no longer used but willTodd C. Miller
remain for the time being until Kerberos support is up to snuff.
2001-05-25Correct and comment out krb5. This is not working at the moment, but we wantHans Insulander
to use bsd_auth instead.
2000-12-02Check for symlinks before overwriting kerberos ticket files.Hans Insulander
While i'm at it, make sure not to use Kerberos at all if there is no local srvtab. Based on patch from Todd Miller. Reported by <jouko@solutions.fi>.
2000-11-29document -u flag and environment variablesTodd C. Miller
2000-10-14Make empty passwords work again when login is compiled with kerberos support.Miod Vallat
2000-09-15check return value for setenv(3) for failure, and deal appropriatelyTheo de Raadt
2000-09-04Check for account expiration before password expiration;Todd C. Miller
sigh@kuzirabekon.econ.nagasaki-u.ac.jp
2000-09-03Boring... Add :L modifier to all tweakable variables tests.Marc Espie
Closes PR 1246
2000-08-24Last change inadvertantly broke non-kerberos logins. It's not clearTodd C. Miller
that the authok flag is really meaningful but keep it for now.
2000-08-24Fix non-root kerberos logins broken after rev 1.29. That change wasTodd C. Miller
correct but it uncovered a bug that had thusfar stayed hidden due more to serendipity than anything else. Problem found by danh@openbsd.org
2000-08-20Add calls to setusercontext() and login_get*(). We basically callTodd C. Miller
setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class.
2000-07-17 o use strlcpy() where sensibleTodd C. Miller
o when trying to login as root on a non-secure tty always say "login refused" regardless of whether the password is correct or not
2000-03-24Correct the HISTORY section to note that this command appeared in Version 5Aaron Campbell
of AT&T UNIX, not Version 6. Verified by strings(1)'ing a .dsk file (PDP-11 executable) containing the v5 sources, obtainable at gatekeeper.dec.com in the directory /pub/DEC/sim/software. Idea from NetBSD PR/4790.
2000-03-08Various cleanups and improvements.Aaron Campbell
2000-03-02count is unsigned (size_t) so cast to u_long, not longTodd C. Miller