summaryrefslogtreecommitdiff
path: root/usr.bin/login
AgeCommit message (Collapse)Author
2002-07-02Kill setjmp/longjmp from a signal handler. All we really need isTodd C. Miller
to use sigaction() w/o SA_RESTART to allow ^C to interrupt motd(). deraadt@ OK.
2002-07-02KNF and signal race fixes; millert okTheo de Raadt
2002-05-06Kill/adjust r(login|exec)d? references now that those are no longer inTodd C. Miller
the tree.
2002-03-30 warn -> warnx, because we put the strerror() manually.Vincent Labrecque
ok millert
2002-02-16Part one of userland __P removal. Done with a simple regexp with some minor ↵Todd C. Miller
hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.
2002-01-24fix the history refsMichael Shalayeff
2002-01-06Do not allow root to login via an insecure tty even if the auth methodTodd C. Miller
does not use plaintext passwords due to the possibility of connection hijacking. This restores the pre-3.0 behavior and closes PR 2299.
2001-08-20Powered by @mantoya.Mike Pechkin
o) fix bogus .Xr usage; millert@ ok.
2001-08-12Sync usage message to man pageTodd C. Miller
2001-07-09correct type on last arg to execl(); nordin@cse.ogi.eduTheo de Raadt
2001-07-06missing prototypes; ok millertPeter Valchev
2001-06-28'/' can also be an instance separator (e.g. kerb5)Todd C. Miller
2001-06-28No longer used now that we do BSD authTodd C. Miller
2001-06-25Add a "login" option to allow differentiation between authenticationTodd C. Miller
that creates a login session vs. a simple identity check. Gets passed as a -v option to the login scripts. To be used by kerberos to know when to create new tickets.
2001-06-25The need to to statically link this on alpha seemed to beArtur Grabowski
some kind of transient problem.
2001-06-24When setting uid, set to 0 if rootlogin flag is set, regardless ofTodd C. Miller
pw_uid. Fixes problem with user.root instances not haveing uid 0 in kerberos.
2001-06-19If we timeout during login and the user tried to login call badlogin()Todd C. Miller
before exit. SUggested by <vii@users.sourceforge.net> Add some new login.conf variables: o login-timeout - login prompt timeout o login-tries - max login tries o login-backoff - number of attempts before backing off (and sleeping)
2001-06-13Link login(1) static for now until a dynamic linking bug is fixed.Todd C. Miller
2001-05-29Don't want -WallTodd C. Miller
2001-05-29BSD auth support. k5login.c and klogin.c are no longer used but willTodd C. Miller
remain for the time being until Kerberos support is up to snuff.
2001-05-25Correct and comment out krb5. This is not working at the moment, but we wantHans Insulander
to use bsd_auth instead.
2000-12-02Check for symlinks before overwriting kerberos ticket files.Hans Insulander
While i'm at it, make sure not to use Kerberos at all if there is no local srvtab. Based on patch from Todd Miller. Reported by <jouko@solutions.fi>.
2000-11-29document -u flag and environment variablesTodd C. Miller
2000-10-14Make empty passwords work again when login is compiled with kerberos support.Miod Vallat
2000-09-15check return value for setenv(3) for failure, and deal appropriatelyTheo de Raadt
2000-09-04Check for account expiration before password expiration;Todd C. Miller
sigh@kuzirabekon.econ.nagasaki-u.ac.jp
2000-09-03Boring... Add :L modifier to all tweakable variables tests.Marc Espie
Closes PR 1246
2000-08-24Last change inadvertantly broke non-kerberos logins. It's not clearTodd C. Miller
that the authok flag is really meaningful but keep it for now.
2000-08-24Fix non-root kerberos logins broken after rev 1.29. That change wasTodd C. Miller
correct but it uncovered a bug that had thusfar stayed hidden due more to serendipity than anything else. Problem found by danh@openbsd.org
2000-08-20Add calls to setusercontext() and login_get*(). We basically callTodd C. Miller
setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class.
2000-07-17 o use strlcpy() where sensibleTodd C. Miller
o when trying to login as root on a non-secure tty always say "login refused" regardless of whether the password is correct or not
2000-03-24Correct the HISTORY section to note that this command appeared in Version 5Aaron Campbell
of AT&T UNIX, not Version 6. Verified by strings(1)'ing a .dsk file (PDP-11 executable) containing the v5 sources, obtainable at gatekeeper.dec.com in the directory /pub/DEC/sim/software. Idea from NetBSD PR/4790.
2000-03-08Various cleanups and improvements.Aaron Campbell
2000-03-02count is unsigned (size_t) so cast to u_long, not longTodd C. Miller
2000-03-01order kerberos libraries properlyTheo de Raadt
2000-03-01WallTheo de Raadt
1999-12-30login already decleared in util.hEric Jackson
1999-11-24We won't have the tickets in shared memory, remove dead codeArtur Grabowski
1999-11-11Use snprintf instead of sprintf and sizeof(foo) instead of hardcoded sizes.Artur Grabowski
1999-08-17More <sys/file.h> vs. <fcntl.h> and open() flags fixes.Todd C. Miller
1999-07-21use .Ar on later .It Fl linesTheo de Raadt
1999-07-09- remove all trailing whitespaceAaron Campbell
* except when it is escaped with a `\' at the end of the line - fix remaining .Nm usage as well - this is from a patch I received from kwesterback@home.com, who has been working on some scripts for fixing formatting errors in mdoc'd man pages Ok, so there could be a cost/benefit debate with this commit, but since I have the patch we might as well commit it...
1999-06-05- remove trailing white spaceAaron Campbell
- remove arguments from .Os macros - remove arguments from .Nm macros, where appropriate - some more Dq/Sq/Ql insanity - still lots to do in the usr.bin tree... :/
1999-04-20'unsuccessful' has 2 'c's.Paul Janzen
1998-09-26usr.bin/ man page fixes, f-m.Aaron Campbell
1998-07-13ftpd: sleep for an indeterminate amount for non-existant loginsTodd C. Miller
to simulate a crypt, like login does. Use SEEK_* not L_* and kill some 0L's used in lseek while we're there.
1998-07-10do not syslog() with "\n"; skipped smtpd/named/ipmon; 12 minutes of dabblingTheo de Raadt
1998-07-05No need to call pwcheck() (and hence crypt()) if the user does notTodd C. Miller
exist. The only reason I did that in the first place was to get a fake s/key challenge. Now if the use does not exist we just get the challenge if password was 's/key' else sleep for a bit to make it look like we are doing a crypt().
1998-06-21Remove the advertising clause in my old license, it impedes free useTodd C. Miller
of the code as a large number of similar clauses makes it impossible to write an ad for a product using the code...
1998-03-26cleanup after artTheo de Raadt