| Age | Commit message (Expand) | Author |
|---|
| 2024-05-24 | typo: "pwdtries" -> "passwordtries"; ok millert@ | Omar Polo |
| 2024-01-22 | I forgot that chpass(1) and passwd(1) reach-around into libc for | Theo de Raadt |
| 2023-05-08 | Prevent signed integer overflow | Tobias Stoeckmann |
| 2023-05-08 | Improve error handling | Tobias Stoeckmann |
| 2022-03-31 | man pages: add missing commas between subordinate and main clauses | Christian Weisgerber |
| 2022-02-10 | unveil _PATH_LOGIN_CONF_D | Robert Nagy |
| 2021-10-24 | For open/openat, if the flags parameter does not contain O_CREAT, the | Theo de Raadt |
| 2021-08-29 | notify the user about a successful password change; ok millert@ | Robert Nagy |
| 2021-08-28 | use stderr for printing error and informational messages | Robert Nagy |
| 2021-07-12 | Change the error reporting pattern throughout the tree when unveil | Bob Beck |
| 2021-04-14 | _PASSWORD_LEN is no longer the limit for an unencrypted password. | Todd C. Miller |
| 2019-10-24 | add missing unveil of /etc/shells; ok benno@ deraadt@ mestre@ tb@ | anton |
| 2019-09-14 | correct some unveil(2) violations due to "login.conf.db" access (the .db version | Sebastien Marie |
| 2019-06-28 | When system calls indicate an error they return -1, not some arbitrary | Theo de Raadt |
| 2019-04-23 | add some missing "pp." to .%P macros; | Ingo Schwarze |
| 2018-11-08 | unveil(2) obvious _PATH_LOGIN_CONF with read permission to use login_get*(3) | Ricardo Mestre |
| 2018-10-25 | unveil(2) the following files for passwd(1) with their corresponding | Ricardo Mestre |
| 2017-08-21 | Use waitpid()/EINTR idiom for the specific pid, rather than generic wait(), | Theo de Raadt |
| 2016-12-30 | Use explicit_bzero() to clear the buffer used when the user retypes | Todd C. Miller |
| 2016-09-02 | _PASSWORD_LEN is length that comes out of crypt(), not a meaningful | Ted Unangst |
| 2016-09-02 | make sure to explicitly clear memory that is used for password input. | Gleydson Soares |
| 2016-08-31 | replace obsolete getpass with readpassphrase. | Ted Unangst |
| 2016-08-31 | nicer format strings and use dprintf instead of write | Ted Unangst |
| 2016-08-19 | update man pages now that login.conf uses auto rounds | Daniel Jakots |
| 2016-08-15 | Trust the login_getcaptime() declaration and don't cast the arguments to | Philip Guenther |
| 2016-05-08 | Switch to getpwnam_shadow() now that getpwnam() no longer opens the shadow | Tim van der Molen |
| 2015-12-09 | Remove NULL-checks before free(). ok tb@ | mmcc |
| 2015-11-26 | Delete YP password related code. As a result, these can also be | Theo de Raadt |
| 2015-10-25 | No need to declare pwd_gensalt; it's unused and gone. | Antoine Jacoutot |
| 2015-10-24 | the last user of gensalt has been removed. remove the file. | Ted Unangst |
| 2015-09-14 | Supply DEF_WEAK() macro to suppress warnings during compilation via | Philip Guenther |
| 2015-08-20 | Do not cast result of malloc/calloc/realloc* if stdlib.h is in scope | Theo de Raadt |
| 2015-07-27 | use file system path (.Pa) semantic markup macros where appropriate. | Igor Sobrado |
| 2015-07-15 | Describe the behavior when no user is specified. OK jca@ deraadt@ | Todd C. Miller |
| 2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
| 2014-11-21 | change prototype for crypt_newhash. the login_cap_t is a holdover from its | Ted Unangst |
| 2014-11-20 | switch to using crypt_newhash interface. ok deraadt | Ted Unangst |
| 2014-11-11 | use crypt_checkpass instead of crypt/strcmp | Ted Unangst |
| 2014-11-02 | update documentation regarding localcipher only | Ted Unangst |
| 2014-11-01 | remove support for creating any password style that's not blowfish. | Ted Unangst |
| 2014-09-17 | Increase number of blowfish rounds to 8 by default when not specified in | Kent R. Spillner |
| 2014-05-19 | no more -K; | Jason McIntyre |
| 2014-05-19 | kerberos leftovers | Ted Unangst |
| 2014-04-24 | no more kinit(1); | Jason McIntyre |
| 2014-04-22 | Remove KERBEROS5 from the Makefiles (except ssh for now, where it is | Reyk Floeter |
| 2014-04-15 | Remove workarounds for ld reaching MAXDSIZ on vax, now that MAXDSIZ is | Miod Vallat |
| 2014-02-16 | fix bibliographical references; from Jan Stary <hans at stare dot cz> | Ingo Schwarze |
| 2013-08-06 | Switch vax to gcc 3.3.6. | Miod Vallat |
| 2013-06-23 | Stop using deprecated functions from Kerberos. | Antoine Jacoutot |
| 2013-06-19 | don't link to hx509, pthread and ntlm related libraries | Robert Nagy |
