| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2000-09-15 | check return value for setenv(3) for failure, and deal appropriately | Theo de Raadt | |
| 2000-09-04 | Check for account expiration before password expiration; | Todd C. Miller | |
| sigh@kuzirabekon.econ.nagasaki-u.ac.jp | |||
| 2000-09-03 | Boring... Add :L modifier to all tweakable variables tests. | Marc Espie | |
| Closes PR 1246 | |||
| 2000-08-24 | Last change inadvertantly broke non-kerberos logins. It's not clear | Todd C. Miller | |
| that the authok flag is really meaningful but keep it for now. | |||
| 2000-08-24 | Fix non-root kerberos logins broken after rev 1.29. That change was | Todd C. Miller | |
| correct but it uncovered a bug that had thusfar stayed hidden due more to serendipity than anything else. Problem found by danh@openbsd.org | |||
| 2000-08-20 | Add calls to setusercontext() and login_get*(). We basically call | Todd C. Miller | |
| setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class. | |||
| 2000-07-17 | o use strlcpy() where sensible | Todd C. Miller | |
| o when trying to login as root on a non-secure tty always say "login refused" regardless of whether the password is correct or not | |||
| 2000-03-24 | Correct the HISTORY section to note that this command appeared in Version 5 | Aaron Campbell | |
| of AT&T UNIX, not Version 6. Verified by strings(1)'ing a .dsk file (PDP-11 executable) containing the v5 sources, obtainable at gatekeeper.dec.com in the directory /pub/DEC/sim/software. Idea from NetBSD PR/4790. | |||
| 2000-03-08 | Various cleanups and improvements. | Aaron Campbell | |
| 2000-03-02 | count is unsigned (size_t) so cast to u_long, not long | Todd C. Miller | |
| 2000-03-01 | order kerberos libraries properly | Theo de Raadt | |
| 2000-03-01 | Wall | Theo de Raadt | |
| 1999-12-30 | login already decleared in util.h | Eric Jackson | |
| 1999-11-24 | We won't have the tickets in shared memory, remove dead code | Artur Grabowski | |
| 1999-11-11 | Use snprintf instead of sprintf and sizeof(foo) instead of hardcoded sizes. | Artur Grabowski | |
| 1999-08-17 | More <sys/file.h> vs. <fcntl.h> and open() flags fixes. | Todd C. Miller | |
| 1999-07-21 | use .Ar on later .It Fl lines | Theo de Raadt | |
| 1999-07-09 | - remove all trailing whitespace | Aaron Campbell | |
| * except when it is escaped with a `\' at the end of the line - fix remaining .Nm usage as well - this is from a patch I received from kwesterback@home.com, who has been working on some scripts for fixing formatting errors in mdoc'd man pages Ok, so there could be a cost/benefit debate with this commit, but since I have the patch we might as well commit it... | |||
| 1999-06-05 | - remove trailing white space | Aaron Campbell | |
| - remove arguments from .Os macros - remove arguments from .Nm macros, where appropriate - some more Dq/Sq/Ql insanity - still lots to do in the usr.bin tree... :/ | |||
| 1999-04-20 | 'unsuccessful' has 2 'c's. | Paul Janzen | |
| 1998-09-26 | usr.bin/ man page fixes, f-m. | Aaron Campbell | |
| 1998-07-13 | ftpd: sleep for an indeterminate amount for non-existant logins | Todd C. Miller | |
| to simulate a crypt, like login does. Use SEEK_* not L_* and kill some 0L's used in lseek while we're there. | |||
| 1998-07-10 | do not syslog() with "\n"; skipped smtpd/named/ipmon; 12 minutes of dabbling | Theo de Raadt | |
| 1998-07-05 | No need to call pwcheck() (and hence crypt()) if the user does not | Todd C. Miller | |
| exist. The only reason I did that in the first place was to get a fake s/key challenge. Now if the use does not exist we just get the challenge if password was 's/key' else sleep for a bit to make it look like we are doing a crypt(). | |||
| 1998-06-21 | Remove the advertising clause in my old license, it impedes free use | Todd C. Miller | |
| of the code as a large number of similar clauses makes it impossible to write an ad for a product using the code... | |||
| 1998-03-26 | cleanup after art | Theo de Raadt | |
| 1998-03-26 | -Wall for suid-root. | Artur Grabowski | |
| 1998-03-26 | fix cleaning up of bad environment variables (LD_* and IFS), | Artur Grabowski | |
| -Wall cleanup and add ability to fetch AFS-tokens for those who happen to have AFS. | |||
| 1997-11-04 | Do pwcheck() even if the user does not exist. This means that if | Todd C. Miller | |
| there is an alternate authentication scheme it will get run even when the username does not exist, preventing an info gathering attack. Short story: for user "imbogus" and pass "s/key" you will get a faked up s/key prompt. | |||
| 1997-09-21 | $OpenBSD$ | Theo de Raadt | |
| 1997-09-14 | .Xr foo #, botches | Theo de Raadt | |
| 1997-06-29 | new location of des.h | Niels Provos | |
| 1997-06-20 | do not screw up setenv() | Theo de Raadt | |
| 1997-06-02 | if hostname==domainname and has only one dot, trim less severely for -h ↵ | Theo de Raadt | |
| option; based on code from wisner@gryphon.com | |||
| 1997-04-19 | Changed ``defined(KERBEROS)'' to ``(${KERBEROS} == "yes")'' | Todd C. Miller | |
| Same change doen for SKEY, YP, and KERBEROS5. This allows people to override those setting in /etc/mk.conf. | |||
| 1997-04-19 | strncpy paranoia, how much do you trust getpwent? | Theo de Raadt | |
| 1997-03-26 | no libcrypt, fix DPADD | Theo de Raadt | |
| 1997-02-16 | /sbin/nologin implies hushlogin. | Jason Downs | |
| 1997-02-04 | make it compile if KERBEROS{,5} not defined | flipk | |
| 1997-01-27 | security | dm | |
| 1997-01-15 | getopt(3) returns -1 when out of args, not EOF, whee! | Todd C. Miller | |
| 1996-12-22 | Deal with _POSIX_SAVED_IDS when relinquishing privileges | Thorsten Lockert | |
| 1996-12-04 | Implement -u (remote user) option for login (only root may use it). | Todd C. Miller | |
| We now store remote user in failedlogin struct too. Also add REMOTEHOST and REMOTEUSER environmental vars. | |||
| 1996-11-09 | Adds support for logging and reporting on failed login attempts | Todd C. Miller | |
| via sparse file /var/log/failedlogin. | |||
| 1996-11-09 | Ensure that username is initialized to NULL. | Todd C. Miller | |
| 1996-11-09 | Log failures if user closes network session while in username/password | Todd C. Miller | |
| prompt phase. Previously the SIGHUP was not catched and so failures were not logged. Noticed by bitblt. | |||
| 1996-11-05 | dialup stuff is garbage | Theo de Raadt | |
| 1996-10-31 | Strip out $LD_* and $IFS if given -p. Code taken from telnetd. | Todd C. Miller | |
| 1996-10-23 | skey_authenticate() now fakes up a challenge if user does not | Todd C. Miller | |
| have an entry in the keys file. Don't want to give info to information gathering attack. | |||
| 1996-09-18 | block info gathering attack; netbsd pr#2768; daw@panix.com | Theo de Raadt | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |